Internationally accepted standards and frameworks for Software Asset Management (SAM) have been created to simplify management and practices around the globe. Verafirm’s certifications are aligned with the most widely respected standard, the International Organization for Standardization (ISO). Learn more about the most critical standards for securing your software assets.

Software Asset Management (SAM) internationally accepted standards and frameworks 

Control Objectives for Information Technology (COBIT).

  • A wide framework which deals with IT management and IT governance.
  • COBIT approaches SAM in several different ways but mostly focuses on governance, compliance, cost management, budgeting, security and configuration management.


  • An approach for IT Service Management that provides a practical framework for identifying, planning, delivering and supporting IT services to the business.
  • Based on best practices and detailed within five core publications which provide a systematic approach to the management of IT services, enabling organizations to deliver appropriate services.

ISO/IEC 19770-1

  • A framework of SAM processes covering 27 separate process areas which enable an organization to prove that it is performing software asset management to a standard sufficient to satisfy corporate governance requirements and ensure effective support for IT service management overall.
  • First generation (i.e., edition) was published in 2006. Shortly after, BSA became a category C liaison to the ISO/IEC JTC1 SC7 WG 21 working group.