1、ITU-T RECMN*X.736 92 4862593 0607525 662 a .- INTERNATIONAL TELECOMMUNICATION UNION CCITT TH E INTERNATIONAL TELEGRAPH AND TELEPHONE CONSULTATIVE COMMITTEE DATA COMMUNICATION NETWORKS X.736 _ INFORMATION TECHNOLOGY - OPEN SYSTEMS INTERCONNECTION - SYSTEMS MANAGEMENT; SECURITY ALARM REPORTING FUNCTIO
2、N Recommendation X.736 COPYRIGHT International Telecommunications Union/ITU TelecommunicationsLicensed by Information Handling ServicesITU-T RECMN*X.736 92 m 4862591 0607526 5T9 m . .- INTERNATIONAL TELECOMMUNICATION UNION CCITT THE INTERNATIONAL TELEGRAPH AND TELEPHONE CONSULTATIVE COMMITTEE DATA C
3、OMMUNICATION NETWORKS X.736 INFORMATION TECHNOLOGY - OPEN SYSTEMS INTERCONNECTION - SYSTEMS MANAGEMENT; SECURITY ALARM REPORTING FUNCTION Recommendation X.736 I Geneva, 1992 COPYRIGHT International Telecommunications Union/ITU TelecommunicationsLicensed by Information Handling ServicesForeword ITU (
4、International Telecommunication Union) is the United Nations Specialized Agency in the field of telecommunications. The CCIT (the International Telegraph and Telephone Consultative Committee) is a permanent organ of the ITU representing some 166 member countries, 68 telecom operating entities, 163 s
5、cientific and industrial organizations and 39 international organizations and is the body which sets world telecommunications standards (Recommendations). The approval of Recommendations by the members of CC is covered by the procedure laid down in CCITT Resolution No. 2 (Melbourne, 1988). In additi
6、on, the Plenary Assembly of CCi”, which meets every four years, approves Recommendations submitted to it and establishes the study programme for the following period. in some areas of information technology which fall within CCs purview, the necessary standards are prepared on a collaborative bask w
7、ith IS0 and IEC. The text of CCIT Recommendation X.736 was approved on 17 January 1992. The identical text is also published as ISO/IEC International Standard 10164-7. CCIT NOTE 1) telecommunication Administration and a recognized private operating agency. In this Recommendation, the expression “Adm
8、inistration” is used for conciseness to indicate both a O ITU 1992 All rights reserved. No part of this publication may be reproduced or utilized in any form or by any means, electronic or mechanical, including photocopying and microfilm, without permission in writing from the ITU. COPYRIGHT Interna
9、tional Telecommunications Union/ITU TelecommunicationsLicensed by Information Handling Services. Contents tnformation note . III 1 2 3 4 5 6 7 8 9 10 11 12 13 scope . 1 Identical CCIT Recommendations I International Standards . 2 Paired CCIT Recommendations I International Standards equivalent in te
10、chnical content . 2 Normative references . 2 2.1 2.2 2.3 Additional references 3 Definitions . 3 3.1 3.2 3.3 3.4 3.5 3.6 3.7 3.8 Additional defmitions . 4 Basic reference model definitions . 3 Security architecture definitions 3 Management framework definitions 3 Systems management overview defmitio
11、ns . 3 Event report management function definitons 4 Service conventions definitions . 4 OS1 conformance testing definitions . 4 Abbreviations 4 Conventions . 4 Requirements . 5 Model 5 Generic definitions 5 8.1 Generic notifications . 5 8.2 Managed object . 8 8.3 Imported generic definitions . 8 8.
12、4 Compliance . 8 Service definition 8 9.1 Introduction 8 9.2 Security dann reporting service 8 Functional units . 9 Protocol . 9 1 1.1 Elements of procedure 9 11.2 Abstract syntax . 10 1 1.3 Negotiation of security alarm reporting functional unit . 12 Relationships with otber functions . 12 Conforma
13、nce . 12 13.1 General conformance class requirements 12 13.2 Dependent conformance class requirements 13 COPYRIGHT International Telecommunications Union/ITU TelecommunicationsLicensed by Information Handling ServicesINFORMATION NOTE X.775 I See Note X.776 I See Note X.780 I See Note The following t
14、able gives a List of X.700 Series Recommendations which were, are being, or will be developed in collaboration with the ISO/IEC. Cross-references to the corresponding ISO/IEC International Standard number and the short title of the Recommendation I International Standard are provided. MOCS and MICS
15、for X.735 I 10164-6 MOCS and MICS for X.736 I 10164-7 MOCS and MICS for X.740 I 10164-8 COPYRIGHT International Telecommunications Union/ITU TelecommunicationsLicensed by Information Handling ServicesISO/IEC 10164-7 : 1992a) “ERNATIONAL STANDARD CCIIT RECOMMENDATION information technology - Open Sys
16、tems Interconnection - Systems Management: Security alarm reporting function 1 Scope This Recommendation I International Standard defines the security alarm reporting function. The security alarm reporting function is a systems management function which may be used by an application process in a cen
17、tralized or decentralized management environment to exchange information for the purpose of systems management, as defined by CCITT Rec. X.700 I ISOAEC 7498-4. This Recommendation I International Standard is positioned in the application layer of CCiT Rec. X.200 I IS0 7498 and is defined according t
18、o the model provided by ISO/IEC 9545. The role of systems management functions is described by CCITT Rec. X.701 I ISOEC 10040. The security alarm notifications define by this sysems management function provide information regarding operational condition and quality of service, pertaining to security
19、. Security-related events are of relevance to the provision of security. The security policy determines the actions to be undertaken whenever a security-related event has occured. The security policy may, for example, specify that a security alarm report be generate, a record of the event be made in
20、 a security audit trail, a threshold counter be incrernented, the event be ignored, or a combination of these actions be taken. This Recornmendation I International Standard is only concerned with security alarm reporting. This Recommendation I International Standard - establishes user requirements
21、for the service definition needed to support the security alarm reporting function; defines the service provided by the security alarm reporting function; specifies the protocol that is necessary in order to provide the service; defines the relationship between the service and management notificatio
22、ns; defines relationships with other systems management functions; - - - - - specifies conformance requirements. This Recommendation i International Standard does not - - define the nature of any implementation intended to provide the security alarm reporting function; specify the manner in which ma
23、nagement is accomplished by the user of the security alarm reporting function; define the nature of any interactions which result in the use of the security alarm reporting function; specify the services necessary for the establishment, normal and abnormai release of a management association; define
24、 any other notifications, defined by other Recommendations I International Standards, which may be of interest to a security adminisuaior. - - - CCIT Rec. X.736 (1992) 1 COPYRIGHT International Telecommunications Union/ITU TelecommunicationsLicensed by Information Handling ServicesISO/IEC 10164-7 :
25、1992m) 2 Normative references Tbe following CCITT Recommendations and International Standards contain provisions which, through reference in this text, constitute provisions of this Recommendation I International Standard. At the time of publication, the editions indicated were valid. All Recommenda
26、tions and Standards are subject to revision, and parties to agreements based on this Recommendation I International Standard are encouraged to investigate the possibility of applying the most recent editions of the Recommendations and Standards listed below. Members of IEC and IS0 maintain registers
27、 of currently valid International standards. The CCIIT Secretariat maintains a list of the currently valid CCITT Recommendations. 2.1 Identical CCITT Recommendations I International Standards CCIT Recommendation X.701(1992) I ISOAEC 10040 : 1992, Information technology - Open Systems Interconnection
28、 - Systems management overview*) CCIT Recommendation X.721 (1992) I ISOAEC 10165-2 : 1992, Information technology - Open Systems Interconnecrion - Structure of management information: Definition of management information. CCITT Recommendation X.722 (1992) I ISOEC 10165-4 : 1992, Information technolo
29、gy - Open Systems Interconnection - Structure of management information: Guidelines for the dejnirion of managed objects. CCIT Recommendation X.733 (1992) I ISOREC 10164-4 : 1992, Information technology - Open Systems Interconnection - Systems Management: Ah reporting function 2.2 - CCIT Recornmenda
30、tion X.734) I ISO/IEC 10164-5 : 1992, Information technology - Open Systems Interconnection - Systems Management: Event repon management function CCITT Recommendation X.735) I ISOE 10164-6 : 1992, Information technology - Open Systems Interconnection - Systems Management: Log control function. - m-T
31、 Recommendation X.724 (1993) I ISOAEC 10165-6:1994, Information technology - Open System Interconnection - Structure of management information: Requirements and guidelines for implementation conformance statement proformas associated with OSI management. - Paired CCITT Recommendations I Internationa
32、l Standards equivalent in technical content - CCITT Recommendation X.200 (1988), Reference model of Open Systems Interconnection for CCITT applications. IS0 7498 : 1984, Information processing systtms - Open Systems Interconnection - Basic Reference Model. CCI“ Recommendation X.208 (1988). Specifica
33、tion of abstract syntax notarion one (ASN.). ISOKEC 8824 : 1990, Information technology - Open Systems Interconnection - Specification of Abstract Syntax Notation One (ASN.1). CCIT Recommendation X.209 (1988). Specification of Basic Encoding Rules for abstract syntax notation. ISO/IEC 8825 : 1990, I
34、nformation technology - Open Systems Interconneciion - Specification of Rasic Encoding Rules for Abstract Syntax Notation One (AMI). CCITT Recommendation X.210 (19881, Open Systems Interconnection layer service definition conventions. ISOKR 8509 : 1987. Information processing systems - Open Systems
35、Interconnection - Service con vent ions. CCTT Recommendation X.290 (19921, OSI conformance resting methodology and pamework for protocol Recommendat ions for CCITT applications - General concepts. ISOAEC 9646- I :. 199 1. Information technology - Open Systems Interconnection - Confonnunce testing me
36、thodology and framework - Part I: General concepts. CC1- Recommendation X.291 (1992), OSI conformance testing methodology and framework for protocol Recommendations for CCITT applications - Abstract.test suite specification. - - - - - ISO/IEC 9646-2: 1991, Information technology - Open System Interc
37、onnection - Conformance tesring methodology andframework - Parr 2: Abstract test suite specification. ) Presently at state of draft Recommenddod. 2) as amended by -T Rec. X.701ICor.2 I ISO/IEC 10040/Cor.2 2 CC Rec. X.736 (1992) A COPYRIGHT International Telecommunications Union/ITU Telecommunication
38、sLicensed by Information Handling Services.- ITU-T RECMN*Xm73b 72 W qb2591 Ob07532 BT2 m fiO/IEC 10164-7 : 1992(E) Q - ITU-T Recommendation X.2963). OS1 conformance testing methodology and framework for protocol Recommendations for ITU-T applications - Implementation conformance statements. ISO/IEC
39、9646-7 .3), Information technology - Open Systems Interconnection - Conformance testing methodology and framework - Part 7: implementaton conformance statements. - CCITT Recommendation X.700). Management framework definition for Open Systems Interconnection for CCT applications. ISO/EC 7498-4 : 1989
40、, Information processing systems - Open Systems Interconnection - Basic Reference Model - Part 4: Management framework CCITT Recommendation X.7 10 (199 1). Common tnunagernet information service definition for CCnT applications. ISO/IEC 9595 : 1991. Information technology - Open Systems Interconnect
41、ion - Common management information service definifion CCW Recommendation X.800 (199 i), Security archifecture for Open Syslems Inlerconnection for CCUT applications. IS0 7498-2 : 1988, Informafion processing systems - Open Systems Inferconnection - Basic Reference Model - Pan 2: Security Architectu
42、re. ISO/IEC 9545 : 1989, information iechnology - Open Systems Interconriecrion - Application ber structure. 3 Definitions For he pqm.of rhis Recommendation I Intemationai Standard. the following definitions apply. 3.1 Basic reference model definitions This Recommendation I Intemational standard mak
43、es use of the following term defined in CCIT Rec. X.200 I IS0 7498: 3.2 Security architecture definitions This Recommendation I Intemational Standard makes use of the following tenns defined in CCITT Rec. X.800 I - - 2.3 Additional references - open system IS0 7498-2 a) authentication; b) confidenti
44、ality; c) integrity; d) non-repudiation; e) security policy; 9 securityservi. 3.3 Management framework definitions This Recommendation I International Standard makes use of the following term defined in CCITT Rec. X.700 I ISO/EC 74984 managed object 3.4 Systems management overview definitions This R
45、ecommendation I International Standard makes use of the following terms defined in CCITI Rec. X.701 I ISO/IEC 10040: a) agent role; b) C) d) manager role; e) MICS proforma; f) MOCS proforma; managed object conformance statement (MOCS) management information conformance statement (MICS) A 3 CCIT Rec.
46、 X.736 (1992) COPYRIGHT International Telecommunications Union/ITU TelecommunicationsLicensed by Information Handling Services-. ITU-T RECMN*X.736 92 W qb2593 O607533 739 W .- ISO/IEC 10164-7 : 19920 g) notification: , h) systems management functional unit. A 3.5 This Recommendation I International
47、Standard makes use of the following term defined in CCW Rec. X.734 I Event report management function definitions ISO/IEC 10164-5: discriminator 3.6 Service conventions definitions This Recommendation I Inteniational Standard makes use of the following tenns defined in CC Rec. X.210 I ISOfR 8509: a)
48、 service-user; b) service-provider. 3.7 OS1 conformance testing definitions This Recommendation I Intemational Standard makes use of the following tem defined in CCITT Rec. X.290 I ISOAEC 9646-1: a) PICS proforma; b) protocol implementation conformance statement; c) system conformance statement. A 3
49、.8 This Recommendation I International Standard makes use of the following terms defined in -T Rec.X.724 implementation conformance statement proforma definitions ISO/LEC 10165-6: a) b) Management Conformance Summary (MCS); c) d) MCS profonna; e) MRCSproforma Managed Relationship Conformance Statement (MRCS); Management Information Definition Statement OS) proforma; A 3.9 Additional definitioos 3.9,l security alarm: A seuuity-related event that has bem identified by a security policy as a potential breach of Security; 3.9.2
