Single Sign On solution - ISO certs affected

Schnippzle · 27 Mar 2009 at 08:54

Hi guys,
We are planning no implementing Single Sign On pretty soon. As far as I can see, the service complies with ISO 7816 but I cannot see if ISO 27001 is affected by this. Would some one please inform me of any parts of the two standards that might clash?

Thank you very much.

Ev0 · 27 Mar 2009 at 18:45

I'll check next week but should be ok I'd have thought. We've got single sign on (for most things

) and we've just been 'certified' ok.

iaind · 27 Mar 2009 at 19:05

Sorry to thread hijack - but what product are you using, out of interest?

Schnippzle · 29 Mar 2009 at 15:23

iaind said:
Sorry to thread hijack - but what product are you using, out of interest?

SmartID Single Sign On.

Ev0 · 30 Mar 2009 at 20:05

Ok, it should be affected as long as you've got the necessary controls in place for the system.

Remember ISO 27001 is largely about managing risk, so as long as you've got the contorls in place you should be ok.

Schnippzle · 1 Apr 2009 at 11:06

Ev0 said:
Ok, it should be affected as long as you've got the necessary controls in place for the system.

Remember ISO 27001 is largely about managing risk, so as long as you've got the contorls in place you should be ok.

Awesome, thank you very much

Ev0 · 1 Apr 2009 at 22:13

Schnippzle said:
Awesome, thank you very much

er typo in my post, 'shouldn't' rather than should lol.

but basically as long as controls in place and any risks noted should be fine