Specifies the framework, concepts, and methodology for securing JPEG 2000 codestreams. It defines a normative codestream syntax containing information for interpreting secure image data; a normative process for registering JPSEC tools with a registration authority delivering a unique identifier; informative examples of JPSEC tools in typical use cases; informative guidelines on how to implement security services and related metadata. It does not describe specific secure imaging applications or limit secure imaging to specific techniques, but creates a framework that enables future extensions as secure imaging techniques evolve.