KS X ISO IEC 10181-7-2002 Information technology－Open Systems Interconnection－Security frameworks for open systems：Security audit and alarms framework《信息技术 开放式系统互连 开放系统的安全框架 安全审核和警.pdf

1、KS X ISO/IEC 10181-7 KSKSKSKS SKSKSKS KSKSKS SKSKS KSKS SKS KS : KS X ISO/IEC 10181-7 : 2002 (2012 ) 2002 11 27 http:/www.kats.go.kr X ISO/IEC 101817：2002 : ( ) ( ) SJ ( ) : (http:/www.standard.go.kr) ： ：2002 11 27 ：2012 12 28 2012-0829 ： ： ( 02-509-7262) (http:/www.kats.go.kr). 10 5 , . X ISO/IEC 1

2、01817：2002 . KS X ISO/IEC 101817：2002 . A() OSI B() C() D() KS X ISO/IEC 10181 “ ” . 1： 2： 3： 4： 5： 6： 7： i ICS 35.100 KS X ISO/IEC ： 101817 ：2002 (2012 ) Information technologyOpen Systems InterconnectionSecurity frameworks for open systems：Security audit and alarms framework 1996 1 ISO/IEC 101817,

3、 Information technologyOpen Systems In- terconnectionSecurity frameworks for open systems：Security audit and alarms framework . 1. . “ ” , , , OSI . , . . ( .) . , . . , . a) b) c) , . 6. . . . 1) 2) 3) 4) 5) . 1), 2), 3), 4), 5) . 2), 3), 4), 5) 8. . 5) 9. . X ISO/IEC 101817：2002 2 2. . ( ) . ( ) (

4、 .) . 2.1 KS X 30021 1： (ITUT Recommendation X.200 (1994)ISO/IEC 74981：1994, Information technologyOpen Systems Inter- connectionBasic Reference Model：The Basic Model, IDT) CCITT Recommendation X.734 (1992)ISO/IEC 101645：1993, Information technologyOpen Systems Inter- connectionSystems management：Ev

5、ent report management function CCITT Recommendation X.735 (1992)ISO/IEC 101646：1993, Information technologyOpen Systems Inter- connectionSystems management：Log control function CCITT Recommendation X.736 (1992)ISO/IEC 101647：1992, Information technologyOpen Systems Inter- connectionSystems managemen

6、t：Security alarm reporting function CCITT Recommendation X.740 (1992)ISO/IEC 101648：1993, Information technologyOpen Systems Inter- connectionSystems management：Security audit trail function ITUT Recommendation X.810 (1995)ISO/IEC 101811：1996, Information technologyOpen Systems In- terconnectionSecu

7、rity frameworks for open systems：Overview 2.2 CCITT Recommendation X.700 (1992), Management framework for Open Systems Interconncetion (OSI) for CCITT applications. KS X 30024 4： (ISO/IEC 74984：1989, Information processing systemsOpen Systems InterconnectionBasic Reference Model Part 4：Management fr

8、amework, MOD) CCITT Recommendation X.800 (1991), Security Architecture for Open Systems Interconncetion for CCITT applica- tions. KS X 30022 2： (ISO 74982：1989, Information processing systemsOpen Systems InterconnectionBasic Reference ModelPart 2：Security Architecture, MOD) 3. . 3.1 (basic reference

9、 model definitions) ITUT Rec. X.200KS X 30021 (ISO/IEC 74981) . a) b) c) d) 3.2 (security architecture definitions) CCITT Rec. X.800KS X 30022(ISO/ IEC 74982) . a) b) c) X ISO/IEC 101817：2002 3 d) e) 3.3 (management framework definitions) CCITT Rec. X.700KS X 30024 (ISO/IEC 74984) : . 3.4 (security

10、framework overview definitions) ITUT Rec. X.810ISO/IEC 101811 . 3.5 (additional definitions) , . 3.5.1 (alarm processor) 3.5.2 (audit authority) 3.5.3 (audit analyser) , 3.5.4 (audit archiver) 3.5.5 (audit dispatcher) 3.5.6 (audit trail examiner) 3.5.7 (audit recorder) 3.5.8 (audit provider) 3.5.9 (

11、audit trail collector) 3.5.10 (event discriminator) , 3.5.11 (security alarm) . . 3.5.12 (security alarm administrator) 3.5.13 (securityrelated event) , . . 3.5.14 (security audit message) 3.5.15 (security audit record) 3.5.16 (security auditor) 3.5.17 (security report) , 4. OSI X ISO/IEC 101817：200

12、2 4 5. “ ” “ ” “ ” “ ” . “ ” “ ” . “” “ ” . 6. . , , ( ) , , . . , , . . . . . , . 10. . , () . , . , ( ) . . 6.1 . 6.1.1 . . , , . 6.1.2 . , . . X ISO/IEC 101817：2002 5 . . , . , . , , . 1 . 1 6.1.3 . . , . , , , . , . ( 2 ) . . X ISO/IEC 101817：2002 6 . . . . 2 6.2 , . . . , . 6.2.1 . (6.2.2 ). ,

13、. 6.2.2 , . . a) . b) c) . A B C X ISO/IEC 101817：2002 7 6.2.3 , . . a) . b) c) . b) c) . 6.2.4 , . , . . a) . b) c) d) . , . 6.2.5 . ( ) ( ) (6.1.3 , .). 6.2.6 , . , . . , . , . . , . . 6.2.7 . , . . . . 6.3 . , . . . . D . X ISO/IEC 101817：2002 8 7. 7.1 , , ( ). . . . . . , , , , , , . . 7.2 . . . , , , . 7.3 . 7.3.1 . . , . . , , . . . , . , . . . . ( ) . 7.3.2 . . . . 10. . 8. . (, ) (, ) X ISO/IEC 101817：2002 9 , , . 8.1 , , , . 8.1.1 . . 8.1.2 . , , . . . 8.1.3 . . , . , ( ) . 8.