Home>BS standards>BS ISO 23195:2021 pdf free

BS ISO 23195:2021 pdf free

BS ISO 23195:2021 pdf free.Security objectives of information systems of third-party payment services.
This document assumes that TPP-centric payments rely on the use of TPPSP credentials and the corresponding certified processes for issuance, distribution and renewal purposes. However, security objectives for such processes are out of the scope of this document.
NOTE This document is based on the methodology specified in the ISO/IEC 15408 series. Therefore, the security matters that do not belong to the TOE are dealt with as assumptions, such as the security required by an information system that provides TPP services and the security of communication channels between the entities participating in a TPP business.
2 Normative references
There are no normative references in this document.
3 Terms, definitions, and abbreviated terms
For the purposes of this document, the following terms, definitions, and abbreviated terms apply.
ISO and IEC maintain terminological databases for use in standardization at the following addresses:
— ISO Online browsing platform: available at https://www.iso.org/obp
— IEC Electropedia: available at http://www.electropedia.org/
3.1 TPP business
3.1.1 payment transaction act of placing, transferring or withdrawing funds, irrespective of any underlying obligations between the payer (3.19) and the payee (3.1)
[SO1JRCE: ISO 12812-1:2017, 3.40]
3.1.2 payment account account held in the name of a payment service user (31.1) which is used for the execution of a payment transaction (11.1.)
Note Ito entry: The original definition in ISO 21741 is account held in the name of one or more payment service users which is used for the execution of payment transactions’. However, only cases in which one account Is held by one payment service user are considered in this document.
[SOURCE: ISO/TR 2 1941:2017, 3.1.7, modified — Note ito entry has been added.]
3.1.3 third-party payment TPP payment transaction (3.fl) involving at least one intermediary TPPSP (3..L)
3.1.4 intermediary commercial party who provides services to customers, suppliers or authorities within the supply chain Note I to entry: The customer Is the payment service user (111). who may be a payer (11.9) or a payee (1.1.8). such as a merchant.[SOURCE: ISO/TS 24533:20 12, 2.31, modified — Note Ito entry has been revised.]
3.1.5 third-party payment service provider TPPSP payment service provider offering TPP (11.3) services where they are not the ASPSP (3.16) itself
Note I to entry: Comparison with the term “third-party payment service provider defined in ISO/TR 21941:2017, 3.1.11:
a) the abbreviated form of “third-party payment service provider” has been clarified as TPPSP instead of ‘TPP” because TPP” is a business mode which has been defined in this document;
b) the abbreviated form ASPSP is utilized instead of “account servicing payment service provider”;
c) the term “payment initiation service” has been changed to TPP since the “TPP” contains “the payment initiation services”;
d) “account Information service on accounts” has been removed because it Is not linked to TPP closely.BS ISO 23195 pdf free download.

Related PowerPoint Templates

Template Categories