NF ISO 16678

NF ISO 16678

September 2014
Standard Cancelled

Guidelines for interoperable object identification and related authentication systems to deter counterfeiting and illicit trade

ISO 16678:2014 describes framework for identification and authentication systems. It provides recommendations and best practice guidance that include:consequences and guidance ofmanagement and verification of identifiers,physical expression of identifiers, andparticipants' due diligence;vetting of all participants within the system;relationship between the unique identifier and possible authentication elements related to it;questions that deal with the identification of the inspector and any authorized access to privileged information about the object; andinspector access history (logs).Accordingly, ISO 16678:2014 establishes a framework and outlines functional units used to achieve trustworthiness and interoperability of such systems.It does not specify any specific technical solutions, but instead describes processes, functions, and functional units using a generic model to illustrate what solutions have in common.Object identification systems can incorporate other functions and features such as supply chain traceability, quality traceability, marketing activities, and others, but these aspects are out of scope of ISO 16678:2014.

See more
View the extract
Main informations

Collections

National standards and national normative documents

Thematics

Sécurité, QSE

Publication date

September 2014

Number of pages

30 p.

Reference

NF ISO 16678

ICS Codes

03.100.02   Governance and ethics
13.310   Protection against crime

Classification index

X52-002

Print number

1

International kinship

ISO 16678:2014
Sumary
Guidelines for interoperable object identification and related authentication systems to deter counterfeiting and illicit trade

ISO 16678:2014 describes framework for identification and authentication systems. It provides recommendations and best practice guidance that include:

  • consequences and guidance of
    • management and verification of identifiers,
    • physical expression of identifiers, and
    • participants' due diligence;
  • vetting of all participants within the system;
  • relationship between the unique identifier and possible authentication elements related to it;
  • questions that deal with the identification of the inspector and any authorized access to privileged information about the object; and
  • inspector access history (logs).

Accordingly, ISO 16678:2014 establishes a framework and outlines functional units used to achieve trustworthiness and interoperability of such systems.

It does not specify any specific technical solutions, but instead describes processes, functions, and functional units using a generic model to illustrate what solutions have in common.

Object identification systems can incorporate other functions and features such as supply chain traceability, quality traceability, marketing activities, and others, but these aspects are out of scope of ISO 16678:2014.

Table of contents
  • Avant-propos
    iv
  • Introduction
    v
  • 1 Domaine d'application
    1
  • 2 Termes, définitions, symboles et acronymes
    1
  • 2.1 Termes et définitions
    1
  • 2.2 Abréviations et acronymes
    4
  • 3 Vue d'ensemble
    4
  • 3.1 Généralités
    4
  • 3.2 Systèmes d'identification d'objets (en service)
    5
  • 3.3 Systèmes d'identification d'objets (configuration)
    7
  • 4 Principes essentiels
    9
  • 4.1 Disponibilité et réponse dans un délai opportun
    9
  • 4.2 Une seule source autorisée
    9
  • 4.3 Gestion des données
    9
  • 4.4 Besoin d'en connaître
    9
  • 4.5 Protection des données
    9
  • 4.6 Respect de la vie privée
    9
  • 4.7 Respect des réglementations
    10
  • 4.8 Enquête de sécurité
    10
  • 4.9 Interopérabilité
    10
  • 4.10 Génération des UID
    10
  • 5 Lignes directrices
    11
  • 5.1 Introduction
    11
  • 5.2 Résolution des services de confiance
    11
  • 5.3 Gestion des données et des attributs d'identification d'objet
    12
  • 5.4 Fraudes courantes
    13
  • Annexe A (informative) Certificat numérique (pour les contrôleurs)
    17
  • Annexe B (informative) Gestion des données de référence
    19
  • Annexe C (informative) Exemples typiques d'implémentation
    20
  • Bibliographie
    25
ZOOM ON ... the Requirements department
To comply with a standard, you need to quickly understand its issues in order to determine its impact on your activity.

The Requirements department helps you quickly locate within the normative text:
- mandatory clauses to satisfy,
- non-essential but useful clauses to know, such as permissions and recommendations.

The identification of these types of clauses is based on the document “ISO / IEC Directives, Part 2 - Principles and rules of structure and drafting of ISO documents ”as well as on a constantly enriched list of verbal forms.

With Requirements, quickly access the main part of the normative text!

With Requirements, quickly access the main part of the normative text!
Need to identify, monitor and decipher standards?

COBAZ is the simple and effective solution to meet the normative needs related to your activity, in France and abroad.

Available by subscription, CObaz is THE modular solution to compose according to your needs today and tomorrow. Quickly discover CObaz!

Request your free, no-obligation live demo

I discover COBAZ