ISO/IEC 19770 Standard Update - Turning Theory Into Practice

07 December 2009
4 minute read
Best practice

ISO/IEC 19770 Standard Update - Turning Theory Into Practice

07 December 2009
4 minute read

Ready,-Steady,-GoISO/IEC 19770-2 Published

After three years of work the ISO/IEC 19770-2 standard has been published by ISO.

I think this is a great initiative and the team behind the ISO standard have done some great work.

It is now all about the execution – the best thing end users can do to make sure the standard is successful is to be bullish with their software vendors, dig their heels in, and insist that their suppliers adopt the standard. I hope to publish more resources over the coming months on the ITAM Review on how to work ISO/IEC 19770-2 requirements into your contracts and tenders.

Turning Theory Into Practice

TagVault is a key player in this execution. TagVault is a non-profit organisation designed to be a certification authority for software tags. This ensures all tags conform to the standard and use the same terminology. Certified software tags are digitally signed and time-stamped using a certificate issued by Verisign, this means a third party can validate that the tags are accurate and have not been tampered with.

TagVault to Provide Free Membership To Government Agencies

TagVault has announced today that it will be offering free membership to government organisations. These memberships will provide government organizations with access to tools, information and training that make software easier to identify.

Independently verified software is of particular interest to government agencies as it allows automated compliance with the consensus audit guidelines (CAG) and the NIST 800-53 controls as they relate to software.

The TagVault certification process also makes it more efficient for governmental organisations to follow presidential executive order #13103 requiring organisations to be in compliance with software entitlement processes. Intelligent reporting, for example based on the United Nations Standard Product and Services Code (UNSPSC), is one of the elements included in software identification tags. This simplifies the reconciliation with entitlements and purchasing records and provides signficant operational efficiencies and reporting benefits to the organisation.

Commenting on the TagVault initiative, Alan Vander Mallie, Federal ITAM Program Manager of GSA, said:

“The GSA program is looking forward to seeing software tags in use by all software vendors as soon as possible and is looking for federal agencies to share their tagging requirements. In the context of open and transparent Government, an organization such as TagVault.org allows federal agencies to participate directly with industry towards the common goal of increasing the compliancy and security of its assets. Software tagging efforts and the open exchange of tagging requirements support the basic tenets of the GSA IT asset management program : know what you have and who you are buying from, manage and buy smarter, while increasing the overall compliancy of your IT assets”.

Steve Klos, executive director of TagVault stated

Steve Klos, TagVault

Steve Klos, TagVault

“Government members of TagVault.org will learn what they can do to ensure the software they purchase can be easily managed, as well as using the information to securely identify known software in their network. TagVault.org is excited to provide this new membership program to government agencies and look forward to the seeing the benefits of certified tags providing benefits to both government and commercial organizations.”

For more details visit the TagVault Website

Useful Links

About Martin Thompson

Martin is the founder of ITAM Forum, a not-for-profit trade body for the advancement of IT Asset Management.

He is also the author of the book "Practical ITAM - The essential guide for IT Asset Managers", a book that describes how to get started and make a difference in the field of IT Asset Management. In addition, Martin developed the PITAM training course and certification.

Connect with Martin on LinkedIn.

Can’t find what you’re looking for?

  • news post 1 Resources

    An Introduction to Scope 4 Emissions

    Executive Summary For ITAM teams, sustainability is a core responsibility and opportunity. Managing hardware, software, and cloud resources now comes with the ability to track, reduce, and report carbon emissions. Understanding emission scopes—from direct operational emissions ...
    Read More
  • news post 1 AI

    AI and ITAM: State of Play 2024 Research Report

    In 2024, the ITAM Forum and General Interfaces conducted a global survey (On behalf of the ITAM Forum’s AI+ITAM Working Group) targeting ITAM practitioners, executives, and stakeholders to explore the growing influence of AI on the ...
    Read More
  • news post 1 ITAM News & Analysis

    Will 'Sustainable IT' be Caught in the Crossfire?

    In the days immediately following his inauguration, President Trump and his team declared war on Diversity, Equity, and Inclusion (DEI) programs at the federal level. The impact has been felt far and wide. Many government contractors ...
    Read More
  • news post 1 AI

    Are we ready for outcome-based pricing?

    When I first joined the ITAM industry (which feels like a million years ago), the predominant licensing metric in the market was per device. So, if you have three devices, you need three licenses. Then, with ...
    Read More