Browse quality standards by category first, then jump to the detailed standard pages. Hover a standard chip to get a one-sentence orientation before clicking.
General
9Broad software and systems quality/process standards.
IEEE 2857
IEEE 2857: Privacy Engineering for Software and SystemsIEEE 2857-2021 provides comprehensive guidelines for engineering privacy into software systems and computin...
ISO/IEC 14756
ISO/IEC 14756: Measurement and rating of performance of computer-based software systemsThis international standard specifies methods for measuring and evaluating ...
ISO/IEC 25010
ISO/IEC 25010: Systems and software Quality Requirements and Evaluation (SQuaRE)It defines a product quality model which is composed of nine characteristics, that...
ISO/IEC 25019
ISO/IEC 25019: Systems and software engineering — Systems and software Quality Requirements and Evaluation (SQuaRE) — Quality-in-use modelThis standard, published...
ISO/IEC 29100
ISO/IEC 29100:2011 - Information Technology — Security Techniques — Privacy FrameworkISO/IEC 29100 provides a privacy framework that establishes a common privacy ...
ISO/IEC 5055
ISO/IEC 5055 defines four automated source code quality measures derived from detecting and counting severe weaknesses in source code that impact key quality char...
ISO/IEC/IEEE 12207
ISO/IEC/IEEE 12207:2017 - Systems and Software Engineering — Software Life Cycle ProcessesISO/IEC/IEEE 12207 establishes a comprehensive framework for software li...
ISO/IEC/IEEE 42010
ISO/IEC/IEEE 42010:2022 - Architecture DescriptionThis standard provides a framework for creating, evaluating, and comparing architecture descriptions. It establi...
ISO/IEC/IEEE 42030
ISO/IEC/IEEE 42030:2019 - Software, Systems and Enterprise Architecture Evaluation FrameworkThis international standard provides a systematic framework for evalua...
Accessibility
3Making digital systems accessible to people with disabilities.
EN 301 549
EN 301 549: Accessibility requirements for ICT products and servicesEN 301 549 “Accessibility requirements for ICT products and services” is a comprehensive Europ...
ISO/IEC/IEEE 26514
Systems and software engineering — Design and development of information for usersThis standard provides requirements for the design and development of informatio...
WCAG 2.2
WCAG 2.2: Web Content Accessibility GuidelinesThe Web Content Accessibility Guidelines (WCAG) 2.2 is the international standard for web accessibility, defining ho...
Usability
5Ease of use, learnability, and overall interaction quality.
EN 301 549
EN 301 549: Accessibility requirements for ICT products and servicesEN 301 549 “Accessibility requirements for ICT products and services” is a comprehensive Europ...
ISO/IEC 25010
ISO/IEC 25010: Systems and software Quality Requirements and Evaluation (SQuaRE)It defines a product quality model which is composed of nine characteristics, that...
ISO/IEC 25022
ISO/IEC 25022: Systems and software engineering — Measurement of quality in useThis standard is part of the ISO/IEC 25000 (SQuaRE) series. It defines measures for...
ISO/IEC/IEEE 26514
Systems and software engineering — Design and development of information for usersThis standard provides requirements for the design and development of informatio...
WCAG 2.2
WCAG 2.2: Web Content Accessibility GuidelinesThe Web Content Accessibility Guidelines (WCAG) 2.2 is the international standard for web accessibility, defining ho...
AI
5AI/ML lifecycle governance, risk, transparency, and operational control.
AIUC-1
AIUC-1: (attempt of an) AI agent standardAIUC-1 tries to establish an AI agent standard, designed to facilitate enterprise adoption of AI. It provides a framework...
ETSI EN 304 223
ETSI EN 304 223: Securing Artificial Intelligence (SAI) - Baseline Cyber Security Requirements for AI Models and SystemsETSI EN 304 223 is a European Standard (EN...
ISO/IEC 22989
ISO/IEC 22989: Artificial intelligence — concepts and terminologyISO/IEC 22989:2022 establishes a common vocabulary for artificial intelligence (AI). It defines c...
ISO/IEC 42001
ISO/IEC 42001: Artificial Intelligence Management System (AIMS)ISO/IEC 42001:2023 is an international standard that provides a framework for establishing, impleme...
ISO/IEC TR 24028
ISO/IEC TR 24028:2020: Overview of trustworthiness in artificial intelligenceISO/IEC TR 24028:2020 “Overview of trustworthiness in artificial intelligence” is a f...
Trustworthiness
1Cross-cutting trustworthiness concerns for AI-enabled systems.
Safety
5Functional safety where failure can cause harm to people, assets, or environment.
DO-178C
DO-178C (with EUROCAE ED-12C) is the de facto international standard for the development and certification of software used in airborne systems and equipment. Pub...
IEC 61508
IEC 61508: Functional safety (generic, cross-industry)IEC 61508 is the foundational international standard for achieving functional safety of electrical/electroni...
IEC 62304
IEC 62304: “Medical device software – Software life cycle processes”This international standard defines the requirements for the software development life cycle o...
ISO 26262
ISO 26262 is the automotive adaptation of IEC 61508 for functional safety of electrical and/or electronic (E/E) systems installed in series-production road vehicl...
MISRA-C
MISRA C is a widely adopted set of guidelines (aka “standard”) for developing software in the C language, especially for safety‑ and security‑related embedded sys...
Security
9Information/cyber security, controls, and resilience practices.
CRA
Cyber Resilience Act (CRA)With the CRA, the European Union set essential cybersecurity requirements for products with digital elements (hardware, software, and in...
ETSI EN 304 223
ETSI EN 304 223: Securing Artificial Intelligence (SAI) - Baseline Cyber Security Requirements for AI Models and SystemsETSI EN 304 223 is a European Standard (EN...
GDPR
GDPR: General Data Protection Regulation (EU) 2016/679The General Data Protection Regulation is a comprehensive data protection law in the European Union that cam...
IEC 62443
IEC 62443: Security for Industrial Automation and Control Systems (IACS)IEC 62443 is a series of standards that provides a framework for cybersecurity in industri...
ISO 15408
ISO/IEC 15408: Common Criteria for Information Technology Security EvaluationAlso known as the Common Criteria (CC), this standard provides a comprehensive framew...
ISO/IEC 27001
ISO/IEC 27001 is an international standard titled:“Information technology — Security techniques — Information security management systems — Requirements”It specif...
ISO/IEC TR 24028
ISO/IEC TR 24028:2020: Overview of trustworthiness in artificial intelligenceISO/IEC TR 24028:2020 “Overview of trustworthiness in artificial intelligence” is a f...
NIST SP 800-53
The full title of this standard is “NIST Special Publication 800-53 — Security and Privacy Controls for Information Systems and Organizations” (here abbreviated t...
PCI DSS
PCI Data Security Standard (PCI DSS)The Payment Card Industry Data Security Standard (PCI DSS) defines baseline technical and operational requirements to protect ...
Privacy
4Personal data protection, privacy engineering, and governance controls.
GDPR
GDPR: General Data Protection Regulation (EU) 2016/679The General Data Protection Regulation is a comprehensive data protection law in the European Union that cam...
IEEE 2857
IEEE 2857: Privacy Engineering for Software and SystemsIEEE 2857-2021 provides comprehensive guidelines for engineering privacy into software systems and computin...
ISO/IEC 29100
ISO/IEC 29100:2011 - Information Technology — Security Techniques — Privacy FrameworkISO/IEC 29100 provides a privacy framework that establishes a common privacy ...
NIST SP 800-53
The full title of this standard is “NIST Special Publication 800-53 — Security and Privacy Controls for Information Systems and Organizations” (here abbreviated t...
Data
2Data quality concepts and measurable data characteristics.
ISO/IEC 25022
ISO/IEC 25022: Systems and software engineering — Measurement of quality in useThis standard is part of the ISO/IEC 25000 (SQuaRE) series. It defines measures for...
ISO/IEC 25024
ISO/IEC 25024: Measurement of data quality (SQuaRE series)ISO/IEC 25024 specifies the measurement of data quality characteristics and associated measures to evalu...
Governance
1Organizational direction and control of IT and architecture decisions.
Sector
8Vertical or industry-specific standards and regulations.
DO-178C
DO-178C (with EUROCAE ED-12C) is the de facto international standard for the development and certification of software used in airborne systems and equipment. Pub...
HL7
HL7: Healthcare Interoperability StandardsHealth Level Seven International (HL7) is an ANSI‑accredited standards‑developing organization that creates specificatio...
IEC 62304
IEC 62304: “Medical device software – Software life cycle processes”This international standard defines the requirements for the software development life cycle o...
IEC 62443
IEC 62443: Security for Industrial Automation and Control Systems (IACS)IEC 62443 is a series of standards that provides a framework for cybersecurity in industri...
ISO 26262
ISO 26262 is the automotive adaptation of IEC 61508 for functional safety of electrical and/or electronic (E/E) systems installed in series-production road vehicl...
MISRA-C
MISRA C is a widely adopted set of guidelines (aka “standard”) for developing software in the C language, especially for safety‑ and security‑related embedded sys...
PCI DSS
PCI Data Security Standard (PCI DSS)The Payment Card Industry Data Security Standard (PCI DSS) defines baseline technical and operational requirements to protect ...
SOX
Sarbanes-Oxley Act of 2002 (SOX) - Financial Reporting and Internal ControlsThe Sarbanes-Oxley Act (SOX) is a U.S. federal law enacted in 2002 that establishes st...
Coding
2Implementation-level and code-focused guidance and constraints.
ISO/IEC 5055
ISO/IEC 5055 defines four automated source code quality measures derived from detecting and counting severe weaknesses in source code that impact key quality char...
MISRA-C
MISRA C is a widely adopted set of guidelines (aka “standard”) for developing software in the C language, especially for safety‑ and security‑related embedded sys...
Documentation
4Architecture, user, and lifecycle documentation standards.
ISO/IEC/IEEE 12207
ISO/IEC/IEEE 12207:2017 - Systems and Software Engineering — Software Life Cycle ProcessesISO/IEC/IEEE 12207 establishes a comprehensive framework for software li...
ISO/IEC/IEEE 26514
Systems and software engineering — Design and development of information for usersThis standard provides requirements for the design and development of informatio...
ISO/IEC/IEEE 42010
ISO/IEC/IEEE 42010:2022 - Architecture DescriptionThis standard provides a framework for creating, evaluating, and comparing architecture descriptions. It establi...
ISO/IEC/IEEE 42030
ISO/IEC/IEEE 42030:2019 - Software, Systems and Enterprise Architecture Evaluation FrameworkThis international standard provides a systematic framework for evalua...
Full standards list grouped by category:
## General
{: .category-header}
## Accessibility
{: .category-header}
## Usability
{: .category-header}
## AI
{: .category-header}
## Trustworthiness
{: .category-header}
## Safety
{: .category-header}
## Security
{: .category-header}
## Privacy
{: .category-header}
## Data
{: .category-header}
## Governance
{: .category-header}
## Sector
{: .category-header}
## Coding
{: .category-header}
## Documentation
{: .category-header}