ISO/IEC 27040
E524360
ISO/IEC 27040 is an international standard that provides guidelines and best practices for securing storage systems and data in the context of information security management.
All labels observed (1)
| Label | Occurrences |
|---|---|
| ISO/IEC 27040 canonical | 1 |
How this entity was disambiguated
This entity first appeared as the object of triple T5362782 — resolving that mention is where its identity was fixed. The disambiguator weighed these candidate entities and picked the highlighted one (or “None”, minting a new entity). This is how homonymy is resolved: the same surface form can point to different entities.
Target entity: ISO/IEC 27040 Context triple: [ISO/IEC 27000 family, includesStandard, ISO/IEC 27040]
-
A.
ISO/IEC 27034
ISO/IEC 27034 is an international standard that provides guidelines for integrating security into application development and management as part of an organization’s overall information security framework.
-
B.
ISO/IEC 27039
ISO/IEC 27039 is an international information security standard that provides guidelines for the selection, deployment, and operation of intrusion detection and prevention systems within organizations.
-
C.
ISO/IEC 27050
ISO/IEC 27050 is an international standard that provides guidelines and requirements for managing electronic discovery (e-discovery) within information security and governance frameworks.
-
D.
ISO/IEC 27038
ISO/IEC 27038 is an international standard that specifies methods and requirements for the redaction of digital documents to securely remove or hide sensitive information.
-
E.
ISO/IEC 27036
ISO/IEC 27036 is an international information security standard that provides guidelines for managing information security risks in supplier and third-party relationships.
- F. None of above. chosen
- G. Unsure - the case is ambiguous/there is not enough information to decide.
Target entity: ISO/IEC 27040 Target entity description: ISO/IEC 27040 is an international standard that provides guidelines and best practices for securing storage systems and data in the context of information security management.
-
A.
ISO/IEC 27034
ISO/IEC 27034 is an international standard that provides guidelines for integrating security into application development and management as part of an organization’s overall information security framework.
-
B.
ISO/IEC 27039
ISO/IEC 27039 is an international information security standard that provides guidelines for the selection, deployment, and operation of intrusion detection and prevention systems within organizations.
-
C.
ISO/IEC 27050
ISO/IEC 27050 is an international standard that provides guidelines and requirements for managing electronic discovery (e-discovery) within information security and governance frameworks.
-
D.
ISO/IEC 27038
ISO/IEC 27038 is an international standard that specifies methods and requirements for the redaction of digital documents to securely remove or hide sensitive information.
-
E.
ISO/IEC 27036
ISO/IEC 27036 is an international information security standard that provides guidelines for managing information security risks in supplier and third-party relationships.
- F. None of above. chosen
Statements (49)
| Predicate | Object |
|---|---|
| instanceOf |
ISO/IEC standard
ⓘ
data storage security standard ⓘ information security standard ⓘ |
| aimsTo |
improve security of storage infrastructures
ⓘ
reduce risks to stored information ⓘ |
| appliesTo |
cloud storage environments
ⓘ
data at rest ⓘ storage infrastructure ⓘ storage networking technologies ⓘ storage systems ⓘ |
| covers |
backup and recovery security
ⓘ
data availability in storage ⓘ data confidentiality in storage ⓘ data integrity in storage ⓘ data sanitization ⓘ encryption for stored data ⓘ key management for storage encryption ⓘ logging and monitoring of storage systems ⓘ secure data deletion ⓘ security controls for storage ⓘ storage system access control ⓘ threats to storage systems ⓘ vulnerabilities in storage environments ⓘ |
| domain |
data storage
ⓘ
information security ⓘ information technology ⓘ |
| focusesOn |
data storage systems
ⓘ
information security management ⓘ storage security ⓘ |
| intendedFor |
information security professionals
ⓘ
organizations managing data storage ⓘ storage system designers ⓘ |
| language | English ⓘ |
| partOfSeries | ISO/IEC 27000 family NERFINISHED ⓘ |
| provides |
best practices for storage security
ⓘ
guidance on data protection in storage ⓘ guidance on risk assessment for storage security ⓘ guidance on storage security controls ⓘ guidelines for securing storage systems ⓘ |
| publishedBy |
International Electrotechnical Commission
NERFINISHED
ⓘ
International Organization for Standardization ⓘ |
| relatedTo |
ISO/IEC 27001
NERFINISHED
ⓘ
ISO/IEC 27002 NERFINISHED ⓘ |
| scopeIncludes |
cloud-based storage
ⓘ
on-premises storage ⓘ virtualized storage ⓘ |
| standardNumber | 27040 ⓘ |
| status | active standard ⓘ |
| supports | implementation of an information security management system ⓘ |
How these facts were elicited
The pipeline generated the facts above by prompting gpt-5.1 with this entity's name + description and the instruction below.
You are a knowledge base construction expert. Given a subject entity and a description of it, return factual statements that you know for the subject as a JSON list of dictionaries(triples), where keys must be "subject", "predicate" and "object". The number of facts may be very high, between 25 to 50 or more, for very popular subjects. For less popular subjects, the number of facts can be very low, like 5 or 10. # Requirements - If you don't know the subject at all, return an empty list. - If the subject is not a named entity, return an empty list. - Include at least one triple where predicate is "instanceOf". - Do not get too wordy. - Separate several objects into multiple triples with one object.
Subject: ISO/IEC 27040 Description of subject: ISO/IEC 27040 is an international standard that provides guidelines and best practices for securing storage systems and data in the context of information security management.
Referenced by (1)
Full triples — surface form annotated when it differs from this entity's canonical label.