Iso 27090 -

Continuous integrity monitoring of model parameters. Automated alerting on statistical anomalies (e.g., sudden accuracy drop). Forensic storage with write-once-read-many (WORM) controls. Regular forensic readiness testing.

All inferences logged with input hashes, output, timestamp, and user/system context. Model snapshots daily, hashed and signed. Training data provenance recorded. Incident response plan includes AI-specific scenarios. iso 27090

However, recognizing that standards evolve and are occasionally numbered in advance, this paper is written as a for what ISO/IEC 27090 could be, based on gaps in current information security standardization. The paper assumes ISO/IEC 27090 would address “Guidelines for Security Incident Readiness and Digital Forensic Readiness in AI-Driven and Autonomous Systems.” Continuous integrity monitoring of model parameters

No forensic logging beyond default application logs. No model versioning. Inconsistent evidence preservation. and user/system context. Model snapshots daily