- Project plans
- Project activities
- Legislation and standards
- Industry context
Last edited 08 Aug 2017
PAS 1192-5:2015 Specification for security-minded building information modelling, digital built environments and smart asset management, was published in draft form for comment by the British Standards Institute (BSI) on 2 February 2015. The final version was published on 23 May 2015 and came into effect on 31 May 2015. It was sponsored by the Centre for the Protection of National Infrastructure (CPNI) and was developed with the BIM Task Group's security working group.
Publicly Available Specifications (PAS) are fast-track standards, specifications, codes of practice or guidelines developed by sponsoring organisations to meet an immediate market need, following guidelines set out by the British Standards Institution. Within 2 years they are reviewed to assess whether they should be revised, withdrawn, or become formal British Standards or international standards.
- BS 1192:2007 Collaborative production of architectural, engineering and construction information. Code of practice
- PAS 1192-2:2013. Specification for information management for the capital/delivery phase of construction projects using building information modelling.
- PAS 1192-3:2014. Specification for information management for the operational phase of assets using building information modelling.
- BS 1192-4:2014. Collaborative production of information. Fulfilling employer's information exchange requirements using COBie. Code of practice.
See BIM standards for more information.
The introduction states that, 'This PAS provides a framework to assist asset owners and stakeholders in understanding the key vulnerability issues and the nature of the controls required to enable the trustworthiness and security of digitally built assets within the built environment. Its purpose is not in any way to undermine the collaboration upon which BIM and asset management systems are centred, but to ensure that information is being shared in a security-minded fashion. It encourages the adoption of a pragmatic, proportionate need-to-know approach to the sharing and publication of that information about built assets that could be exploited by those with hostile or malicious intent.'
Hugh Boyes, cyber security lead at the Institution of Engineering and Technology suggested that the need for the PAS became clear after feedback from early adopters of BIM. Ref BIM+_Cyber security threats trigger need for new PAS 1192-5 12 November 2014.
The PAS outlines security threats to information during the full life-cycle of built assets, from conception to disposal, and establishes procedures necessary to create a security mind-set and culture within an organisation.
The BIM Task Group suggest that the PAS "...will assist organisations in identifying and implementing appropriate and proportionate measures to reduce the risk of loss or disclosure of information which could impact on the safety and security of:
- personnel and other occupants or users of the built asset and its services;
- the built asset itself;
- asset information; and/or
- the benefits the built asset exists to deliver"
It provides guidance on:
- Understanding the security context.
- Understanding the overall security threat to a built asset.
- Appointment of a built asset security manager.
- Developing the built asset security strategy (BASS).
- Developing a built asset security management plan (BASMP)
- Developing a security breach / incident management plan (SB/IMP).
- Built asset security information requirements (BASIR)
- Working with suppliers.
- Asset management.
- Compliance with other legislation and standards.
 Find out more
 Related articles on Designing Buildings Wiki
- BIM articles.
- BIM resources.
- BIM Task Group.
- BS 1192-4:2014. Collaborative production of information Part 4: Fulfilling employer's information exchange requirements using COBie – Code of practice.
- BS 8536-1:2015 Briefing for design and construction. Code of practice for facilities management (Buildings infrastructure).
- BS 8536-2:2016 Design and construction: Code of practice for asset management (Linear and geographical infrastructure).
- Built asset.
- Common data environment.
- Cyber threats to building automation and control systems.
- Government Construction Strategy.
- PAS 1192-2.
- PAS 1192-3.
- PAS 1192-6.
- SABRE Security Assurance by the Building Research Establishment.
 External references
- PAS 1192-5:2015, Specification for security-minded building information modelling, digital built environments and smart asset management.
- BIM Task Group PAS 1192-5 overview.
- BIM+_Cyber security threats trigger need for new PAS 1192-5, 12 November 2014.
Featured articles and news
Starting a new built environment degree? We have a wide range of resources aimed at students.
Former railway chief James Blake says trust and control are key to successful infrastructure projects.
Do you know your Rococo from your De Stijl, your Gothic from your Post-modernist?
May outlines a new funding strategy for housing associations and says the 'stigma' of social housing needs to end.
RIBA launches a consultation on a new Plan of Work for Fire Safety.
This article offers some basic rules to follow when writing your next specification.
The iconic Mackintosh Building will definitely be rebuilt, board chairwoman confirms.
The machinery used to fashion stone has changed dramatically - and so have the products.
This type of pile provides support to the building, as well as acting as a heat source and a heat sink.
Why investors are adopting the SDGs and why civil engineering could be crucial for delivering them.
Read about all the winners from the London ceremony of CIAT's 2018 Architectural Technology Awards.