Security requirements of information systems

6.11.1.1Information security requirements analysis and specification The control, implementation guidance and other information stated in ISO/IEC 27002:2013, 14.1.1 applies.
6.11.1.2Securing application services on public networks The control, implementation guidance and other information stated in ISO/IEC 27002:2013, 14.1.2 and the following additional guidance applies:
6.11.1.3Protecting application services transactions The control, implementation guidance and other information stated in ISO/IEC 27002:2013, 14.1.3 applies.