New and Emerging Specs & Standards (June 2025)
ISO 4669-2:2025 — Document management — Information classification, marking and handling Part 2: Functional and technical requirements for ICMH solutions
Technical Committee: ISO/TC 171/SC 1
“This document defines functional and technical requirements for solutions addressing the classification, marking, handling and sharing of sensitive documents. It complements ISO 4669-1, which specifies requirements for information classification, marking and handling (ICMH). This document addresses solutions that control and distribute content in digital format, both inside and outside the organization owning the content. The distribution of content by means of physical media is beyond the scope of this document..”
ISO/IEC 27031:2025 — Cybersecurity — Information and communication technology readiness for business continuity
Technical Committee: ISO/IEC JTC 1/SC 27
“ISO/IEC 27031 provides guidance on ensuring that information and communication technology (ICT) is prepared to support business continuity. It outlines a framework for ICT readiness that aligns with broader business continuity objectives, helping organizations to prevent, respond to and recover from ICT-related disruptions that could impact critical operations. In today’s digital world, organizations rely heavily on ICT systems to operate, deliver services and maintain trust with stakeholders. Disruptions to these systems – from cyberattacks to system failures – can have severe consequences. ISO/IEC 27031 helps organizations build ICT resilience by integrating readiness planning into business continuity and information security practices. It ensures that ICT services can be restored within agreed timeframes, protecting operations, reputation and customer trust. This readiness is not only about internal systems but also extends to dependencies on third-party services such as cloud providers.”
ISO/IEC TR 27599:2025 — Information technology — Brain-computer interfaces — Use cases
Technical Committee: ISO/IEC JTC 1/SC 43
“This document provides a collection of representative use cases of brain-computer interface (BCI) applications in a variety of domains: proposed medical and health, industrial controls, smart environment, etc.This document can be used for the development of potential standards, and it is valuable for a better comprehension of BCI. This document is also helpful for BCI industries and products that provide support for communications among interested parties and stakeholders. This document is applicable to all types of organizations (e.g. commercial enterprises, government agencies, not-for-profit organizations).”
TC56 on Natural Language Interaction Protocol (NLIP) for communication with AI agents call for participation and request for comments [Ecma International]
“Ecma TC56 committee is calling for participation and for feedback from interested stakeholders on the development of a standard protocol for communication among AI agents. Generative AI (GenAI) is reshaping the digital landscape by performing complex tasks once thought to be uniquely human—from translating languages and writing code to generating rich, multi-modal content like images, audio, and video. As innovation accelerates, a new frontier in AI is emerging: agentic AI. Agentic AI refers to systems of digital agents that combine multiple GenAI capabilities to evaluate problems, explore solutions, and take proactive actions on behalf of humans or other AI agents. In enterprise settings, these agents are gaining advanced abilities in contextual reasoning, complex software navigation, information retrieval, question answering, fact-checking, data-driven decision-making, task planning, and problem-solving. The development of this protocol began in March 2024 through a collaborative initiative within the Enterprise Neurosystems Group (ENG), an open-source consortium. This effort led to the formation of TC56 within Ecma International in December 2024. On 1 May 2025, TC56 approved the first draft specification of the NLIP protocol—marking a major milestone in building a more open, secure, and intelligent foundation for the agentic AI era. NLIP offers a path toward global alignment, helping industry, governments, and developers converge on shared standards for safe and interoperable AI agent communication. Interested stakeholders are kindly invited to ask questions, express their comments and provide feedback on the proposed first draft of the standard protocol for agent-to-agent communication. Comments are requested before 20 June 2025 so they can be discussed and incorporated into the second draft specifications.”
EDUCAUSE QuickPoll Results: AI-Related Procurement [EDUCAUSE]
“The authors of a recent article in EDUCAUSE Review interviewed 12 procurement-related professionals to provide AI-related procurement guidance to the higher education community. This QuickPoll builds on that work, exploring how procurement processes account for AI tools, what challenges and opportunities procurement professionals are encountering, and what actions can be taken to improve AI-related procurement.”
Privacy Principles is a W3C Statement [W3C]
“The W3C Technical Architecture Group (TAG) has published the Privacy Principles as a W3C Statement. Privacy is an essential part of the web. This document provides definitions for privacy and related concepts that are applicable worldwide as well as a set of privacy principles that should guide the development of the web as a trustworthy platform. People using the web would benefit from a stronger relationship between technology and policy, and this document is written to work with both. W3C Statements provide a stable reference for documents not intended to be formal standards, but have been formally reviewed and are endorsed by W3C.”
Call for Participation: Data Provenance Standards Technical Committee (DPS TC) [OASIS]
“New TC aims to implement consistent tagging and metadata frameworks across data ecosystems—down to database, table, and column levels—to provide comprehensive data lineage and collection details tracking and support responsible data use, privacy, and compliance across all industries.”