CAN/CSA-ISO/IEC 19678:16 (R2021) ✓ Most Recent

 Preview

Information Technology - BIOS Protection Guidelines (Adopted ISO/IEC 19678:2015, first edition, 2015-05-01)

standard by Canada National Standard/Canadian Standards - ISO/IEC , 12/01/2016

Track This

Identical Versions Available

ISO/IEC 19678:2015

May 2015
Information Technology - BIOS Protection Guidelines
- This is the most recent version of this document.

Full Description

CSA Preface

Standards development within the Information Technology sector is harmonized with international standards development. Through the CSA Technical Committee on Information Technology (TCIT), Canadians serve as the SCC Mirror Committee (SMC) on ISO/IEC Joint Technical Committee 1 on Information Technology (ISO/IEC JTC1) for the Standards Council of Canada (SCC), the ISO member body for Canada and sponsor of the Canadian National Committee of the IEC. Also, as a member of the International Telecommunication Union (ITU), Canada participates in the International Telegraph and Telephone Consultative Committee (ITU-T).

For brevity, this Standard will be referred to as "CAN/CSA-ISO/IEC 19678" throughout.

At the time of publication, ISO/IEC 19678:2015 is available from ISO and IEC in English only. CSA Group will publish the French version when it becomes available from ISO and IEC.

Scope

This International Standard provides requirements and guidelines for preventing the unauthorized modification of Basic Input/Output System (BIOS) firmware on PC client systems. Unauthorized modification of BIOS firmware by malicious software constitutes a significant threat because of the BIOS's unique and privileged position within the PC architecture. A malicious BIOS modification could be part of a sophisticated, targeted attack on an organization - either a permanent denial of service (if the BIOS is corrupted) or a persistent malware presence (if the BIOS is implanted with malware).

As used in this publication, the term BIOS refers to conventional BIOS, Extensible Firmware Interface (EFI) BIOS, and Unified Extensible Firmware Interface (UEFI) BIOS. This International Standard applies to system BIOS firmware (e.g., conventional BIOS or UEFI BIOS) stored in the system flash memory of computer systems, including portions that may be formatted as Option ROMs. However, it does not apply to Option ROMs, UEFI drivers, and firmware stored elsewhere in a computer system.

Subclause 7.2 provides platform vendors with requirements for a secure BIOS update process. Additionally, subclause 7.3 provides guidelines for managing the BIOS in an operational environment.

While this International Standard focuses on current and future x86 and x64 client platforms, the controls and procedures are independent of any particular system design.

See more

Also Bought By Customers

CAN/CSA-ISO/IEC 18035-04 (R2022)
Priced From $122.00
CAN/CSA-ISO/IEC 21000-6-07 (R2022)
Priced From $348.00
CAN/CSA-ISO/IEC 15149-3:16 (R2021)
Priced From $70.00
CAN/CSA-ISO/IEC 21122-1:20
Priced From $200.00

Order Options

Delivery Options

Secure PDF Print

Language

Users

Price: $106.00

Available for Immediate Download

Product Details

Edition:

1st

Published:

12/01/2016

ISBN(s):

9781488305269

Number of Pages:

File Size:

1 file

Same As:

ISO/IEC 19678:2015

Product Code(s):

2424861, 2424861

Device/OS:	Unknown
Browser:	Unknown Browser 0.0
User Agent:	Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
Store Name:	css
Page:	/standards/can-csa-iso-iec-19678-16-r2021?product_id=1944356
Referrer:	Direct Navigation
IP:	216.73.216.167
Language:	en
Customer #:	Not Logged In
Member?:	NO
Cart #:	1463804621
Order #:	None
Cookies:	YES