1、Information technology IT asset management Part 4: Resource utilization measurement BS ISO/IEC 197704:2017 BSI Standards Publication WB11885_BSI_StandardCovs_2013_AW.indd 1 15/05/2013 15:06Information technology IT asset management Part 4: Resource utilization measurement Technologies de linformatio
2、n Gestion de biens de logiciel Partie 4: Mesure dutilisation des ressources INTERNATIONAL STANDARD ISO/IEC 19770-4 Reference number ISO/IEC 19770-4:2017(E) First edition 2017-09 ISO/IEC 2017 National foreword This British Standard is the UK implementation of ISO/IEC 197704:2017. The UK participation
3、 in its preparation was entrusted to Technical Committee IST/15, Software and systems engineering. A list of organizations represented on this committee can be obtained on request to its secretary. This publication does not purport to include all the necessary provisions of a contract. Users are res
4、ponsible for its correct application. The British Standards Institution 2017 Published by BSI Standards Limited 2017 ISBN 978 0 580 90695 4 ICS 35.080 Compliance with a British Standard cannot confer immunity from legal obligations. This British Standard was published under the authority of the Stan
5、dards Policy and Strategy Committee on 30 September 2017. Amendments/corrigenda issued since publication Date Text affected BRITISH STANDARD BS ISO/IEC 197704:2017Information technology IT asset management Part 4: Resource utilization measurement Technologies de linformation Gestion de biens de logi
6、ciel Partie 4: Mesure dutilisation des ressources INTERNATIONAL STANDARD ISO/IEC 19770-4 Reference number ISO/IEC 19770-4:2017(E) First edition 2017-09 ISO/IEC 2017 BS ISO/IEC 197704:2017 ii ISO/IEC 2017 All rights reserved COPYRIGHT PROTECTED DOCUMENT ISO/IEC 2017, Published in Switzerland All righ
7、ts reserved. Unless otherwise specified, no part of this publication may be reproduced or utilized otherwise in any form or by any means, electronic or mechanical, including photocopying, or posting on the internet or an intranet, without prior written permission. Permission can be requested from ei
8、ther ISO at the address below or ISOs member body in the country of the requester. ISO copyright office Ch. de Blandonnet 8 CP 401 CH-1214 Vernier, Geneva, Switzerland Tel. +41 22 749 01 11 Fax +41 22 749 09 47 copyrightiso.org www.iso.org ISO/IEC 19770-4:2017(E) BS ISO/IEC 197704:2017 ii ISO/IEC 20
9、17 All rights reserved COPYRIGHT PROTECTED DOCUMENT ISO/IEC 2017, Published in Switzerland All rights reserved. Unless otherwise specified, no part of this publication may be reproduced or utilized otherwise in any form or by any means, electronic or mechanical, including photocopying, or posting on
10、 the internet or an intranet, without prior written permission. Permission can be requested from either ISO at the address below or ISOs member body in the country of the requester. ISO copyright office Ch. de Blandonnet 8 CP 401 CH-1214 Vernier, Geneva, Switzerland Tel. +41 22 749 01 11 Fax +41 22
11、749 09 47 copyrightiso.org www.iso.org ISO/IEC 19770-4:2017(E)ISO/IEC 19770-4:2017(E)Foreword v Introduction vi 1 Scope . 1 1.1 Purpose 1 1.2 Field of application 1 1.3 Limitations 1 2 Normative references 1 3 T erms and definitions . 2 4 Conformance . 4 4.1 RUM conformance 4 4.2 Application conform
12、ance . 4 5 Key concepts . 4 5.1 General . 4 5.2 Software asset and IT asset identification. 5 5.3 Measurements . 5 5.4 Relationship to other ISO/IEC 19770 family information structures . 5 6 Implementation requirements and guidance 5 6.1 Usage scenario . 5 6.2 Unique registration ID (regid) . 6 6.2.
13、1 Overview . 6 6.2.2 Structure of regid 6 6.2.3 Examples of regid 6 6.3 XML and XSD . 6 6.4 Time formats. 7 6.5 Frequency of generation . 7 6.6 Filename . 7 6.7 File extension . 7 6.8 File location 8 6.9 Managing file sizes and file numbers . 8 6.10 Uninstallation and upgrade 8 6.11 Digital signatur
14、es 8 6.12 Nesting XML documents . 8 7 Tool considerations . 8 8 Schema elements 8 8.1 Overview 8 8.2 Minimum RUM data required. 9 8.3 XML element and attribute names 10 8.4 Data values 11 8.4.1 Resource Utilization .11 8.4.2 AssetIdentification 12 8.4.3 Measurement .13 8.4.4 Value 13 8.4.5 Link .14
15、8.4.6 Meta .15 8.4.7 Asset 15 8.4.8 Instance .15 8.5 Type definitions 15 8.5.1 Ownership 15 8.5.2 rel .16 8.5.3 NMTOKEN .16 Annex A (normative) XML S chema Definition .17 ISO/IEC 2017 All rights reserved iii Contents Page BS ISO/IEC 197704:2017 ISO/IEC 19770-4:2017(E)Annex B (informative) Ex amples
16、of multiple file RU M and nesting XML documents .30 Annex C (informative) Examples of linking related software asset from the RUM 33 Bibliography .38 iv ISO/IEC 2017 All rights reserved BS ISO/IEC 197704:2017 ISO/IEC 19770-4:2017(E)Annex B (informative) Ex amples of multiple file RU M and nesting XM
17、L documents .30 Annex C (informative) Examples of linking related software asset from the RUM 33 Bibliography .38 iv ISO/IEC 2017 All rights reserved ISO/IEC 19770-4:2017(E) Foreword ISO (the International Organization for Standardization) and IEC (the International Electrotechnical Commission) form
18、 the specialized system for worldwide standardization. National bodies that are members of ISO or IEC participate in the development of International Standards through technical committees established by the respective organization to deal with particular fields of technical activity. ISO and IEC te
19、chnical committees collaborate in fields of mutual interest. Other international organizations, governmental and non-governmental, in liaison with ISO and IEC, also take part in the work. In the field of information technology, ISO and IEC have established a joint technical committee, ISO/IEC JTC 1.
20、 The procedures used to develop this document and those intended for its further maintenance are described in the ISO/IEC Directives, Part 1. In particular the different approval criteria needed for the different types of ISO documents should be noted. This document was drafted in accordance with th
21、e editorial rules of the ISO/IEC Directives, Part 2 (see www.iso.org/directives). Attention is drawn to the possibility that some of the elements of this document may be the subject of patent rights. ISO shall not be held responsible for identifying any or all such patent rights. Details of any pate
22、nt rights identified during the development of the document will be in the Introduction and/or on the ISO list of patent declarations received (see www.iso.org/patents). Any trade name used in this document is information given for the convenience of users and does not constitute an endorsement. For
23、 an explanation on the voluntary nature of standards, the meaning of ISO specific terms and expressions related to conformity assessment, as well as information about ISOs adherence to the World Trade Organization (WTO) principles in the Technical Barriers to Trade (TBT) see the following URL: www.i
24、so.org/iso/foreword.html. This document was prepared by Joint Technical Committee ISO/IEC JTC 1, Information technology, Subcommittee SC 7, Software and systems engineering. A list of all parts in the ISO/IEC 19770 series can be found on the ISO website. Guidelines for mapping of industry Software A
25、sset Management (SAM) practices with the ISO/IEC 19770 series of standards and guidelines for the application of ISO/IEC 19770-1 for small organizations will form the subjects of future ISO/IEC 19770-8 and ISO/IEC 19770-11, respectively. ISO/IEC 2017 All rights reserved v BS ISO/IEC 197704:2017 ISO/
26、IEC 19770-4:2017(E) Introduction 0.1 Overview International Standards in the ISO/IEC 19770 series of standards for IT asset management (ITAM) address both the processes and technology for managing IT assets. Because IT is an essential enabler for almost all activity in todays world, these standards
27、should integrate tightly into all of IT. For example, from a process perspective, ITAM standards should be able to be used with all management system standards, because hardware and software, and management of hardware and software management are essential components of any modern management system.
28、 From a technology perspective, ITAM standards for information structures provide not only for the interoperability of IT management data, but also provide the basis for many additional benefits such as more effective security in the use of software. ITAM standards for information structures also fa
29、cilitate significant automation of IT functionality, such as improved authentication of software and easier and more consistent collection of data relating to the use of that software. 0.2 Purpose of this document This document provides an International Standard for Resource Utilization Measurement
30、(RUM). A RUM is a standardized structure containing usage information about the resources that are related to the use of an IT asset. A RUM will often be provided in an XML data file, but the same information may be accessible through other means depending on the platform and the IT asset/product. T
31、his document contains information structures that are designed to align with the identification information defined in ISO/IEC 19770-2, and with the entitlement information defined in ISO/IEC 19770- 3. When used together, these three types of information have the capability to significantly enhance
32、and automate the processes of IT asset management. This document supports the IT asset management processes defined in ISO/IEC 19770-1. This document also supports the other parts of the ISO/IEC 19770 series of standards that define information structures. The RUM is specifically designed to be gene
33、ral-purpose and usable in a wide variety of situations. Like other information structures defined in the ISO/IEC 19770 series of standards, the consumer of a RUM may be an organization and/or a tool or other consumers. In contrast to the other information structures in the ISO/IEC 19770 series, the
34、entity creating a RUM data on a periodic basis will likely be an IT asset or an automation tool monitoring an IT asset. The definition of a RUM will benefit all stakeholders involved in the creation, licensing, distribution, releasing, installation, and on-going management of IT assets. Key benefits
35、 associated with a RUM for three specific groups of stakeholders include: IT asset users RUM data will typically be generated and processed by IT assets and automation tools, within the consumers enterprise boundary, for purpose of IT asset compliance and optimization; RUM data is human readable and
36、 can provide improved visibility into resource utilization within IT assets independent of vendor or third-party supplied tools; the ability to combine identification, entitlement, and resource utilization information together to perform quantitative and authoritative IT asset management, for exampl
37、e, to meet compliance requirements;vi ISO/IEC 2017 All rights reserved BS ISO/IEC 197704:2017 ISO/IEC 19770-4:2017(E) Introduction 0.1 Overview International Standards in the ISO/IEC 19770 series of standards for IT asset management (ITAM) address both the processes and technology for managing IT as
38、sets. Because IT is an essential enabler for almost all activity in todays world, these standards should integrate tightly into all of IT. For example, from a process perspective, ITAM standards should be able to be used with all management system standards, because hardware and software, and manage
39、ment of hardware and software management are essential components of any modern management system. From a technology perspective, ITAM standards for information structures provide not only for the interoperability of IT management data, but also provide the basis for many additional benefits such as
40、 more effective security in the use of software. ITAM standards for information structures also facilitate significant automation of IT functionality, such as improved authentication of software and easier and more consistent collection of data relating to the use of that software. 0.2 Purpose of th
41、is document This document provides an International Standard for Resource Utilization Measurement (RUM). A RUM is a standardized structure containing usage information about the resources that are related to the use of an IT asset. A RUM will often be provided in an XML data file, but the same infor
42、mation may be accessible through other means depending on the platform and the IT asset/product. This document contains information structures that are designed to align with the identification information defined in ISO/IEC 19770-2, and with the entitlement information defined in ISO/IEC 19770- 3.
43、When used together, these three types of information have the capability to significantly enhance and automate the processes of IT asset management. This document supports the IT asset management processes defined in ISO/IEC 19770-1. This document also supports the other parts of the ISO/IEC 19770 s
44、eries of standards that define information structures. The RUM is specifically designed to be general-purpose and usable in a wide variety of situations. Like other information structures defined in the ISO/IEC 19770 series of standards, the consumer of a RUM may be an organization and/or a tool or
45、other consumers. In contrast to the other information structures in the ISO/IEC 19770 series, the entity creating a RUM data on a periodic basis will likely be an IT asset or an automation tool monitoring an IT asset. The definition of a RUM will benefit all stakeholders involved in the creation, li
46、censing, distribution, releasing, installation, and on-going management of IT assets. Key benefits associated with a RUM for three specific groups of stakeholders include: IT asset users RUM data will typically be generated and processed by IT assets and automation tools, within the consumers enterp
47、rise boundary, for purpose of IT asset compliance and optimization; RUM data is human readable and can provide improved visibility into resource utilization within IT assets independent of vendor or third-party supplied tools; the ability to combine identification, entitlement, and resource utilizat
48、ion information together to perform quantitative and authoritative IT asset management, for example, to meet compliance requirements;vi ISO/IEC 2017 All rights reserved ISO/IEC 19770-4:2017(E) a much-improved ability to perform IT asset management in support of green data center strategies such as o
49、ptimization of the use of power and air conditioning; IT asset manufacturers the ability to consistently and authoritatively generate resource utilization information for consumption by a central facility that is maintained by the creator, or one or more third-party tools, or by the IT asset users; the ability to support multiple instances and types of third-party tools with a single set of functionality within the IT asset; the ability to offer a service to track real-time IT asset usa
