BS ISO/IEC 10181-7:1996 - Information technology. Open systems interconnection. Security frameworks for open systems - Security audit and alarms framework

(For USM Staff/Student Only)

EngLib USM > @i* Standard > British Standard >

BS ISO/IEC 10181-7:1996 - Information technology. Open systems interconnection. Security frameworks for open systems - Security audit and alarms framework

Description

Printed version of this is available at library. To request, please e-mail to referencepk@usm.my and include a copy of this record in your e-mail.

Abstract

This Recommendation | International Standard addresses the application of security services in an Open Systems environment, where the term "Open Systems" is taken to include areas such as Database, Distributed Applications, Open Distributed Processing and OSI. The Security Frameworks are concerned with defining the means of providing protection for systems and objects within systems, and with the interactions between systems. The Security Frameworks are not concerned with the methodology for constructing systems or mechanisms. The Security Frameworks address both data elements and sequences of operations (but not protocol elements) which are used to obtain specific security services. These security services may apply to the communicating entities of systems as well as to data exchanged between systems, and to data managed by systems. The purpose of security audit and alarms as described in this Recommendation | International Standard is to ensure that open system-security-related events are handled in accordance with the security policy of the applicable security authority. In particular, this framework: a) defines the basic concepts of security audit and alarms; b) provides a general model for security audit and alarms; and c) identifies the relationship of the Security Audit and Alarms service with other security services. As with other security services, a security audit can only be provided within the context of a defined security policy. The Security Audit and Alarms model provided in clause 6 supports a variety of goals not all of which may be necessary or desired in a particular environment. The security audit service provides an audit authority with the ability to specify the events which need to be recorded within a security audit trail. A number of different types of standard can use this framework including: 1) standards that incorporate the concept of audit and alarms; 2) standards that specify abstract services that include audit and alarms; 3) standards that specify uses of audit and alarms; 4) standards that specify the means of providing audit and alarms within an open system architecture; and 5) standards that specify audit and alarms mechanisms.

Contributor(s):

NAAR - Data Entry Person

Primary Item Type:

British Standard

Identifiers:

ICS 35.100.01 Open systems interconnection in general

ISBN 0580265250

Language:

English

Subject Keywords:

Messages; Data processing; Verification; Information exchange; Open systems interconnection; Data storage protection; Data transmission; Data transfer; Data security

First presented to the public:

1/17/2024

Original Publication Date:

11/15/1996

Previously Published By:

British Standards Institution

Place Of Publication:

London, United Kingdom

Citation:

Extents:

Number of Pages - 18

License Grantor / Date Granted:

/ ( View License )

Date Deposited

2024-01-17 07:46:47.941

Submitter:

Nurul Aini Abdul Rahman

All Versions

Thumbnail	Name	Version	Created Date
	BS ISO/IEC 10181-7:1996 - Information technology. Open systems interconnection. Security frameworks for open systems - Security audit and alarms framework	1	2024-01-17 07:46:47.941

Engineering Library USM @ 2017

Reason for withdraw :*
Display metadata:
Withdraw all versions: