标准编号:ISO/IEC 19770-2:2015
中文名称:信息技术 软件资产管理 第2部分:软件识别标签
英文名称:Information technology — IT asset management — Part 2: Software identification tag
发布日期:2015-10
标准范围
This part of ISO/IEC 19770 establishes specifications for tagging software to optimize its identificationand management.This part of ISO/IEC 19770 applies to the following.a) Tag producers: these organizations and/or tools create software identification (SWID) tags foruse by others in the market. A tag producer may be part of the software creator organization, thesoftware licensor organization, or be a third-party organization. These organizations and/or toolscan broadly be broken down into the following categories.1) Platform providers: entities responsible for the computer or hardware device and/or associatedoperating system, virtual environment, or application platform, on which software may beinstalled or run. Platform providers which support this part of ISO/IEC 19770 may additionallyprovide tag management capabilities at the level of the platform or operating system.2) Software providers: entities that create, license, or distribute software. For example, softwarecreators, independent software developers, consultants, and repackagers of previouslymanufactured software. Software creators may also be in-house software developers.3) Tag tool providers: entities that provide tools to create software identification tags. Forexample, tools within development environments that generate software identification tags,or installation tools that may create tags on behalf of the installation process, and/or desktopmanagement tools that may create tags for installed software that did not originally have asoftware identification tag.b) Tag consumers: these tools and/or organizations utilize information from SWID tags and aretypically broken down into the following two major categories:1) software consumers: entities that purchase, install, and/or otherwise consume software;2) IT discovery and processing tool providers: entities that provide tools to collect, store, andprocess software identification tags. These tools may be targeted at a variety of differentmarket segments, including software security, compliance, and logistics.This part of ISO/IEC 19770 does not prescribe Information Technology Asset Management (ITAM)or other IT-related processes required for reconciliation of software entitlements with softwareidentification tags or other IT requirements.This part of ISO/IEC 19770 does not specify product activation or launch controls.This part of ISO/IEC 19770 is not intended to conflict either with any organization’s policies, proceduresor standards or with any national or international laws and regulations.
标准预览图
立即下载标准文件