1、INTERNATIONAL STANDARD ISO/lEe 10164-8 First edition 1993-06-15 Information technology - Open Systems Interconnection - Systems Management: Security audit trail function Technologies de Iinformation - Interconnexion de systemes ouverts -Gestion-systeme: Fonction de securite de Iexpertise de Ihistori
2、que National Standard of Canada CAN/CSA -ISO/lEC-1 0164-8-95 International Standard ISOIIEC 10164-8:1993 has been adopted, without modification, as CAN/CSA-ISO/IEC-10164-8-95, which has been approved as a National Standard of Canada by the Standards Council of Canada. December 1995 Reference number
3、ISO/lEe 10164-8:1993(E) ICS 35.100.70 Ref. No. ISO/IEC 10164-8:1993/Cor.3:1999(E) ISO/IEC 1999 All rights reservedInformation technology Open SystemsInterconnection Systems Management: Security audittrail functionTECHNICAL CORRIGENDUM 3Technologies de linformation Interconnexion de systmes ouverts G
4、estion-systme: Fonction de scurit delexpertise de lhistoriqueRECTIFICATIF TECHNIQUE 3Technical Corrigendum 3 to International Standard ISO/IEC 10164-8:1993 was prepared by Joint TechnicalCommittee ISO/IEC JTC 1, Information technology.Technical Corrigendum 3:2003 toNational Standard of CanadaCAN/CSA
5、-ISO/IEC 10164-8-95Technical Corrigendum 3:1999 to International Standard ISO/IEC 10164-8:1993 has been adopted withoutmodification as Technical Corrigendum 3:2003 to CAN/CSA-ISO/IEC 10164-8-95. This Technical Corrigendumwas reviewed by the CSA Technical Committee on Information Technology (TCIT) un
6、der the jurisdiction of theStrategic Steering Committee on Information Technology and deemed acceptable for use in Canada. July 2003ISO/IEC 10164-8 : 1993/Cor.3 : 1999 (E)ITU-T Rec. X.740 (1992)/Cor.3 (1998 E) 1INTERNATIONAL STANDARDISO/IEC 10164-8 : 1992/Cor.3 : 1999 (E)ITU-T Rec. X.740 (1992)/Cor.
7、3 (1998 E)ITU-T RECOMMENDATIONINFORMATION TECHNOLOGY OPEN SYSTEMS INTERCONNECTION SYSTEMS MANAGEMENT: SECURITY AUDIT TRAIL FUNCTIONTECHNICAL CORRIGENDUM 31) Subclause A.1Add the following after the line DEFINITIONS := BEGINIMPORTSServiceReportCause FROM SecurityAuditTrail-ASN1Modulejoint-iso-ccitt m
8、s(9) function(2) part8(8) asn1Module(2) 2;2) Subclause A.4.1Replace the AND ATTRIBUTE IDS content with the following:serviceReportCause serviceReportCause,notificationIdentifier “CCITT Rec. X.721 (1992) | ISO/IEC 10165-2 : 1992“:notificationIdentifier,correlatedNotifications “CCITT Rec. X.721 (1992)
9、 | ISO/IEC 10165-2 : 1992“:correlatedNotifications,additionalText “CCITT Rec. X.721 (1992) | ISO/IEC 10165-2 : 1992“:additionalText,additionalInformation “CCITT Rec. X.721 (1992) | ISO/IEC 10165-2 : 1992“:additionalInformation;3) Subclause A.4.2Replace the AND ATTRIBUTE IDS content with the followin
10、g:notificationIdentifier “CCITT Rec. X.721 (1992) | ISO/IEC 10165-2 : 1992“:notificationIdentifier,correlatedNotifications “CCITT Rec. X.721 (1992) | ISO/IEC 10165-2 : 1992“:correlatedNotifications,additionalText “CCITT Rec. X.721 (1992) | ISO/IEC 10165-2 : 1992“:additionalText,additionalInformation
11、 “CCITT Rec. X.721 (1992) | ISO/IEC 10165-2 : 1992“:additionalInformation;Technical Corrigendum 2:2003 toNational Standard of CanadaCAN/CSA-ISO/IEC 10164-8-95Technical Corrigendum 2:1996 to International Standard ISO/IEC 10164-8:1993 has been adopted withoutmodification as Technical Corrigendum 2:20
12、03 to CAN/CSA-ISO/IEC 10164-8-95. This Technical Corrigendumwas reviewed by the CSA Technical Committee on Information Technology (TCIT) under the jurisdiction of theStrategic Steering Committee on Information Technology and deemed acceptable for use in Canada. July 2003ISOIIEC 10164-8 : 1993/Cor.2
13、: 1996 (E) INTERNATIONAL STANDARD ITU-T RECOMMENDATION INFORMATION TECHNOLOGY - OPEN SYSTEMS INTERCONNECTION SYSTEMS MANAGEMENT: SECURITY AUDIT TRAIL FUNCTION TECHNICAL CORRIGENDUM 2 1) Subclause A.5 Apply the following change: Replace “ . asnlModule(2) I“ with “ . asnlModule(2) 1 ;“. 2) Annex B In
14、Table B.6 - “PICS Support Summary“, of CCITT Rec. X.740/CoLl I ISOIIEC 10164-8/CoLl, first row referencing “CCITT Rec. X.730 I ISOIIEC 10164-1 Annex E, SM Application Context“, change the statusjrom “m“ to “0“ and add the following note for the corresponding row of this table: “NOTE - The supplier o
15、f implementation shall indicate the application contexts supported.“ 3) Subclause B.1.3 Add the following sentence after the line “- Not applicable or out of scope“and immediately before “NOTES“: “The value of m in the Status column for the receiving of parameters, of tables of type MCS in Annex B i
16、ndicates that there is a minimum requirement for the implementation to be able to receive the parameter, The Additional information column shall be used to state whether the implementation provides support for more than the minimum requirement.“ ITU-T Rec. X.740 (1992)/Cor.2 (1996 E) Technical Corri
17、gendum 1:2003 toNational Standard of CanadaCAN/CSA-ISO/IEC 10164-8-95Technical Corrigendum 1:1995 to International Standard ISO/IEC 10164-8:1993 has been adopted withoutmodification as Technical Corrigendum 1:2003 to CAN/CSA-ISO/IEC 10164-8-95. This Technical Corrigendumwas reviewed by the CSA Techn
18、ical Committee on Information Technology (TCIT) under the jurisdiction of theStrategic Steering Committee on Information Technology and deemed acceptable for use in Canada. July 2003This page intentionally left blank ISOIIEC 10164-8: 1993/Cor.l : 1995 (E) INTERNATIONAL STANDARD ITU-T RECOMMENDATION
19、INFORMATION TECHNOLOGY - OPEN SYSTEMS INTERCONNECTION SYSTEMS MANAGEMENT: SECURITY AUDIT TRAIL FUNCTION TECHNICAL CORRIGENDUM 1 (to Rec. X.740 I ISOIIEC 10164-8) 1) Add the following footnote to the first list item in 2.1: “1) as amended by ITU-T Rec. X.701lCor.21 ISOIlEC 10040/Cor.2“ 2) Apply the f
20、ollowing change to 2.1: Remove footnote 1 and replace the fourth list item with the following: ITU-T Recommendation X.724 (1993) I ISOIIEC lOI65-6:1994, Information technology - Open Systems Interconnection - Structure of management information: Requirements and guidelines for implementation conform
21、ance statement proformas associated with OSI management.“ 3) Add the following reference to 2.2: - ITU-T Recommendation X.2963), OSI conformance testing methodology and framework for protocol Recommendations for ITU- T applications -Implementation conformance statements. ISOIIEC 9646-73), Informatio
22、n technology - Open Systems Interconnection - Conformance testing methodology and framework - Part 7: Implementation Conformance Statements. And then add the following footnote: 3) Presently at the stage of draft. 4) Apply the following changes to 3.4: Replace “dependent conformance“ with “managed o
23、bject conformance statement (MOCS)“. Replace “general conformance“ with “management information conformance statement (MICS)“. Relabel itemsf) and g) as h) and i) and insert the following new items: “f) MICS proforma; g) MOCS proforma;“ 5) Insert the following new subclause: “3.9 Implementation conf
24、ormance statement proforma definitions This Recommendation I International Standard makes use of the following terms defined in ITU-T Rec. X.724 ISOIIEC lOI65-6: a) Managed Relationship Conformance Statement (MRCS); b) Management Conformance Summary (MCS); c) Management Information Definition Statem
25、ent (MIDS) proforma; d) MCS proforma; e) MRCS proforma.“ 6) Add the following abbreviation to clause 4: “ICS Implementation Conformance Statement MICS Management Information Conformance Statement MRCS Managed Relationship Conformance Statement“ ITU-T Rec. X.740 (1992)/Cor.l (1995 E) ISOIIEC 10164-8
26、: 1993/Cor.1 : 1995 (E) 7) Replace clause 13 with the following: “13 Conformance Implementations claiming to conform to this Recommendation I International Standard shall comply with the conformance requirements as defined in the following subclauses. 13.1 Static conformance The implementation shall
27、 conform to the requirements of this Recommendation I International Standard in the manager role, the agent role, or both roles. A claim of conformance to at least one role shall be made in Table B.I. If a claim of conformance is made for support in the manager role, the implementation shall support
28、 at least one of the notifications or at least one of the management operations specified in this Recommendation I International Standard. The conformance requirements in the manager role for those management operations and notifications are identified in Table B.3 and further tables referenced by A
29、nnex B. If a claim of conformance is made for support in the agent role, the implementation shall support at least one of the notifications specified in this Recommendation I International Standard. The conformance requirements in the agent role are identified in Table BA and further tables referenc
30、ed by Annex B. The implementation shall support the transfer syntax derived from the encoding rules specified in CCITT Rec. X.209 I ISOIIEC 8825 named joint-iso-ccitt asnl(l) basicEncoding(l) for the abstract data types referenced by the definitions for which support is claimed. NOTE - Prior to the
31、publication of this amendment, this Recommendation I International Standard identified general and dependent conformance classes. A claim of conformance similar to general conformance class can be made by stating support in the manager role, the agent role, or both roles, for the security audit trai
32、l reporting functional unit in Table B.2. A claim of conformance similar to dependent conformance class can be made by stating support for at least one of the items in Tables B.3 or B.4. 13.2 Dynamic conformance Implementations claiming to conform to this Recommendation I International Standard shal
33、l support the elements of procedure and definitions of semantics corresponding to the definitions for which support is claimed. 13.3 Management implementation conformance statement requirements Any MCS proforma, MICS proforma, and MOCS proforma which conforms to this Recommendation I International S
34、tandard shall be technically identical to the proformas specified in Annexes B, C and D preserving table numbering and the index numbers of items, and differing only in pagination and page headers. The supplier of an implementation which is claimed to conform to this Recommendation I International S
35、tandard shall complete a copy of the Management Conformance Summary (MCS) provided in Annex B as part of the conformance requirements together with any other ICS proformas referenced as applicable from that MCS. An ICS which conforms to this Recommendation I International Standard shall: describe an
36、 implementation which conforms to this Recommendation I International Standard; have been completed in accordance with the instructions for completion given in ITU-T Rec. X.724 I ISOIlEC 10165-6; include the information necessary to uniquely identify both the supplier and the implementation. Claims
37、of conformance to the management information defined in this Recommendation I International Standard in managed object classes defined elsewhere shall include the requirements of the MIDS proforma in the MOCS for the managed object class. 8) Apply the following change to A.5: Replace the production
38、for “Security Auditlnfo“ with the following: “SecurityAuditInfo := SEQUENCE serviceReportCause notificationIdentifier correlatedNotifications additionalText additionalInformation 2 ITU-T Rec. X.740 (1992)/Cor.1 (1995 E) ServiceReportCause OPTIONAL, NotificationIdentifier OPTIONAL, 1 IMPLICIT Correla
39、tedNotifications OPTIONAL, AdditionalText OPTIONAL, 2 IMPLICIT AdditionalInformation OPTIONAL “ ISOIIEC 10164-8 : 1993/Cor.1 : 1995 (E) 9) Replace Annexes B, C, D and E with the following: AnnexB M CS proforma5) (This annex forms an integral part of this Recommendation I International Standard) B.1
40、Introduction B.1.1 Purpose and structure The Management Conformance Summary (MCS) is a statement by a supplier that identifies an implementation and provides information on whether the implementation claims conformance to any of the listed set of documents that specify conformance requirements to OS
41、I management. The MCS proforma is a document in the form of a questionnaire that when completed by the supplier of an implementation becomes the MCS. B.1.2 Instructions for completing the MCS proforma to produce a MCS The supplier of the implementation shall enter an explicit statement in each of th
42、e boxes provided. Specific instruction is provided in the text which precedes each table. B.1.3 Symbols, abbreviations and terms For all annexes of this Recommendation I International Standard, the following common notations, defined in CCITT Rec. X.2911 ISOIIEC 9646-2 and ITU-T Rec. X.296 I ISOIIEC
43、 9646-7, are used for the Status column: m Mandatory; o Optional; c Conditional; x Prohibited; Not applicable or out of scope. NOTES I c, m, and 0 are prefixed by “c:“ when nested under a conditional or optional item of the same table; 2 0 may be suffixed by “.N“ (where N is a unique number) for sel
44、ectable options among a set of status values. Support of at least one of the choices (from the items with the same value of N) is required. For all annexes of this Recommendation I International Standard, the following common notations, defined in CCITT Rec. X.291 I ISOIIEC 9646-2 and ITU-T Rec. X.2
45、96 I ISOIIEC 9646-7, are used for the Support column: Y Implemented; N Not implemented; No answer required; Ig The item is ignored (i.e. processed syntactically but not semantically). B.1.4 Table format Some of the tables in this Recommendation I International Standard have been split because the in
46、formation is too wide to fit on the page. Where this occurs, the index number of the first block of columns are the index numbers of the corresponding rows of the remaining blocks of columns. A complete table reconstructed from the constituent parts should have the following layout: First block of c
47、olumns Second block of columns Etc. 5) Users of this Recommendation I International Standard may freely reproduce the MCS proforma in this annex so that it can be used for its intended purpose, and may further publish the completed MCS. Instructions for the MCS proforma are specified in ITU-T Rec. X
48、.724 I ISO/IEC 10165-6. ITU-T Rec. X.740 (1992)/Cor.1 (1995 E) 3 ISOIIEC 10164-8 : 1993/Cor.l : 1995 (E) In this Recommendation I International Standard the constituent parts of the table appear consecutively, starting with the first block of columns. When a table with sub-rows is too wide to fit on
49、 a page, the continuation table(s) have been constructed with index numbers identical to the index numbers in the corresponding rows of the first table, and with sub-index numbers corresponding to the sub-rows within each indexed row. For example, if Table X.I has 2 rows and the continuation of Table X.I has 2 sub-rows for each row, the tables are presented as follows: Table X.l - Title Support Index A B C D E F G 1 a b -2 a b -Table X.l (continued) - Title Index Sub-index H I J K L 1 l.l h i j l.2 h i j 2 2.1 h i j 2.2 h i J A complete table
