{"id":9,"date":"2005-02-23T19:35:13","date_gmt":"2005-02-23T18:35:13","guid":{"rendered":"https:\/\/www.georgesdick.com\/?p=9"},"modified":"2005-02-23T19:35:13","modified_gmt":"2005-02-23T18:35:13","slug":"la-decouverte-diso-cei-17799-et-diso-cei-27001","status":"publish","type":"post","link":"https:\/\/www.georgesdick.com\/?p=9","title":{"rendered":"La d\u00e9couverte d&rsquo;ISO\/CEI 17799 et d&rsquo;ISO\/CEI 27001"},"content":{"rendered":"<p>Il y a maintenant un peu plus de trois ans j&rsquo;ai d\u00e9couvert la norme ISO 17799. D\u00e9but 2003 j&rsquo;ai d\u00e9cid\u00e9 de me la procurer directement aupr\u00e8s de l&rsquo;ISO \u00e0 Gen\u00e8ve (elle n&rsquo;est toujours pas disponible en France aupr\u00e8s de l&rsquo;AFNOR !).<\/p>\n<p>Contrairement aux \u00ab\u00a0crit\u00e8res communs\u00a0\u00bb (ISO 15408), ISO 17799 n&rsquo;est pas une norme technique, qui descend pas dans les d\u00e9tails d&rsquo;impl\u00e9mentation. Par contre elle s&rsquo;attaque \u00e0 tous les aspects de la s\u00e9curit\u00e9, pas uniquement \u00e0 l&rsquo;informatique. Un informaticien pr\u00e9f\u00e9rera donc certainement promouvoir ISO 15408, qui sera excellente dans son domaine. Cependant, \u00e0 mon avis, il est beaucoup plus judicieux pour une entreprise de s&rsquo;int\u00e9resser \u00e0 ISO\/IEC 17799, quitte \u00e0 ensuite int\u00e9grer d&rsquo;autres normes pour renforcer certains aspects de son syst\u00e8me d&rsquo;information.<\/p>\n<p>Je me suis tenu \u00e0 jour (toujours via la Suisse) lors de la sortie de ISO17799:2005, et surtout de ISO27001:2005 qui devrait enfin permettre des certifications.<\/p>\n<p>Pour en savoir plus vous pouvez consulter mon blog <a href=\"http:\/\/blogs.monaco.net\/index.php\/securite\">S\u00e9curit\u00e9<\/a><a href=\"http:\/\/blogs.monaco.net\/index.php\/securite\"> et <\/a><a href=\"http:\/\/blogs.monaco.net\/index.php\/securite\">ISO 17799<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Il y a maintenant un peu plus de trois ans j&rsquo;ai d\u00e9couvert la norme ISO 17799. D\u00e9but 2003 j&rsquo;ai d\u00e9cid\u00e9 de me la procurer directement aupr\u00e8s de l&rsquo;ISO \u00e0 Gen\u00e8ve (elle n&rsquo;est toujours pas disponible en France aupr\u00e8s de l&rsquo;AFNOR !). Contrairement aux \u00ab\u00a0crit\u00e8res communs\u00a0\u00bb (ISO 15408), ISO 17799 n&rsquo;est pas une norme technique, qui [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[8],"tags":[],"class_list":["post-9","post","type-post","status-publish","format-standard","hentry","category-la-securite-des-systemes-dinformation"],"_links":{"self":[{"href":"https:\/\/www.georgesdick.com\/index.php?rest_route=\/wp\/v2\/posts\/9","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.georgesdick.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.georgesdick.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.georgesdick.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.georgesdick.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=9"}],"version-history":[{"count":0,"href":"https:\/\/www.georgesdick.com\/index.php?rest_route=\/wp\/v2\/posts\/9\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.georgesdick.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=9"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.georgesdick.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=9"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.georgesdick.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=9"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}