A.14.1.2: Securing Application Services on Public Networks
Ensure that information involved in application services passing over public networks is protected from fraudulent activity, contract dispute, and unauthorized disclosure and modification.
A.14.1.1: Information Security Requirements Analysis and Specification
Ensure that information security requirements are included in the requirements for new information systems or enhancements to existing information systems.