2023 Meeting Materials

IAWG Recommendations (from November 2022 - ready to be revisited and plan of action formed)

CO_SAC revisions: a first stab (by Richard) at how the CO_SAC could/should be reviewed for potential revisions to accomplish at least the following objectives:

1. Aligning requirements between CO and 63x, where there is overlap and non-uniformity (col. Q)*;

2. How a ‘free pass’ might be given for CSPs whose service(s) fall within scope of some InfoSec Management scheme (col. R);

3. And any other ideas which occurred whilst making this initial pass … (col.S).

• Minor caveat: 63A/B criteria may need to change to ensure uniformity, of terms at least, though the real changes need to be in the CO_SAC (e.g. remove ‘Service Defn’, stick to ‘CrP’).

Updated version (as of 9.28.203) with notes from Richard on CO#0050:

IAF Criteria - Areas of Concern

Proposed SAC Updates for Approval:

approved at 8/31 meeting. Public comment open for 63A_SAC. All others with LC. Next LC meeting September 19.

T5-1 Notice
Approved at 8/24/23 meeting (see minutes). Email sent to Approved CSPs, assessors, and registered applicants on 8/30/23.

Supervised Remote Proofing Proposal

Agreed by everyone on 8/24/23 meeting (see minutes) - incorporated into the overall SAC draft above.

Specification of a Service Subject to Assessment (S3A)

after discussion with ARB, Assessors & IAWG leadership on 9/18, it was decided that this does not need to be updated at this time.

Glossary Updates
(May 23 file has track changes; June 20 file is the clean file being voted on)

eballot closed June 27. motion carried. results from eballot.
Published!

CARIN Policy

Google Doc to make internal comments: https://docs.google.com/document/d/17aTJkcOqRsYK5TMqpOcFsAh5817Ppd4x/edit

Address of Record Inquiry, 11.3.2023 (For Discussion: IAWG 11.9.2023)