ISO SAE 21434-2021 工作产品（WP）整理

无趣胜有趣

已于 2022-11-04 11:32:00 修改

阅读量1.8k

点赞数

分类专栏：标准体系 ISO 21434 文章标签：网络安全

于 2022-10-10 14:38:23 首次发布

本文链接：https://blog.csdn.net/weixin_51535864/article/details/127244092

版权

标准体系同时被 2 个专栏收录

3 篇文章 4 订阅

订阅专栏

ISO 21434

3 篇文章 1 订阅

订阅专栏

本文旨在将21434中各阶段涉及的WP统一梳理出来，方便学习及查阅。

“WP” for a work product
序号	编号	标准原文	中文翻译
1	WP-05-01	Cybersecurity policy, rules and processes, resulting from the requirements of 5.4.1 to 5.4.3	网络安全政策、规则和流程，来自5.4.1至5.4.3的结果
2	WP-05-02	Evidence of competence management, awareness management resulting from [RQ-05-07] and continuous improvement resulting from [RQ-05-08] of 5.4.2	能力管理的证据，来自5.4.2的[RQ-05-07]意识管理的结果和由[RQ-05-08]持续改进的结果
3	WP-05-03	Evidence of the organization's management systems, resulting from the requirements of 5.4.4 and 5.4.6	组织管理体系的证明，来自5.4.4和5.4.6的结果
4	WP-05-04	Evidence of tool management, resulting from the requirements of 5.4.5	工具管理的证明，来自5.4.5的结果
5	WP-05-05	Organizational cybersecurity audit report, resulting from the requirements of 5.4.7	组织网络安全审计报告，来自5.4.7的结果
6	WP-06-01	Cybersecurity plan, resulting from the requirements of 6.4.1 to 6.4.6	网络安全计划，来自6.4.1至6.4.6的结果
7	WP-06-02	Cybersecurity case, resulting from the requirements of 6.4.7	网络安全案例，来自6.4.7的结果
8	WP-06-03	Cybersecurity assessment report, if applicable, resulting from the requirements of 6.4.8	网络安全评估报告（如适用），来自6.4.8的结果
9	WP-06-04	Release for post-development report, resulting from the requirements of 6.4.9	发布开发后报告，来自6.4.9的结果
10	WP-07-01	Cybersecurity interface agreement, resulting from the requirements of 7.4.3	网络安全接口协议，来自7.4.3的结果
11	WP-08-01	Sources for cybersecurity information, resulting from [RQ-08-01]	网络安全信息来源，来自[RQ-08-01]的结果
12	WP-08-02	Triggers, resulting from [RQ-08-02]	触发器，来自[RQ-08-02]的结果
13	WP-08-03	Cybersecurity events, resulting from [RQ-08-03]	网络安全事件，来自[RQ-08-03]的结果
14	WP-08-04	Weaknesses from cybersecurity events, resulting from [RQ-08-04]	网络安全事件的弱点，来自[RQ-08-04]的结果
15	WP-08-05	Vulnerability analysis, resulting from [RQ-08-05] and [RQ-08-06]	脆弱性分析，来自 [RQ-08-05] 和 [RQ-08-06]的结果
16	WP-08-06	Evidence of managed vulnerabilities, resulting from [RQ-08-07]	漏洞管理的证明，来自[RQ-08-07]的结果
17	WP-09-01	Item definition, resulting from the requirements of 9.3.2	相关项的定义,来自9.3.2要求的结果
18	WP-09-02	TARA, resulting from [RQ-09-03] and [RQ-09-04]	TARA，来自 [RQ-09-03] 和 [RQ-09-04]的结果
19	WP-09-03	Cybersecurity goals, resulting from [RQ-09-05]	网络安全目标，来自 [RQ-09-05]的结果
20	WP-09-04	Cybersecurity claims, resulting from [RQ-09-06]	网络安全声明，来自[RQ-09-06]的结果
21	WP-09-05	Verification report for cybersecurity goals, resulting from [RQ-09-07]	网络安全目标验证报告，来自[RQ-09-07]的结果
22	WP-09-06	Cybersecurity concept, resulting from [RQ-09-08], [RQ-09-09] and [RQ-09-10]	网络安全概念，来自[RQ-09-08], [RQ-09-09] 和 [RQ-09-10]的结果
23	WP-09-07	Verification report for the cybersecurity concept, resulting from [RQ-09-11]	网络安全概念验证报告，来自[RQ-09-11]的结果
24	WP-10-01	Cybersecurity specifications, resulting from [RQ-10-01] and [RQ-10-02]	网络安全规范，来自[RQ-10-01] 和 [RQ-10-02]的结果
25	WP-10-02	Cybersecurity requirements for post-development, resulting from [RQ-10-03]	开发后的网络安全要求，来自[RQ-10-03]的结果
26	WP-10-03	Documentation of the modelling, design or programming languages and coding guidelines, if applicable, resulting from [RQ-10-04] and [RQ-10-05]	有关建模、设计或编程语言及编码指引的文件（如适用），来自 [RQ-10-04] 和 [RQ-10-05]的结果
27	WP-10-04	Verification report for the cybersecurity specifications, resulting from [RQ-10-08]	网络安全规范的验证报告，来自 [RQ-10-08]的结果
28	WP-10-05	Weaknesses found during product development, resulting from [RQ-10-07] and [RC-10-12], if applicable	产品开发过程中发现的弱点（如适用），来自 [RQ-10-07] 和 [RC-10-12]的结果
29	WP-10-06	Integration and verification specification, resulting from [RQ-10-10]	集成与验证规范，来自[RQ-10-10]的结果
30	WP-10-07	Integration and verification report, resulting from [RQ-10-09], [RQ-10-11] and [RC-10-12]	集成与验证报告，来自[RQ-10-09], [RQ-10-11] 和 [RC-10-12]的结果
31	WP-11-01	Validation report, resulting from [RQ-11-01] and [RQ-11-02]	验证报告，来自[RQ-11-01] 和 [RQ-11-02]的结果
32	WP-12-01	Production control plan, resulting from [RQ-12-01] and [RQ-12-02]	生产控制计划，来自[RQ-12-01] 和 [RQ-12-02]的结果
33	WP-13-01	Cybersecurity incident response plan, resulting from [RQ-13-01]	网络安全事件响应计划，来自 [RQ-13-01]的结果
34	WP-14-01	Procedures to communicate the end of cybersecurity support, resulting from [RQ-14-01]	网络安全支持的沟通程序，来自 [RQ-14-01]的结果
35	WP-15-01	Damage scenarios, resulting from [RQ-15-01]	损坏场景，来自[RQ-15-01]的结果
36	WP-15-02	Assets with cybersecurity properties, resulting from [RQ-15-02]	具有网络安全属性的资产，来自 [RQ-15-02]的结果
37	WP-15-03	Threat scenarios, resulting from [RQ-15-03]	威胁场景，来自[RQ-15-03]的结果
38	WP-15-04	Impact ratings with associated impact categories, resulting from [RQ-15-04] to [RQ-15-06]	与影响类别相关的影响评级，来自[RQ-15-04] -- [RQ-15-06]的结果
39	WP-15-05	Attack paths, resulting from [RQ-15-08] and [RQ-15-09]	攻击路径，来自[RQ-15-08] 和 [RQ-15-09]的结果
40	WP-15-06	Attack feasibility ratings, resulting from [RQ-15-10]	攻击可能性评价，来自[RQ-15-10]的结果
41	WP-15-07	Risk values, resulting from [RQ-15-15] and [RQ-15-16]	风险值，来自 [RQ-15-15] 和 [RQ-15-16]的结果
42	WP-15-08	Risk treatment decisions, resulting from [RQ-15-17]	风险处置决策，来自 [RQ-15-17]的结果