OASIS Common Security Advisory Framework (CSAF) TC

 View Only
Back to discussions
Expand all | Collapse all

ISO/IEC 20153:2025 (CSAF v2.0) is now freely available from ISO and IEC webstores

  • 1.  ISO/IEC 20153:2025 (CSAF v2.0) is now freely available from ISO and IEC webstores

    Posted 26 days ago
    Dear members, OASIS staff, and chairs of befriended OASIS TCs,

    I like to share some exciting news with you:

    The Common Security Advisory Framework (CSAF) version 2.0 is now
    also freely available at no cost as ISO/IEC 20153:2025.

    - ISO: https://www.iso.org/standard/89986.html
    - IEC: https://webstore.iec.ch/en/publication/105858


    Many thanks to the OASIS and the ISO staff for making this possible.

    All's well, that ends well!

    Please kindly spread the word!

    Post on linkedin:

    https://www.linkedin.com/posts/shage_isoiec-201532025-csaf-v20-is-now-freely-activity-7392891126317334528-MfCp


    Details:
    - - - -

    While preparing my talk for the CSAF Community Days during
    November 13th/14th 2025, in Nuremberg, Germany,
    I revisited the ISO store and witnessed that CSAF v2.0 is now
    also available without cost as ISO/IEC 20153:2025.

    I could obtain a PDF version vor free after logging into
    my ISO store account.


    Bibliographic data:
    ISO/IEC 20153:2025 Information technology —
    OASIS Common Security Advisory Framework (CSAF) v2.0 Specification
    Published (Edition 1, 2025)

    General information
    Status : Published
    Publication date : 2025-02
    Stage : International Standard published [60.60]
    Edition : 1
    Number of pages : 115
    Technical Committee : ISO/IEC JTC 1
    ICS : 35.020 35.030
    RSS feed: https://www.iso.org/contents/data/standard/08/99/89986.detail.rss

    Mention of OASIS and the CSAF TC in th foreword:

    This document was prepared by OASIS [as OASIS Common Security Advisory
    Framework (CSAF) TC] and drafted in accordance with its editorial rules.
    It was adopted, under the JTC 1 PAS procedure,
    by Joint Technical Committee ISO/IEC JTC 1, Information technology.



    Notes:

    1) The way I obtained the standard as PDF and logged in, makes
    the grant of a license available when visiting "your documents".
    I did grant the license to myself, but one could have also chosen
    to grant that license to another "person".

    2) The prior distribution place for publicly available ISO standards
    at https://standards.iso.org/ittf/PubliclyAvailableStandards/
    now provides a pointer to the new process of obtaining these.
    Which essentially points to the ISO and the IEC webstores.

    All the best,
    Stefan.


Related Content