ISO/IEC INTERNATIONAL STANDARD 27038 Firstedition 2014-03-15 Information technology Security techniques Specification for digital redaction Technologies de I'information-Techniques de sécurité- Spécifications pour la rédaction numerique Reference number ISO/IEC27038:2014(E) E . CopyihtInternatinal Organization for Standardization @IS0/IEC2014 ed without license from IHS Not for Resale IS0/IEC27038:2014(E) COPYRIGHTPROTECTEDDOCUMENT IS0/IEC2014 All rights reserved. Unless otherwise specified, no part of this publication may be reproduced or utilized otherwise in any form or by any means, electronic or mechanical, including photocopying, or posting on the internet or an intranet, without prior written permission. Permission can be requested from either ISO at the address below or ISO's member body in the country of the requester. ISO copyright office Case postale 56.CH-1211 Geneva 20 Tel. + 4122 749 0111 Fax +41 22 749 09 47 E-mail copyright@iso.org Web www.iso.org Published in Switzerland @IS0/IEC 2014-All rights reserved No reproduction or networking permited without license from IHS Not for Resale IS0/IEC27038:2014(E) Contents Page Foreword ..iv Introduction.. 1 Scope. 2 Terms and definitions 3 Symbols and abbreviated terms ..2 4 General principles of digital redaction .2 4.1 Introduction .2 4.2 Anonymization .2 5 Requirements .2 5.1 Overview .2 5.2 Redaction principles 3 6 Redaction processes ..4 6.1 Introduction .4 6.2 Paperintermediaries .4 6.3 Digitalimageintermediaries 4 6.4 Simple digital redaction. ..4 6.5 Complexdigitalredaction 5 6.6 Contextual information .5 7 Keeping records of redaction work ..6 8 Characteristics ofsoftwareredactiontools .6 9 Requirements for redaction testing .7 AnnexA(informative)Redacting ofPDFdocuments .9 iii IHS under I nse with IS thout license from IHS Not for Resale