|
Security service is a service, provided by a layer of communicating open systems, which ensures adequate security of the systems or of data transfers〔(X.800 : Security architecture for Open Systems Interconnection for CCITT applications )〕 as defined by ITU-T X.800 Recommendation. X.800 and ISO 7498-2 (Information processing systems – Open systems interconnection – Basic Reference Model – Part 2: Security architecture)〔(ISO 7498-2 (Information processing systems – Open systems interconnection – Basic Reference Model – Part 2: Security architecture) )〕 are technically aligned. This model is widely recognized 〔 William Stallings Crittografia e sicurezza delle reti Seconda edizione ISBN 88-386-6377-7 Traduzione Italiana a cura di Luca Salgarelli di Cryptography and Network security 4 edition Pearson 2006 〕 〔Securing information and communications systems: principles, technologies, and applications Steven Furnell, Sokratis Katsikas, Javier Lopez, Artech House, 2008 - 362 pages 〕 A more general definition is in CNSS Instruction No. 4009 dated 26 April 2010 by Committee on National Security Systems of United States of America:〔(CNSS Instruction No. 4009 ) dated 26 April 2010〕 :''A capability that supports one, or more, of the security requirements (Confidentiality, Integrity, Availability). Examples of security services are key management, access control, and authentication.'' Another authoritative definition is in W3C Web service Glossary 〔(W3C Web Services Glossary )〕 adopted by NIST SP 800-95:〔(NIST Special Publication 800-95 Guide to Secure Web Services )〕 : ''A processing or communication service that is provided by a system to give a specific kind of protection to resources, where said resources may reside with said system or reside with other systems, for example, an authentication service or a PKI-based document attribution and authentication service. A security service is a superset of AAA services. Security services typically implement portions of security policies and are implemented via security mechanisms.'' == Basic security terminology == (詳細はInformation security and Computer security are disciplines that are dealing with the requirements of Confidentiality, Integrity, Availability, the so-called CIA Triad, of information asset of an organization (company or agency) or the information managed by computers respectively. There are threats that can attack the resources (information or devices to manage it) exploiting one or more vulnerabilities. The resources can be protected by one or more countermeasures or security controls.〔Internet Engineering Task Force RFC 2828 Internet Security Glossary〕 So security services implement part of the countermeasures, trying to achieve the security requirements of an organization.〔〔Network security essentials: applications and standards, William Stallings,Prentice Hall, 2007 - 413 pages〕 抄文引用元・出典: フリー百科事典『 ウィキペディア(Wikipedia)』 ■ウィキペディアで「Security service (telecommunication)」の詳細全文を読む スポンサード リンク
|