References
- BS 10012:2009, Data protection -Specification for a personal information management system, BSI, 2009
- JIS Q 15001:2006, Personal information protection management systems - Requirements, Japanese Standards Association Japan Institute for Promotion of Digital Economy and Community, 2006
- KCS.KO-12.0001, 개인정보보호 관리 체계(PIMS), 미래창조과학부, 2011
- ITU-T SG17 C467, New work item proposal for personally identifiable information management system for telecommunication sector, 염흥열 외, 2011.8
- N10319, Korean National Body proposal for a new WG 1 Study Period on "Personal information management based on ISO/IEC 27001 and 29100", JTC 1/SC 27, 염흥열 외, 2011.10
- ITU-T SG 17, The structure of new work item on Recommendation ITU-T X.gpim, Guideline for management of personally identifiable information for telecommunication organizations, 염흥열 외, TD 2275 Rev.4, 2011.8
- ISO/IEC JTC 1/SC 27/N10546, Terms of reference for a joint ISO/IEC JTC 1/SC 27/WG 1 and ISO/IEC JTC 1/SC 27/WG 5 Study Period on Privacy/Personal Information Management Systems (PIMS) starting in October 2011, JTC 1/SC 27/WG 1 - WG 5, 2011.10
- ISO/IEC JTC 1/SC 27/N11724, Proposal for a new work item on Code of practice for the protection of personally identifiable information, JTC 1/SC 27/WG 5, 2013.1(제안자: 염흥열)
- ISO/IEC JTC 1/SC 27/N11881, Proposal for a new work item on The Use and Application of ISO/IEC 27001 for Sector/Service-Specific Third-Party Accredited Certifications, JTC 1/SC 27/WG 1, 2012.11
- 법제처, 개인정보보호법, 2011
- 법제처, 정보통신망이용촉진 및 정보보호 등에 관한 법
- ISO/IEC 27000:2009, Information security management systems - Overview and vocabulary
- ISO/IEC 27001:2005, Information technology - Security techniques - Information security management systems - Requirements
- ISO/IEC 27002:2005, Information technology - Security techniques - Requirements for bodies providing audit and certification of information security management system
- ISO/IEC 27003:2010, Information technology - Security techniques - Information security management system implementation guidance
- ISO/IEC 27005:2011, Information security risk management
- ISO/IEC 27006:2011, Information technology - Security techniques -Requirements for bodies providing audit and certification of information security management systems
- ISO/IEC 27007:2011, Information technology - Security techniques -Guidelines for information security management systems auditing
- ISO/IEC TR 27008:2011, Information technology - Security techniques -Guidelines for auditors on information security controls
- ISO/IEC NP 27009, The Use and Application of ISO/IEC 27001 for Sector/Service-Specific Third-Party Accredited Certifications
- ISO/IEC 27011:2008, Information technology - Security techniques - Information security management guidelines for telecommunications organisations based on ISO/IEC 27002
- ISO/IEC FDIS 27014, Information technology - Security techniques - Governance of information security
- ISO/IEC DTR 27015, Information technology - Security techniques - Information security management guidelines for financial services
- ISO 27799:2008, Health informatics - Information security management in health using ISO/IEC 27002
- ISO/IEC NWI 29151, Code of practice for the protection of personally identifiable information, 2013.4
- N10946, Study period report on Privacy / Personal information management system (PIMS), 염 흥열외, 2012-04-02
- N11590, Output of the Study Period Rapporteurs assessment in response to SC 27 N11143 Call for Contributions on WG 1 Study Period on Alignment for Privacy / Personal Information Management Systems (PIMS), 염흥열외, 2012- 10-02
- N11918, Meeting report - Study Period on privacy/ personal information management system, 염흥열외, 2012-11-05
- ITU-T X.gpim, Guideline for management of personally identifiable information for telecommunication organizations, The 2nd revised text for Recommendation ITU-T X.gpim, 염흥열 외, TD 227 Rev.1, 2013.4
- OECD, OECD Guidelines on the Protection of Privacy and Transborder Flows of Personal Data, OECD, 1980
- ISO/IEC 29100(2011), Information technology - Security techniques - Privacy framework
- ISO/IEC 29134, Privacy Impact Assessment - Methodology, 2013.4