Elle donne également des recommandations relatives à la gestion de la documentation critique et des pièces de rechange sensibles pour la protection contre le vol.

Elle ne couvre pas les systèmes de géolocalisation qui surveillent l'emplacement des engins.

Within this document, the term "security" is used in a broad manner to include all crime, safety and security-specific applications, so it is applicable to public and private organizations, regardless of type, size or nature.

While this document provides general examples of implementation strategies and best practices, it is not intended to provide an exhaustive listing of detailed design, architectural or physical security crime prevention through environmental design (CPTED) implementation strategies or restrict the potential applications to only those examples provided in this document.

It provides the principles and requirements for a security operations management system (SOMS). ISO 18788:2015 provides a business and risk management framework for organizations conducting or contracting security operations and related activities and functions while demonstrating:

a) conduct of professional security operations to meet the requirements of clients and other stakeholders;

b) accountability to law and respect for human rights;

c) consistency with voluntary commitments to which it subscribes.

ISO 18788:2015 is applicable to any organization that needs to:

a) establish, implement, maintain and improve an SOMS;

b) assess its conformity with its stated security operations management policy;

c) demonstrate its ability to consistently provide services that meet client needs and are in conformance with applicable laws and human rights requirements.

• consequences and guidance of
  • management and verification of identifiers,
  • physical expression of identifiers, and
  • participants' due diligence;
• vetting of all participants within the system;
• relationship between the unique identifier and possible authentication elements related to it;
• questions that deal with the identification of the inspector and any authorized access to privileged information about the object; and
• inspector access history (logs).

Accordingly, ISO 16678:2014 establishes a framework and outlines functional units used to achieve trustworthiness and interoperability of such systems.

It does not specify any specific technical solutions, but instead describes processes, functions, and functional units using a generic model to illustrate what solutions have in common.

Object identification systems can incorporate other functions and features such as supply chain traceability, quality traceability, marketing activities, and others, but these aspects are out of scope of ISO 16678:2014.