What is Information Assurance Standard 6 (IAS 6)? - Definition from WhatIs.com

Home
Topics
Compliance and Risk Management
Compliance Regulation and Standard Requirements
Information Assurance Standard 6 (IAS 6)

Definition

Information Assurance Standard 6 (IAS 6)

The Information Assurance Standard 6 (IAS 6) is legislation enacted by the British government in May 2009 as part of its Security Policy Framework (SPF). SPF is a response to government data breaches uncovered in the government's Data Handling Review.

IAS 6 requires all government agencies to submit reports of compliance to the U.K. Cabinet Office to prove that the methods they use to process and store sensitive personal information are secure. The original reporting deadline was 15 June, 2009.

IAS 6 is supported by Good Practice Guide 15, which is published by the U.K. Cabinet Office and the Communications-Electronics Security Group (CESG). CESG gives a more prescriptive explanation of not only the data that must be collected for the report, but also how to collect it.

Related glossary terms: IFRS (International Financial Reporting Standards), National Health Service (NHS), Code of Connection (CoCo), EU Data Protection Directive (Directive 95/46/EC), Privacy and Electronic Communications Regulations (PECR), Financial Services Authority (FSA), Good Practice Guide 13, Basel II, British Standards Institution (BSI), UK Government Connect Secure Extranet (GCSX)

This was last updated in October 2010

Editorial Director: Margaret Rouse

Email Alerts

Register now to receive SearchSecurity.co.uk-related news, tips and more, delivered to your inbox.

By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Dig Deeper

Privacy and electronic communications regulations: Guide to EU cookie compliance

Get advice for implementing PECR regulations requiring website owners to request users’ permission to place a tracking cookie.
EU cookie regulations: Advice for firms in the US and other countries

Expert Alan Calder responds to a reader’s question: Must companies outside the EU change their websites to comply with EU cookie regulations?
A compliance strategy for the controversial cookie opt-in regulation

Businesses face many concerns with the PECR cookie law. Compliance expert Alan Calder offers a compliance strategy for the cookie opt-in regulation.

People who read this also read...

Show me more

Do you have something to add to this definition? Let us know.

Send your comments to techterms@whatis.com

Research More Tech Terms

Search thousands of tech definitions
Browse tech definitions
Browse Alphabetically:
- A
- B
- C
- D
- E
- F
- G
- H
- I
- J
- K
- L
- M
- N
- O
- P
- Q
- R
- S
- T
- U
- V
- W
- X
- Y
- Z
- #

Powered by WhatIs.com

File Extensions and File Formats

File Extension and File Formats List:

A
B
C
D
E
F
G
H
I
J
K
L
M
N
O
P
Q
R
S
T
U
V
W
X
Y
Z
#

Powered by WhatIs.com

More from Related TechTarget Sites

Networking UK
Virtual Data Centre
Data Management UK
Security
Cloud Security
Security IN

Networking UK
- Cisco Live London: 40 and 100 GbE, souped up WLAN
  
  At Cisco Live London, Cisco launched 40 and 100 GbE switching, a souped-up 4-antenna WLAN access point, and a host of network virtualisation technologies.
- UK Networkers should gear up for mobility implementations in 2012
  
  Companies are rethinking legacy tools to take advantage of what users get from having access to data and applications across all kinds of devices, according to TechTarget’s 2012 IT Priorities Survey.
- Cloud gets vote of confidence from UK buyers in 2012 IT priorities
  
  The cloud is set to be a key investment area for UK buyers in 2012 with 30.5% of IT buyers pledging to spend on the technology, according to TechTarget’s 2012 IT Priorities Survey.
Virtual Data Centre
- VMware vSphere 5 storage features: Part two
  
  VMware vSphere 5 storage features include Storage DRS, VSA and data store clusters. IT pros can learn what these features bring to their infrastructure and how best to use them.
- VMware updates vFabric Suite for cloud automation: News roundup
  
  VMware ‘s launch of vFabric Suite 5.1 for cloud automation, Equinix’s acquisition of a colo service provider and UK SMEs’ cloud adoption are this week’s highlights.
- SEPA reaps cost savings running Oracle on VMware
  
  SEPA’s IT team was warned of the complexities of virtualising Oracle database and apps. But strategic design and testing helped it run Oracle on VMware vSphere and reap benefits.
DataManagement UK
- NEC Europe has yen for Host Analytics’ financial planning
  
  NEC Europe has signed up to use Host Analytics' cloud-based financial planning service to better integrate an acquisition and support its growth plans.
- Podcast: How to craft an effective MDM strategy
  
  In this podcast interview, Andy Hayler gives advice on how to create and implement an MDM strategy that is ruthlessly focused on business value.
- Jill Dyché: CEO big data focus good news and bad news for IT
  
  Jill Dyché, a data management expert, sees CEO interest and scepticism as both an opportunity and a threat. Avoid the big data 'gotchas', and don't mistake data warehousing for big data.
Security
- Intrusion detection and prevention: IDS/IPS security guide
  
  This guide is a compilation of SearchSecurity.com's best resources on intrusion detection and prevention. It covers not only the basics of what they are and how they work, but also discusses several other important areas of IDS and IPS security, including IDS/IPS tools, such as Snort, implementation and deployment and wireless intrusion prevention systems (WIPS).
- Praise, criticism for retiring cybersecurity coordinator Howard Schmidt
  
  Security experts say some issues haven’t been adequately addressed by the White House security chief.
- PCI Council urges P2P encryption for mobile payments
  
  A PCI Council guidance document requires merchants to use a validated PIN entry device or secure card reader to accept payments using mobile devices.
Cloud Security
- Leveraging Microsoft Azure security features for PaaS security
  
  Organizations can boost PaaS security late in the game by implementing these stopgap measures.
- Quiz: Understanding cloud-specific security technologies
  
  Think you understand cloud-specific security technologies as well as expert Joseph Granneman does? Test your knowledge with this quiz.
- CSA launches cloud security certification initiative for service providers
  
  Plan calls for working with certification bodies, government agencies, as well as an independent CSA certification.
Information Security
- Information security budgets: Five steps to obtain management buy-in
  
  Getting management to approve security budgets is difficult. Here are guidelines to help you prepare and present information security budgets effectively.
- Maltego tutorial - Part 1: Information gathering
  
  Maltego is a powerful OSINT information gathering tool. Our Maltego tutorial teaches you how to use Maltego for personal reconnaissance of a target.
- POS terminal security: Best practices for point of sale environments
  
  Securing point of sale (POS) environments can be tricky. Shobitha Hariharan and Nitin Bhatnagar share comprehensive POS terminal security best practices.

All Rights Reserved, Copyright 2008 - 2012, TechTarget