CSA - CAN/CSA-ISO/IEC-10164-8
Information Technology - Open Systems Interconnection - Systems Management: Security Audit Trail Function
Organization: | CSA |
Publication Date: | 1 December 1995 |
Status: | inactive |
Page Count: | 57 |
scope:
This Recommendation I International Standard defines the security audit trail function. The security audit trail function is a systems management function which may be used by an application process in a centralized or decentralized management environment to exchange information and commands for the pwpose of systems management, as defined by CCittRec. X.700 I IS0 7498-4. This Recommendation I International Standard is positioned in the application layer of CCITT Rec. X.200 I IS0 7498 and is defined according to the model provided by ISO/IEC 9545. The role of systems management functions is described by CCiTTRec. X.701 I ISO/IEC 10040.
This Recommendation I International Standard
- establishes user requirements for the service definition needed to support the security audit trail reponing function;
-defines the service provided by the security audit traĆ¼ reporting function;
-specifies the protocol that is necessary in order to provide the service;
-defmes the relationship between the service and management notincations defines relationships with other systems management functions;
- specifies conformance requirements.
This Recommendation I International Standard does not define
- a security audit, nor how to perform one. A security audit may be used to assist in assessing the effectiveness of a security policy. The security poiicy identifies the categories of security-related events that require auditing, and the location of the security audit trail log in which they are to be recorded;
- the nature of any implementation intended to provide the security audit trail function;
- the occasions where the use of the security audit trail function is appropriate;
- the services necessary for the establishment, normal and abnomai release of a management association;
- any other notifications defined by other Recommendations I International Standards which may be of interest to a security administrator.
Document History





