ISO/IEC 26136:2023 ISO/IEC 26136:2023 defines a comprehensive set of life cycle processes for AI systems, providing a structured framework that spans from concept inception through retirement. In the same way that ISO/IEC 12207 defines software life cycle processes and ISO/IEC…

ISO/IEC 26137:2023 ISO/IEC 26137:2023 establishes the definitive framework for validation of artificial intelligence systems. AI system validation differs fundamentally from traditional software validation because AI system behavior is learned from data rather than explicitly programmed. This means that validation must…

Understanding the core protocol for decentralized identity verification on top of OAuth 2.0 1. Understanding OpenID Connect Core ISO/IEC 26131:2024 defines OpenID Connect Core 1.0, a simple identity layer built on top of the OAuth 2.0 protocol. It enables clients…

How OpenID Connect Relying Parties discover OpenID Providers using WebFinger and configuration metadata 1. The Discovery Protocol Overview ISO/IEC 26132:2024 defines OpenID Connect Discovery 1.0, a mechanism that enables an OpenID Connect Relying Party (RP) to discover the end-user’s OpenID…

How OpenID Connect Relying Parties dynamically register with OpenID Providers to obtain client credentials 1. Dynamic Client Registration Overview ISO/IEC 26133:2024 defines OpenID Connect Dynamic Client Registration 1.0, which specifies how an OpenID Connect Relying Party (RP) can dynamically register…

Design by Contract methodology for building trustworthy software systems ISO/IEC 25436 defines the Eiffel method for software analysis and design — a disciplined, contract-driven approach to constructing object-oriented systems. Developed by Bertrand Meyer and formalized through decades of industrial application,…

Standardized software sizing for estimation, benchmarking, and productivity measurement ISO/IEC 25437 standardizes Function Point Analysis (FPA), a method for measuring the functional size of software systems from the user’s perspective. Unlike lines of code (LOC), which measure implementation volume and…

A blueprint for enterprise master data ecosystems ISO/IEC 25642:2023 defines a reference architecture for Master Data Management (MDM) — the integrated set of processes, governance structures, and technical capabilities for managing an enterprise’s core business entities (customers, products, suppliers, locations,…

ISO/IEC 25706:2022 Presentation Attack Detection (PAD) is a critical security component in modern biometric systems. ISO/IEC 25706:2022 establishes a comprehensive framework for evaluating and testing the ability of biometric systems to distinguish between genuine biometric samples and artificial presentations (spoof…

Tracking data lineage across heterogeneous information systems ISO/IEC 25422:2020 defines a provenance data model for representing the origin, derivation, and transformation history of data across information systems. The standard aligns closely with the W3C PROV family of recommendations (PROV-DM, PROV-O,…

Ensuring semantic consistency through controlled reference data ISO/IEC 25434:2021 defines a framework for reference data management (RDM) — the discipline of maintaining standardized code lists, value domains, and lookup tables across heterogeneous information systems. While often overshadowed by master data…

Foundational building blocks for reliable software design and implementation ISO/IEC 25435 establishes a standardized framework for primitive control operations in software engineering. These operations — sequence, selection, iteration, and recursion — form the irreducible building blocks from which all software…

A comprehensive guide to structured usability reporting under SQuaRE ISO/IEC 25066:2014 defines the Common Industry Format (CIF) for usability evaluation reports as part of the SQuaRE (Systems and software Quality Requirements and Evaluation) framework. It provides a standardized structure for…

Foundational security architecture for identification card systems ISO/IEC 25185-1:2024 establishes the general framework and foundational concepts for card security within the ISO/IEC identification card ecosystem. Published in its first edition, this standard addresses the growing need for a unified security…

Building a systematic approach to data quality in modern data ecosystems ISO/IEC 25389:2021 provides a comprehensive framework for data quality management within the broader context of information technology and data management. Published as part of the ISO/IEC data management standards…

High-performance binary wire format for low-latency financial trading systems 1. Introduction to Simple Binary Encoding (SBE) ISO/IEC 25390:2025 defines the Simple Binary Encoding (SBE) — a binary wire format originally developed by the FIX Trading Community for high-performance financial trading…

A complete guide to quality requirements, testing documentation, and conformity evaluation for COTS and packaged software 1. Scope and Importance of ISO/IEC 25051 ISO/IEC 25051 is a critical standard within the SQuaRE series that addresses the unique challenges of evaluating…