British Standards Institution

Source:: ISO/IEC
Committee:: IST/33/4 - Security Controls and Services
Categories:
Comment period start date:: 16/04/2025
Comment period end date:: 09/06/2025
Number of comments:: 0

Comment by:

9th Jun

Scope

This document provides guidance for organizations to address security threats and failures specific to artificial intelligence (AI) systems. The guidance in this document aims to provide information to organizations to help them better understand the consequences of security threats specific to AI systems, throughout their life cycle, and descriptions of how to detect and mitigate such threats.

This document is applicable to all types and sizes of organizations, including public and private companies, government entities, and not-for-profit organizations, that develop or use AI systems.

Read draft and comment

Comment on proposal

Required form fields are indicated by an asterisk (*) character.

How important do you think standardization is in this area? *

Do you agree that a standard on this subject is feasible?: *

Please give reasons for your selections above: *

Would you or your organization use the standard? *

Would you or your organization be prepared to participate in the development of the standard or to comment on the draft when it is available? *

Are you aware of any regulation, existing standards and other good practice information in this area in the UK (e.g. Industry codes of practice; company specifications, international or European Standards)? *

Would the development of a standard(s) in this area have a particular impact/relevance to SME, consumer, environmental or societal interests? *

Are you aware of any other organizations to which this proposal may be relevant? If so please provide details below. *

Additional comments on the scope or proposal:

Although BSI will not usually enter into correspondence regarding individual comments or suggestions we may wish to contact you to seek further clarification. Please indicate whether this will be acceptable: *

Discard

Please email further comments to: debbie.stead@bsigroup.com

Standard timeline

1. Proposal (Complete)

Proposal start date:

2. Draft (Complete)

Draft start date:

29/01/2025

3. Public Comments

Public Comments start date:

16/04/2025

Public Comments end date:

09/06/2025

Learn more about the standards development process

Standards Development

BS ISO/IEC 27090 ISO/IEC 27090 Cybersecurity. Artificial Intelligence. Guidance for addressing security threats to artificial intelligence systems

Scope

Comment on proposal

Discard changes?

Submit comment

Submit comment

Follow standard

Unfollow standard

Error