Abstract：The whole security of any information system is only as strong as the weakest security of some component or link in the system. To keep the whole security, we must design, develop, manage and maintain the target system based on a unified standard throughout the whole software lifecycle. Over the years International Organization for Standardization has published a series of international standards on information security, which are rigorous enough to be taken as the unified standard for developing security functions of information systems. But it is complicated to design, develop, use, maintain or evaluate the security functions in accordance with those ISO standards. Moreover, the ISO standards would be revised or updated sooner or later. Adapting the security functions to match new standards is another cumbersome task. Human are hard to do those complicated and cumbersome work that may lead to low efficiency, incorrectness, inaccuracy or inconsistence. These problems can be solved only by adopting automatic and intelligent methods for sharing, managing, searching and using the data. Therefore, we proposed and developed the first group of databases in the world that manage the contents of ISO/NIEC information security standards and published data of certificated IT products. This paper introduces the group of databases and their applications.