1、KS X ISO/IEC 10181-7 KSKSKSKS SKSKSKS KSKSKS SKSKS KSKS SKS KS : KS X ISO/IEC 10181-7 : 2002 (2012 ) 2002 11 27 http:/www.kats.go.kr X ISO/IEC 101817:2002 : ( ) ( ) SJ ( ) : (http:/www.standard.go.kr) : :2002 11 27 :2012 12 28 2012-0829 : : ( 02-509-7262) (http:/www.kats.go.kr). 10 5 , . X ISO/IEC 1
2、01817:2002 . KS X ISO/IEC 101817:2002 . A() OSI B() C() D() KS X ISO/IEC 10181 “ ” . 1: 2: 3: 4: 5: 6: 7: i ICS 35.100 KS X ISO/IEC : 101817 :2002 (2012 ) Information technologyOpen Systems InterconnectionSecurity frameworks for open systems:Security audit and alarms framework 1996 1 ISO/IEC 101817,
3、 Information technologyOpen Systems In- terconnectionSecurity frameworks for open systems:Security audit and alarms framework . 1. . “ ” , , , OSI . , . . ( .) . , . . , . a) b) c) , . 6. . . . 1) 2) 3) 4) 5) . 1), 2), 3), 4), 5) . 2), 3), 4), 5) 8. . 5) 9. . X ISO/IEC 101817:2002 2 2. . ( ) . ( ) (
4、 .) . 2.1 KS X 30021 1: (ITUT Recommendation X.200 (1994)ISO/IEC 74981:1994, Information technologyOpen Systems Inter- connectionBasic Reference Model:The Basic Model, IDT) CCITT Recommendation X.734 (1992)ISO/IEC 101645:1993, Information technologyOpen Systems Inter- connectionSystems management:Ev
5、ent report management function CCITT Recommendation X.735 (1992)ISO/IEC 101646:1993, Information technologyOpen Systems Inter- connectionSystems management:Log control function CCITT Recommendation X.736 (1992)ISO/IEC 101647:1992, Information technologyOpen Systems Inter- connectionSystems managemen
6、t:Security alarm reporting function CCITT Recommendation X.740 (1992)ISO/IEC 101648:1993, Information technologyOpen Systems Inter- connectionSystems management:Security audit trail function ITUT Recommendation X.810 (1995)ISO/IEC 101811:1996, Information technologyOpen Systems In- terconnectionSecu
7、rity frameworks for open systems:Overview 2.2 CCITT Recommendation X.700 (1992), Management framework for Open Systems Interconncetion (OSI) for CCITT applications. KS X 30024 4: (ISO/IEC 74984:1989, Information processing systemsOpen Systems InterconnectionBasic Reference Model Part 4:Management fr
8、amework, MOD) CCITT Recommendation X.800 (1991), Security Architecture for Open Systems Interconncetion for CCITT applica- tions. KS X 30022 2: (ISO 74982:1989, Information processing systemsOpen Systems InterconnectionBasic Reference ModelPart 2:Security Architecture, MOD) 3. . 3.1 (basic reference
9、 model definitions) ITUT Rec. X.200KS X 30021 (ISO/IEC 74981) . a) b) c) d) 3.2 (security architecture definitions) CCITT Rec. X.800KS X 30022(ISO/ IEC 74982) . a) b) c) X ISO/IEC 101817:2002 3 d) e) 3.3 (management framework definitions) CCITT Rec. X.700KS X 30024 (ISO/IEC 74984) : . 3.4 (security
10、framework overview definitions) ITUT Rec. X.810ISO/IEC 101811 . 3.5 (additional definitions) , . 3.5.1 (alarm processor) 3.5.2 (audit authority) 3.5.3 (audit analyser) , 3.5.4 (audit archiver) 3.5.5 (audit dispatcher) 3.5.6 (audit trail examiner) 3.5.7 (audit recorder) 3.5.8 (audit provider) 3.5.9 (
11、audit trail collector) 3.5.10 (event discriminator) , 3.5.11 (security alarm) . . 3.5.12 (security alarm administrator) 3.5.13 (securityrelated event) , . . 3.5.14 (security audit message) 3.5.15 (security audit record) 3.5.16 (security auditor) 3.5.17 (security report) , 4. OSI X ISO/IEC 101817:200
12、2 4 5. “ ” “ ” “ ” “ ” . “ ” “ ” . “” “ ” . 6. . , , ( ) , , . . , , . . . . . , . 10. . , () . , . , ( ) . . 6.1 . 6.1.1 . . , , . 6.1.2 . , . . X ISO/IEC 101817:2002 5 . . , . , . , , . 1 . 1 6.1.3 . . , . , , , . , . ( 2 ) . . X ISO/IEC 101817:2002 6 . . . . 2 6.2 , . . . , . 6.2.1 . (6.2.2 ). ,
13、. 6.2.2 , . . a) . b) c) . A B C X ISO/IEC 101817:2002 7 6.2.3 , . . a) . b) c) . b) c) . 6.2.4 , . , . . a) . b) c) d) . , . 6.2.5 . ( ) ( ) (6.1.3 , .). 6.2.6 , . , . . , . , . . , . . 6.2.7 . , . . . . 6.3 . , . . . . D . X ISO/IEC 101817:2002 8 7. 7.1 , , ( ). . . . . . , , , , , , . . 7.2 . . . , , , . 7.3 . 7.3.1 . . , . . , , . . . , . , . . . . ( ) . 7.3.2 . . . . 10. . 8. . (, ) (, ) X ISO/IEC 101817:2002 9 , , . 8.1 , , , . 8.1.1 . . 8.1.2 . , , . . . 8.1.3 . . , . , ( ) . 8.