The International Organization for Standardization (ISO) extends an invitation to a workshop for the purpose of developing an International Workshop Agreement on information security requirements for lottery and gaming operations.
The development of this ISO IWA has been proposed in order to develop an information security deliverable dedicated to national lotteries and the gaming operators, which would provide them with a specific set of common information security requirements. This technical project also addresses ethical norms in the gaming industry, as they play a vital role in maintaining consumer confidence.
It is proposed that the initial development and publication will be in the form of an IWA with the intent of developing it further into a full ISO standard according to ISO procedures. It is expected that development and publication of this document would follow normal ISO scheduling for an IWA. For the time being, it is foreseen that this new IWA would initially be composed of two parts, based on the existing internationally recognised security standard for the lottery sector (WLA-SCS:2012), which relies on ISO/IEC 27001, the leading international standard for information security management:
Part 1 – the first part would describe General Security and Integrity control objectives and controls – Information security requirements. This currently references the ISO/IEC 27001 global-scope and includes 21 additional general security requirements.
Part 2 – the second part would describe Lottery and Gaming Specific Security and Integrity control objectives and controls to provide an additional 90 lottery and gaming-specific requirements representing current security and integrity best practices.
The workshop will take place on 9 September 2014, in Zurich, Switzerland.