Description of PAS 1192-5:2015 2015

This PAS specifies requirements for the security-minded management of projects utilizing digital technologies, associated control systems, for example building management systems, digital built environments and smart asset management. It outlines security threats to information during asset:

• conception, strategy and briefing;

• procurement;

• design;

• construction;

• commissioning and handover;

• operation and maintenance;

• performance management;

• change of use/modification; and

• disposal/demolition.

It explains the need for, and application of, trustworthiness and security controls throughout a built asset’s lifecycle (including the full project lifecycle) to deliver a holistic approach encompassing:

• safety;

• authenticity;

• availability (including reliability);

• confidentiality;

• integrity;

• possession;

• resilience; and

• utility.

This PAS addresses the steps required to create and cultivate an appropriate safety and security mindset and culture across many partners, including the need to monitor and audit compliance.

It provides a foundation to support the evolution of future digital built environments, for example intelligent buildings, infrastructure and smart cities, but does not detail technical architectures for their implementation. While the processes contained within it may be applicable to other data management systems, this PAS does not specifically address issues relating to these systems.

This PAS is intended for use by asset owners or, within a project utilizing digital technologies, the employer. It will also be of interest and relevance to those organizations and individuals employed by an asset owner and involved in the design, construction, maintenance and management of built assets, especially those who wish to protect their commercial or security-related information and intellectual property.

The approach outlined in this PAS is applicable to any built asset or portfolio of assets where asset information is created, stored, processed and viewed in digital form. It is also applicable to the capture of digital survey data as part of day-to-day asset management processes or in anticipation of a future project.

About BSI

BSI Group, also known as the British Standards Institution is the national standards body of the United Kingdom. BSI produces technical standards on a wide range of products and services and also supplies certification and standards-related services to businesses.