Customer Service:
Mon - Fri: 8:30 am - 6 pm EST

INCITS: Information Technology Industry Council

INCITS, the InterNational Committee for Information Technology Standards, is a nonprofit organization that develops and publishes standards for the information technology field. Headquartered in Washington, D.C., United States, INCITS standards are propagated throughout the entire world by its membership base of 1,700 organizations spread across 13 countries. INCITS also serves as the administrator for the U.S. TAGs (United States Technical Advisory Group) to ISO/JTC 1 (International Organization for Standardization/Joint Technical Committee) and to many of its subcommittees, as well as the U.S. TAG to ISO/TC 211. Standards from INCITS are available both individually, directly through the ANSI webstore, and as part of a Standards Subscription. If you or your organization are interested in easy, managed, online access to standards that can be shared, a Standards Subscription may be what you need - please contact us at: or 1-212-642-4980 or Request Proposal Price.

Below are INCITS's best-selling standards. To find additional standards, please use the search bar above.

 Back to All Publishers Home

INCITS 359-2012 (R2017)

Information technology - Role Based Access Control

This standard consists of two main parts: the RBAC Reference Model and the RBAC System and Administrative Functional Specification. The RBAC Reference Model defines sets of basic RBAC elements (i.e., users, roles, permissions, operations and objects) and relations as types and functions that are included in this standard. The RBAC System and Administrative Functional Specification specifies the features that are required of an RBAC system.

INCITS/ISO/IEC 14882:2017 (2018)

Programming languages - C++

Specifies requirements for implementations of the C++ programming language. The first such requirement is that they implement the language, so this document also defines C++. Other requirements and relaxations of the first requirement appear at various places within this document. C++ is a general purpose programming language based on the C programming language as described in ISO/IEC 9899:2011 Programming languages ? C (hereinafter referred to as the C standard). In addition to the facilities provided by C, C++ provides additional data types, classes, templates, exceptions, namespaces, operator overloading, function name overloading, references, free store management operators, and additional library facilities.

INCITS 322-2015

Information Technology - Card Durability Test Methods

Describes Test Methods for the evaluation of Identification (ID) card durability. An ID card is defined as a card identifying its holder and issuer which may carry data required as input for the intended use of the card.

INCITS 499-2018

Information Technology - Next Generation Access Control - Functional Architecture (NGAC-FA)

NGAC follows an attribute-based construction in which characteristics or properties are used to describe and manage policy and to control access to resources. The family of NGAC standards specifies the architecture, functions, operations, and interfaces necessary to ensure their realization in different types of implementation environments at a range of scalability levels. This standard contains an abstract functional description of the NGAC architecture, and also provides an overview of the other standards within the NGAC family of standards. The description herein is abstract because it excludes irrelevant details, and is functional because it partitions the entities comprising the architecture purely on the basis of their function and excludes all other constraints.

INCITS 182-1990 (S2017)

Guideline for Bar Code Print Quality

Covers the optical characteristics of a printed bar code symbol. This document shall be used with the appropriate application specifications, or symbology specifications, or both. The appropriate application specifications, or symbology specifications, or both, shall take precedence over this guideline.

INCITS 440-2015

Information Technology - Card Durability / Service Life

Defines a method to determine a card application class for the intended card use. Once the service life application is determined, the standard defines test methods and requirements for the card application

INCITS 545-2019

Information Technology - Fibre channel - Framing and Signaling - 5 (FC-FS-5)

This standard describes the framing and signaling interface of a high performance serial link for support of FC-4s associated with upper level protocols (e.g., SCSI, IP, SBCCS, VI). This standard is based on FC-FS-4 (INCITS 488-2016) with subsequent modifications approved by the member body that originally authored and approved FC-FS-4.

INCITS/ISO/IEC 9899-2012

Information technology -Programming languages - C

ISO/IEC 9899:2011 specifies the form and establishes the interpretation of programs written in the C programming language.It specifies the representation of C programs; the syntax and constraints of the C language; the semantic rules for interpreting C programs; the representation of input data to be processed by C programs; the representation of output data produced by C programs; the restrictions and limits imposed by a conforming implementation of C. ISO/IEC 9899:2011 does not specify the mechanism by which C programs are transformed for use by a data-processing system; the mechanism by which C programs are invoked for use by a data-processing system; the mechanism by which input data are transformed for use by a C program; the mechanism by which output data are transformed after being produced by a C program; the size or complexity of a program and its data that will exceed the capacity of any specific data-processing system or the capacity of a particular processor; all minimal requirements of a data-processing system that is capable of supporting a conforming implementation. ISO/IEC 9899:2011 is designed to promote the portability of C programs among a variety of data-processing systems. It is intended for use by implementers and programmers.

ANSI INCITS 378-2004

Information technology - Finger Minutiae Format for Data Interchange

This Standard specifies a concept and data format for representation of fingerprints using the fundamental notion of minutiae. The data format is generic, in that it may be applied and used in a wide range of application areas where automated fingerprint recognition is involved. No application-specific requirements or features are addressed in this standard. The Standard contains definitions of relevant terms, a description of where minutiae shall be defined, a data format for containing the data, and conformance information. This standard is superseded by INCITS 378-2009.

INCITS/ISO/IEC 27001:2013 (R2019)

Information technology - Security techniques - Information security management systems - Requirements

ISO/IEC 27001:2013 specifies the requirements for establishing, implementing, maintaining and continually improving an information security management system within the context of the organization. It also includes requirements for the assessment and treatment of information security risks tailored to the needs of the organization. The requirements set out in ISO/IEC 27001:2013 are generic and are intended to be applicable to all organizations, regardless of type, size or nature.


As the voice of the U.S. standards and conformity assessment system, the American National Standards Institute (ANSI) empowers its members and constituents to strengthen the U.S. marketplace position in the global economy while helping to assure the safety and health of consumers and the protection of the environment.