PISCATAWAY, N.J., USA, 15 May 2007 – The IEEE has begun work on a series of four security standards for printer, copiers and other hardcopy devices, which often face many of the same security problems as workstations and servers. It also began work on a key management standard for the cryptographic protection of stored data and approved a new eLearning standard. The four new hardcopy-device standards projects are part of the IEEE 2600™ standards family and address security for these devices and systems in different environments. IEEE 2600 standards define authentication, authorization, privacy, physical and information security, and other security requirements in selecting, installing, configuring and using such devices. The new projects are:
IEEE P2600.1™, “Standard for a Protection Profile in Operational Environment A”,concerns hardcopy devices in restrictive commercial information processing environments that need a relatively high level of document security, operational accountability and information assurance. Critical information in such environments includes trade secrets and that subject to legal and regulatory considerations.
IEEE P2600.2™, “Standard for a Protection Profile in Operational Environment B”, concerns hardcopy devices in commercial environments that need moderate document and network security and security assurance for day-to-day proprietary and non-proprietary information concerning enterprise operation.
IEEE P2600.3™, “Standard for a Protection Profile in Operational Environment C”,concerns hardcopy devices in a public-facing environment in which document security is not guaranteed, but access control and usage accounting are important. Such environments include retail copy centers, public libraries and Internet cafés.
IEEE P2600.4™, “Standard for a Protection Profile in Operational Environment D”,concerns hardcopy devices in a small, private information processing environments where most security elements rely on the physical environment, but basic network security is needed to protect a device and its network from misuse from outside of the environment. Such environments include small offices and home offices.
Work has also begun on IEEE P1619.3™, “Standard for Key Management Infrastructure for Cryptographic Protection of Stored Data”. This standard will define methods for storing, managing and distributing cryptographic keys used to protect stored data on hard disk and tape drives. It will describe interfaces, methods and algorithms to augment existing key management methods for the cryptographic protection of stored data, including that protected by compliant implementations of other IEEE 1619 standards.
In addition, the IEEE has approved a new standard, IEEE 1484.4™,“Trial-Use Recommended Practice for Digital Rights Expression Languages (DRELs) Suitable for eLearning Technologies”. This standard facilitates the creation, management and delivery of digital content for eLearning by technology that involves digital rights expression languages. It determines what, if any, extensions are needed to enable DRELs to meet set requirements.The above standards were sponsored by the IEEE Computer Society.
About the IEEE Standards Association
The IEEE Standards Association, a globally recognized standards-setting body, develops consensus standards through an open process that brings diverse parts of an industry together. These standards set specifications and procedures based on current scientific consensus. The IEEE-SA has a portfolio of more than 900 completed standards and more than 400 standards in development. . For information on IEEE-SA see:http://standards.ieee.org/.
About the IEEE
The IEEE (Institute of Electrical and Electronics Engineers, Inc.) is the world’s largest technical professional society. Through its more than 370,000 members in 160 countries, the organization is a leading authority on a wide variety of areas ranging from aerospace systems, computers and telecommunications to biomedical engineering, electric power and consumer electronics. Dedicated to the advancement of technology, the IEEE publishes 30 percent of the world’s literature in the electrical and electronics engineering and computer science fields, and has developed over 900 active industry standards. The organization also sponsors or co-sponsors over 450 international technical conferences each year. Additional information about the IEEE can be found at http://www.ieee.org.
