ISO/IEC 27034
Application security - Guidelines
Overview
Provides guidance for application security throughout the software development lifecycle. Defines concepts, principles, and processes for integrating security into applications.
Applicability
Secure software development and application security
Relevance to Cyber Resilience Act (CRA)
Critical for software products with digital elements - secure development practices
Key Coverage Areas
Standard Sections & Chapters
Overview and concepts
Organization normative framework
Application security management process
Protocols and application security control data structure
Case studies
Related Cyber Resilience Act (CRA) Articles
Article 13: Obligations of manufacturers
View Article →Application security management process
Implementation Guidance:
Establish application security controls and integrate into SDLC
Article 14: Reporting obligations of manufacturers
View Article →Organizational normative framework for application security
Implementation Guidance:
Define security requirements for applications and implement controls
Quick Information
- Organization
- ISO/IEC
- Category
- Application Security
- Certification
- Not available