CEN/TC 391/WG 2 - CBRN

This document provides guidance for technical and non-technical personnel within the organisation, including those responsible for compliance with statuary and regulatory requirements and industry standards. It provides an overview to the concepts related to the custody transfer lifecycle within the dCoC, framing how such personnel can identify and audit the custody ownership of CBRNE evidence; set policies and follow good practices for metadata governance, and conduct digital operations to ensure the integrity of the data at each custody transfer point. In addition to the metadata required to perform audits, the document also aims to provide:
- Unambiguous definitions of the concepts related to the digital log for each custody transfer (i.e., who owns the custody at each transfer point).
- Guidelines for a dCoC data governance process to ensure the integrity of the DCM and situational-awareness at each transfer point within the dCoC.
- Suggestions regarding metadata management policies and compliance with good practices for non-repudiation digital log, ensuring a standard data structure for data management and auditing
This document is the first part of a series of Technical Specifications on the provision of DCM services for the management of datarelated to the custody of CBRNE evidence. It will be complemented by other specific parts, which give more detailed guidelines for related services, such as the specification of BPMN processes for data governance within the dCoC.

This document provides guidelines for managing and auditing Digital Custody Metadata (DCM), enabling stakeholders to identify and audit custody ownership for CBRNE evidence in the dCoC. It proposes a metadata structure to manage resources assigned to CBRNE evidence and comply with good data governance practices, raising awareness at each custody transfer point.
In addition to considering using the Business Process Model and Notation (BPMN) to specify metadata management processes, therelevance of standard procedures to overcome DCM-related challenges is also addressed. In this domain, the focus is on the metadata structures required to manage digital asset custodians while outlining some of the activities that should be considered when specifying a DCM governance workflow.
This document is the second part of a series of technical specifications for the provision of DCM services for managing data related to the preservation of CBRNE evidence. Please see the first part of this series for a complete understanding of the concepts and stakeholders’ role within the custody transfer lifecycle.

This document contains terms and definitions for CBRNE (chemical, biological, radiological, nuclear, explosive) applications.
Common understanding and communication is important in the implementation of an effective CBRNE response and this communication will be most effective if there is common understanding of the terms used. Many of the terms and definitions listed here have been widely used for many years, while others are the result of cross-cutting experience of areas of CBRNE. The gradual evolution of our understanding of CBRNE and response measures means that CBRNE terminology will continue to develop.
This document is dedicated to first responders, administrative staff, industry representatives and researchers.