Back to Frameworks

ISO/IEC TR 24028:2020

International
v2020
4 domains
54 controls
Verified

Framework summaries on this platform are AI-assisted interpretations for educational and compliance planning purposes. They do not reproduce or replace the official standards. Refer to the authoritative source for the definitive text. Framework names and trademarks belong to their respective organisations.

Framework Domains (4)

Clause 8 – ISO/IEC TR 24028:2020

20 controls
Controls in the Clause 8 – ISO/IEC TR 24028:2020 domain of ISO/IEC TR 24028:202020 controls
CodeTitle
iso-iec-tr-24028-2020::8.1General
iso-iec-tr-24028-2020::8.10System hardware faults
iso-iec-tr-24028-2020::8.2.2Data poisoning
iso-iec-tr-24028-2020::8.2.5Hardware-focused threats to confidentiality and integrity
iso-iec-tr-24028-2020::8.3.1General
iso-iec-tr-24028-2020::8.3.2Data acquisition
iso-iec-tr-24028-2020::8.3.3Data pre-processing and modelling
iso-iec-tr-24028-2020::8.3.4Model query
iso-iec-tr-24028-2020::8.4Bias
iso-iec-tr-24028-2020::8.5Unpredictability
iso-iec-tr-24028-2020::8.6Opaqueness
iso-iec-tr-24028-2020::8.7Challenges related to the specification of AI systems
iso-iec-tr-24028-2020::8.8Challenges related to the implementation of AI systems
iso-iec-tr-24028-2020::8.8.1Data acquisition and preparation
iso-iec-tr-24028-2020::8.8.2Modelling
iso-iec-tr-24028-2020::8.8.3Model updates
iso-iec-tr-24028-2020::8.8.4Software defects
iso-iec-tr-24028-2020::8.9Challenges related to the use of AI systems
iso-iec-tr-24028-2020::8.9.1Human-computer interaction (HCI) factors
iso-iec-tr-24028-2020::8.9.2Misapplication of AI systems that demonstrate realistic human behaviour

Existing frameworks applicable to trustworthiness – ISO/IEC TR 24028:2020

5 controls
Controls in the Existing frameworks applicable to trustworthiness – ISO/IEC TR 24028:2020 domain of ISO/IEC TR 24028:20205 controls
CodeTitle
iso-iec-tr-24028-2020::5.1Background
iso-iec-tr-24028-2020::5.2Recognition of layers of trust
iso-iec-tr-24028-2020::5.3Application of software and data quality standards
iso-iec-tr-24028-2020::5.4Application of risk management
iso-iec-tr-24028-2020::5.5Hardware-assisted approaches

Mitigation measures – ISO/IEC TR 24028:2020

28 controls
Controls in the Mitigation measures – ISO/IEC TR 24028:2020 domain of ISO/IEC TR 24028:202028 controls
CodeTitle
iso-iec-tr-24028-2020::9.1General
iso-iec-tr-24028-2020::9.10Testing and evaluation
iso-iec-tr-24028-2020::9.10.1General
iso-iec-tr-24028-2020::9.10.2Software validation and verification methods
iso-iec-tr-24028-2020::9.10.3Robustness considerations
iso-iec-tr-24028-2020::9.10.4Privacy-related considerations
iso-iec-tr-24028-2020::9.10.5System predictability considerations
iso-iec-tr-24028-2020::9.11.1Compliance
iso-iec-tr-24028-2020::9.11.2Managing expectations
iso-iec-tr-24028-2020::9.11.3Product labelling
iso-iec-tr-24028-2020::9.11.4Cognitive science research
iso-iec-tr-24028-2020::9.2Transparency
iso-iec-tr-24028-2020::9.3Explainability
iso-iec-tr-24028-2020::9.3.1General
iso-iec-tr-24028-2020::9.3.2Aims of explanation
iso-iec-tr-24028-2020::9.3.3Ex-ante vs ex-post explanation
iso-iec-tr-24028-2020::9.3.4Approaches to explainability
iso-iec-tr-24028-2020::9.3.5Modes of ex-post explanation
iso-iec-tr-24028-2020::9.3.6Levels of explainability
iso-iec-tr-24028-2020::9.3.7Evaluation of the explanations
iso-iec-tr-24028-2020::9.4Controllability
iso-iec-tr-24028-2020::9.4.1General
iso-iec-tr-24028-2020::9.4.2Human-in-the-loop control points
iso-iec-tr-24028-2020::9.5Strategies for reducing bias
iso-iec-tr-24028-2020::9.6Privacy
iso-iec-tr-24028-2020::9.7Reliability, resilience and robustness
iso-iec-tr-24028-2020::9.8Mitigating system hardware faults
iso-iec-tr-24028-2020::9.9Functional safety

Stakeholders – ISO/IEC TR 24028:2020

1 controls
Controls in the Stakeholders – ISO/IEC TR 24028:2020 domain of ISO/IEC TR 24028:20201 controls
CodeTitle
iso-iec-tr-24028-2020::6.1General concepts

Your Compliance Coverage

If you comply with ISO/IEC TR 24028:2020, you already cover:

Maps to 48 other frameworks

54 total controls
ISO/IEC 38500:2024
22 source controls mapped|47 target controls covered
41%
ISO 14004:2016
8 source controls mapped|10 target controls covered
15%
ISO 31000:2018
8 source controls mapped|7 target controls covered
15%
ISO 13485:2016
7 source controls mapped|3 target controls covered
13%
Annex 11 to EU GMP - Computerised Systems
4 source controls mapped|1 target controls covered
7%
ISO/IEC 23894:2023
3 source controls mapped|7 target controls covered
6%
ISO 19011:2018
2 source controls mapped|8 target controls covered
4%
ISO 37301:2021
2 source controls mapped|13 target controls covered
4%
ISO 14001:2015
2 source controls mapped|7 target controls covered
4%
ISO 27701:2019
2 source controls mapped|6 target controls covered
4%
ISO 27001:2022
2 source controls mapped|4 target controls covered
4%
ISO/IEC 42001:2023
2 source controls mapped|3 target controls covered
4%
ISO 27002:2022
2 source controls mapped|2 target controls covered
4%
ISO 37001:2016
1 source controls mapped|2 target controls covered
2%
ISO 9001:2015
1 source controls mapped|10 target controls covered
2%
ISO 22000:2018
1 source controls mapped|10 target controls covered
2%
ISO 26000:2010
1 source controls mapped|3 target controls covered
2%
ISO 22301:2019
1 source controls mapped|5 target controls covered
2%
ISO 56002
1 source controls mapped|1 target controls covered
2%
ISO 41001:2018 - Facility Management Systems
1 source controls mapped|1 target controls covered
2%
ISO 39001:2012 - Road Traffic Safety Management
1 source controls mapped|1 target controls covered
2%
ISO 37002:2021 - Whistleblowing Management Systems
1 source controls mapped|1 target controls covered
2%
ISO 22313:2020 - Guidance on Business Continuity Management Systems
1 source controls mapped|1 target controls covered
2%
ISO 45001:2018
1 source controls mapped|7 target controls covered
2%
ISO 27005:2022
1 source controls mapped|6 target controls covered
2%
ISO 50001:2018 - Energy Management Systems
1 source controls mapped|5 target controls covered
2%
ISO 10007:2017
1 source controls mapped|3 target controls covered
2%
ISO/IEC 27006:2024
1 source controls mapped|2 target controls covered
2%
2%
ISO/IEC 17025:2017 - General Requirements for Testing and Calibration
1 source controls mapped|3 target controls covered
2%
ISO 10006:2003
1 source controls mapped|1 target controls covered
2%
ISO 10005:2005
1 source controls mapped|1 target controls covered
2%
ISO 22320:2018
1 source controls mapped|1 target controls covered
2%
ISO 27018:2019
1 source controls mapped|1 target controls covered
2%
Botswana Data Protection Act (2024)
1 source controls mapped|1 target controls covered
2%
Bermuda Personal Information Protection Act 2016 (PIPA)
1 source controls mapped|1 target controls covered
2%
C5 (Germany)
1 source controls mapped|1 target controls covered
2%
ISO 26262:2018 - Functional Safety for Road Vehicles
1 source controls mapped|3 target controls covered
2%
ISO 31000
1 source controls mapped|1 target controls covered
2%
ASEAN Guide on AI Governance and Ethics
1 source controls mapped|1 target controls covered
2%
Digital Services Act (DSA) - Regulation (EU) 2022/2065
1 source controls mapped|1 target controls covered
2%
UK AI Regulation Framework
1 source controls mapped|1 target controls covered
2%
UNICEF Policy Guidance on AI for Children (2021)
1 source controls mapped|1 target controls covered
2%
Canada Artificial Intelligence and Data Act (AIDA)
1 source controls mapped|1 target controls covered
2%
Sigstore - Software Artifact Signing and Verification
1 source controls mapped|1 target controls covered
2%
Australia AI Ethics Framework
1 source controls mapped|1 target controls covered
2%
ISO 37000:2021 - Governance of Organizations
1 source controls mapped|1 target controls covered
2%

Frequently Asked Questions

What is ISO/IEC TR 24028:2020?

ISO/IEC TR 24028:2020 is a compliance framework from International with 4 domains and 54 controls. It is used by organisations to establish and maintain compliance with industry standards and regulatory requirements.

How many controls does ISO/IEC TR 24028:2020 have?

ISO/IEC TR 24028:2020 has 54 controls organised across 4 domains. The largest domains are Mitigation measures – ISO/IEC TR 24028:2020 (28 controls), Clause 8 – ISO/IEC TR 24028:2020 (20 controls), Existing frameworks applicable to trustworthiness – ISO/IEC TR 24028:2020 (5 controls). Each control defines specific requirements that organisations must implement to achieve compliance.

What frameworks does ISO/IEC TR 24028:2020 map to?

ISO/IEC TR 24028:2020 maps to 48 other compliance frameworks. The top mapping partners are ISO/IEC 38500:2024 (41% coverage), ISO 14004:2016 (15% coverage), ISO 31000:2018 (15% coverage). Use our comparison tool to explore control-level mappings between frameworks.

How do I get started with ISO/IEC TR 24028:2020 compliance?

Start your ISO/IEC TR 24028:2020 compliance journey by running a self-assessment on our platform to identify your current compliance posture. Our AI advisory can answer specific questions about ISO/IEC TR 24028:2020 requirements, and cross-framework mapping helps you leverage existing controls from other frameworks you may already comply with. Create a free account to access all 54 controls and track your progress.

Start Your Compliance Journey

Create a free account to run self-assessments, get AI advisory, and track your compliance progress across 723 frameworks.

Get Started Free →

Free forever — no credit card required