INTERNATIONAL ISO/IEC STANDARD 18028-1

More documents

Recommendations

Info

ISO/IEC18028-1:2006(E)3.2.19intrusionunauthorized access to a network or a network-connected system i.e. deliberate or accidental unauthorizedaccess to an information system, to include malicious activity against an information system, or unauthorizeduse of resources within an information system3.2.20intrusion detectionformal process of detecting intrusions, generally characterized by gathering knowledge about abnormal usagepatterns as well as what, how, and which vulnerability has been exploited to include how and when it occurredNOTE See ISO/I EC 18043.3.2.21intrusion detection system IDStechnical system that is used to identify that an intrusion has been attempted, is occurring, or has occurredand possibly respond to intrusions in information systems and networksNOTE See ISO/I EC 18043.3.2.22intrusion prevention systemIPSvariant on intrusion detection systems that are specifically designed to provide an active response capabilityNOTE See ISO/IEC 18043.3.2.23jitterone form of line distortion caused when a transmitted signal deviates from its reference3.2.24malwaremalicious software, such as a virus or a trojan horse, designed specifically to damage or disrupt a system3.2.25multi protocol label switchingMPLStechnique, developed for use in inter-network routing, whereby labels are assigned to individual data paths orflows, and used to switch connections, underneath and in addition to normal routing protocol mechanismsNOTELabel switching can be used as one method of creating tunnels.3.2.26network administrationday-to-day operation and management of network processes and users3.2.27network analyzerdevice used to capture and decode information flowing in networks3.2.28network elementinformation system that is connected to a networkNOTE The detailed description of security element is given in ISO/IEC 18028-2.3.2.29network managementprocess of planning, designing, implementing, operating, monitoring and maintaining a network4 © ISO/IEC 2006 - All rights reserved
ISO/IEC FDIS 18028-1:2006(E)3.2.30network monitoringprocess of continuously observing and reviewing data recorded on network activity and operations, includingaudit logs and alerts, and related analysis3.2.31network security policyset of statements, rules and practices that explain an organization's approach to the use of its networkresources, and specify how its network infrastructure and services should be protected3.2.32portendpoint to a connectionNOTE In the context of the Internet protocol a port is a logical channel endpoint of a TCP or UDP connection.Application protocols which are based on TCP or UDP have typically assigned default port numbers, e.g. port 80 for theHTTP protocol.3.2.33privacyright of every individual that his/her private and family life, home and correspondence are treated inconfidenceNOTE There should be no interference by an authority with the exercise of this right except where it is in accordancewith the law and is necessary in a democratic society in the interests of national security, public safety or the economicwell-being of the country, for the prevention of disorder or crime, the protection of health or morals, or for the protection ofthe rights and freedoms of others.3.2.34 remoteaccessprocess of accessing network resources from another network, or from a terminal device which is notpermanently connected, physically or logically, to the network it is accessing3.2.35 remoteuseruser at a site other than the one at which the network resources being used are located3.2.36routernetwork device that is used to establish and control the flow of data between different networks, whichthemselves can be based on different network protocols, by selecting paths or routes based upon routingprotocol mechanisms and algorithms. The routing information is kept in a routing table3.2.37security dimensionset of security controls designed to address a particular aspect of network securityNOTE The detailed description of security dimensions is given in ISO/IEC 18028-2.3.2.38 securitydomainset of assets and resources subject to a common security policy3.2.39security gatewaypoint of connection between networks, or between subgroups within networks, or between softwareapplications within different security domains intended to protect a network according to a given security policyNOTE The detailed description of security gateway is given in ISO/IEC 18028-3.© ISO/IEC 2006 - All rights reserved 5
Page 1 and 2: INTERNATIONAL ISO/IECSTANDARD 18028
Page 3 and 4: ISO/IEC18028-1:2006(E)ContentsPageF
Page 5 and 6: ISO/IEC 18028-1:2006(E)ForewordISO
Page 7 and 8: INTERNATIONAL STANDARDISO/IEC 18028
Page 9: ISO/IEC FDIS 18028-1:2006(E)3.2.9de
Page 13 and 14: ISO/IEC FDIS 18028-1:2006(E)4 Abbre
Page 15 and 16: ISO/IEC FDIS 18028-1:2006(E)5 Struc
Page 17 and 18: ISO/IEC FDIS 18028-1:2006(E)An exam
Page 19 and 20: ISO/IEC FDIS 18028-1:2006(E)— det
Page 21 and 22: ISO/IEC FD1S 18028-1:2006(E)8 Consi
Page 23 and 24: ISO/IEC FDIS 18028-1:2006(E)9.4 Net
Page 25 and 26: ISO/IEC 18028-1:2006(E)© ISO/IEC 2
Page 27 and 28: ISO/IEC18028-1:2006(E)Table 2 — I
Page 29 and 30: IS0/IEC18028-1:2006(E)A conceptual
Page 31 and 32: ISO/IEC 18028-1:2006(E)Using the se
Page 33 and 34: ISO/IEC 18028-1:2006(E)13 Identify
Page 35 and 36: ISO/IEC 18028-1:2006(E)These Securi
Page 37 and 38: ISO/IEC 18028-1:2006(E)13.2.3 Wide
Page 39 and 40: ISO/IEC 18028-1:2006(E)— flawed S
Page 41 and 42: ISO/IEC18028-1:2006(E)13.2.5.3 Secu
Page 43 and 44: ISO/IEC 18028-1:2006(E)With all sec
Page 45 and 46: ISO/IEC18028-1:2006(E)• uncertain
Page 47 and 48: ISO/IEC 18028-1:2006(E)— IDS shou
Page 49 and 50: ISO/IEC18028-1:2006{E)— exploitat
Page 51 and 52: ISO/IEC 18028-1:2006(E)The content
Page 53 and 54: ISO/IEC18028-1:2006(E)— web-based
Page 55 and 56: ISO/IEC 18028-1:2006(E)13.4.4 Netwo
Page 57 and 58: ISO/IEC18028-1:2006(E)13.6.5 Secure
Page 59 and 60: ISO/IEC 18028-1:2006(E)use rules to
Page 61 and 62:
IS0/IEC18028-1:2006(E)Where it is i
Page 63 and 64:
IS0/IEC18028-1:2006(E)13.10.5.2 Sec
Page 65 and 66:
IS0/IEC18028-1:2006(E)Bibliography[
show all

INTERNATIONAL ISO/IEC STANDARD 18028-1

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?