Spaces:
Sleeping
Sleeping
A newer version of the Gradio SDK is available: 6.13.0
ISO/IEC 27001 β Lightweight Control Mapping
Scope
This document maps Federal FOIA Intelligence Search to relevant ISO 27001 controls, scaled appropriately for a public, read-only research tool.
A.5 Information Security Policies
β Public security posture documented
β No confidential data handled
A.6 Organization of Information Security
β Single maintainer accountability
β Clear governance boundaries
A.8 Asset Management
| Asset | Classification |
|---|---|
| FOIA URLs | Public |
| Metadata | Public |
| User input | Ephemeral |
A.9 Access Control
β No accounts
β No authentication
β No authorization layers
A.12 Operations Security
β No background processing
β No scheduled jobs
β Stateless execution
A.13 Communications Security
β HTTPS only
β No external data ingestion
A.18 Compliance
β FOIA-compliant
β Copyright-safe (link-out only)
β Open-source transparency
ISO Summary
This system qualifies as low-complexity, low-risk under ISO 27001, with controls appropriate to scope.