Acknowledgement
이 논문은 2024년도 정부(과학기술정보통신부)의 재원으로 정보통신기획평가원의 지원을 받아 수행된 연구임 (No.2021-0-00112, 차세대보안 표준전문연구실)
References
- ISO/IEC DIS 27701.2, Information security, cybersecurity and privacy protection - Privacy information management systems - Requirements and guidance
- 개인정보보호위원회, 인공지능(AI) 시대, 개인정보 안전장치 시행된다, 2024.03.06., https://www.pipc.go.kr/np/cop/bbs/selectBoardArticle.do?bbsId=BS074&mCode=C020010000&nttId=9969
- James Clark, Muhammed Demircan, Kalyna Kettas, Europe: The EU AI Act's relationship with data protection law: key takeaways, Privacy Matters DLA Piper's Global Privacy and Data Protection Resource, 2024.04.25. https://privacymatters.dlapiper.com/2024/04/europe-the-eu-ai-acts-relationship-with-data-protection-law-key-takeaways/
- ISO/IEC JTC 1/SC 27, Information security, cybersecurity, privacy protection, http://www.iso.org/iso/iso_technical_committee?commid=45306
- 염흥열, 국제 개인정보보호 표준화 동향 분석 (2019년 4월 이스라엘 텔아비브 SC27 회의결과를 중심으로), 한국정보보호학회 학회지, 제29권제4호, 2019.08
- 염흥열, 국제 개인정보보호 표준화 동향 분석(2020년 4월 전자 회의 결과를 중심으로), 한국정보보호학회 학회지, 제30권 제4호, 2020.08
- 염흥열, 국제 개인정보보호 표준화 동향 분석(2022년 4월 전자 회의 결과를 중심으로), 한국정보보호학회 학회지, 제32권 제4호, 2022.08
- 박성채, 염흥열, 국제 개인정보보호 표준화 동향 분석 (2023년 4월 ISO/IEC JTC 1/SC 27/WG 5 회의결과를 중심으로), 한국정보보호학회학회지, 제33권 제4호, 2023.08
- ISO/IEC 29100:2011, Information technology - Security techniques - Privacy framework
- ISO/IEC 29134:2017, Privacy Impact Assessment - Methodology
- ISO/IEC 29151:2017, Code of practice for the protection of personally identifiable information, 2017.8
- ISO/IEC 27018:2014, Code of practice for protection of personally identifiable information (PII) in public clouds acting as PIII processors
- ISO/IEC 27701:2019, Extension to ISO/IEC 27001 and ISO/IEC 27002 for privacy information management - Requirements and guidelines
- ISO/IEC 29184, Guidelines for online privacy notices and consent, 2019.07
- ISO/IEC 27555, Guidelines on personally identifiable information deletion, October 2021
- ISO/IEC TS 27570, Privacy guidelines for smart cities, January 2021
- ISO/IEC 27556, User-centric privacy preferences management framework
- ISO/IEC TR 27563, Security and privacy in artificial intelligence use cases -Best practices
- ISO/IEC 27557, Application of ISO 31000:2018 for organizational privacy risk management
- ISO/IEC 27559, Privacy enhancing data de-identification framework
- ISO/IEC 27006-2, Requirements for bodies providing audit and certification of information security management systems - Part 2: Privacy Information Management Systems
- ISO/IEC TS 27560, Consent record information structure
- ISO/IEC DIS 27706.2, Requirements for bodies providing audit and certification of privacy information management systems
- ISO/IEC 27561, Privacy operationalisation model and method for engineering (POMME)
- ISO/IEC FDIS 27562, Privacy guidelines for fin-tech services
- ISO/IEC CD 27565.2, Guidelines on privacy preservation based on zero knowledge proofs
- ISO/IEC DIS 27018, Information technology - Security techniques - Code of practice for protection of personally identifiable information (PII) in public clouds acting as PII processors
- ISO/IEC CD 29151.2, Information technology - Security techniques - Code of practice for personally identifiable information protection
- ISO/IEC WD 29115, Information technology - Security techniques - Entity authentication assurance framework
- 김경한, 유동현, 김수형, 윤봉중, 염흥열, 국내 전자금융 서비스 환경을 위한 ISO/IEC 29115와 ISO/IEC 29003의 갭분석, 한국 인터넷 정보학회, 제16권 제2호, 2015.12
- ISO/IEC 29190:2015, Information technology - Security techniques - Privacy capability assessment model
- ISO/IEC 20889:2018, Privacy enhancing data de-identification terminology and classification of techniques
- ISO/IEC TS 29003:2018, Information technology - Security techniques - Identity proofing
- ISO/IEC 29115:2013, Information technology - Security techniques - Entity authentication assurance framework
- ISO/IEC CD 27566-1, Information security, cybersecurity and privacy protection - Age assurance systems - Framework - Part 1: Framework
- ISO/IEC NP 27566-2, Age assurance systems - Part 2: Technical approaches and guidance for implementation
- ISO/IEC WD 27566-3.2, Age assurance systems - Part 3: Benchmarks for benchmarking analysis
- ISO/IEC PWI TS 27569, Personal identifiable information (PII) processing record information structure
- ISO/IEC PWI 27573, Privacy protection of user avatar and system avatar interactions in the meta-verse