description icon green arrow

Early in the process, identify applicable Information Sharing and Safeguarding (IS&S) standards. IS&S standards were created to provide a common approach to sharing electronic information among tribal, territorial, local, state, and Federal organizations. Standards help define business processes, provide a common framework, platform, and language to exchange information, and assist with security and privacy. The governance body must be actively engaged in the identification and the application of these standards especially in the context of the policy including privacy concerns. 

 

Desired Outcome: Governance body adopts a policy specifying the standards to be used in IS&S Environment implementation.


checkmark logoPlay Checklist

 

1. Cast a wide net when considering information sharing and safeguarding standards, including national and international standards that contribute to project success.
2. Standards are the lifeblood of information sharing and safeguarding efforts and must be used where applicable. If standards are not an immediate option, consider how they may impact the IS&S Environment over the complete lifecycle.
3. Whenever possible, seek training opportunities to become more familiar with existing standards and their application.
4. Define a specific list of standards that will become the basis of the project (e.g., NIEM, security, privacy, and geospatial standards).
5. Reconcile standards to bridge any gaps and make them interoperable. 
6. Acquire training for developers in the application of standards in building out an IS&S Environment.
7. Ensure that the governance body and participating agencies are committed to the use of standards.

key questions icon purple question markPlay Key Questions

 

1. What standards will be most helpful in expediting information exchanges in less time for development and implementation?
2. What standards will be applied to ensure privacy and security in the IS&S Environment?
3. What expertise is required of the development team to ensure that the standards are appropriately included in the solution designs?

resources icon yellow star Play Resources

 

The following resources can help you with this play:

 

National Information Exchange Model (NIEM)http://www.niem.gov

 

Global Information Sharing Toolkit, Bureau of Justice Assistance-Justice Information Sharing, https://it.ojp.gov/about-gist

 

OASIS (a nonprofit consortium that drives the development, convergence and adoption of open standards for the global information society)https://www.oasis-open.org/

 

Open Geospatial Consortium (OGC) Standardshttp://www.opengeospatial.org/standards

 

Object Management Grouphttp://www.omg.org/

 

National Institute of Standards and Technology (NIST)http://www.nist.gov/

 

International Organization for Standardization (ISO)http://www.iso.org/iso/home/standards.htm

 

Information Exchange Package Documentation (IEPD) Clearinghouse (IEPDs that have been submitted by individuals and organizations who have implemented the Global Justice XML Data Model and the National Information Exchange Model), http://iepd.custhelp.com/

 

Open Standards and Standards ProjectsStandards Coordinating Councilhttp://www.standardscoordination.org/standards

 

Information Sharing Environment (ISE) Information Interoperability Framework (I2F),

http://ise.gov/sites/default/files/FINAL%20-%20ISE_I2F_v0%205.pdf

Common Profile Framework, the ISE Common Profile Framework description (Common Profile) is a means to standardize the way a modular component profile or an information interoperability profile is documented. The Common Profile is an important aid that provides a template for consistently documenting the contents of a profile for inter- and intra-organization information documentation and discovery,

https://www.ise.gov/resources/document-library/common-profile-framework-v20

Data Aggregation Reference Architecture (DARA),

http://www.standardscoordination.org/sites/default/files/docs/DARA_v1.pdf

Geospatial Interoperability Reference Architecture (GIRA),

http://ise.gov/sites/default/files/GIRA.pdf

Structured Threat Information eXpression (STIX)

https://stixproject.github.io/

Trusted Automated eXchange of Indicator Information (TAXII), https://taxiiproject.github.io 

 


Return to the IS&S Environment Playbook