Translated English of Chinese Standard: GB/T17143.7-1997 www.chinesestandard.net Sales@ChineseStandard.net NATIONAL STANDARD OF GB THE PEOPLE S REPUBLIC OF CHINA L 79 / ISO/IEC 10164-7:1992 Information technology - Open Systems Interconnection - Systems Management Part 7: Security alarm reporting function (ISO/IEC 10164-7:1992, IDT) 信息技术开放系统互连系统管理第 7 部分 : 安全告警报告功能 Issued on: December 15, 1997 Implemented on: August 1, 1998 Issued by: State Bureau of Technical Supervision www.chinesestandard.net Page 1 of 24
Table of Contents Foreword... 3 ISO/IEC Foreword... 4 Introduction... 6 1 Scope... 7 2 Normative references... 8 3 Definitions... 9 4 Abbreviations... 11 5 Conventions... 11 6 Requirements... 12 7 Model... 12 8 Generic definitions... 12 9 Service definition... 17 10 Functional units... 18 11 Protocol... 19 12 Relationships with other functions... 22 13 Conformance... 22 www.chinesestandard.net Page 2 of 24
Foreword This Standard identically adopts ISO/IEC 10164-7:1992 Information technology - Open Systems Interconnection - Systems Management: Security alarm reporting function. GB/T 17143 Information technology - Open Systems Interconnection - Systems Management consists of the following 8 parts: - Part 1 (GB/T 17143.1): Object management function; - Part 2 (GB/T 17143.2): State management function; - Part 3 (GB/T 17143.3): Attributes for representing relationships; - Part 4 (GB/T 17143.4): Alarm reporting function; - Part 5 (GB/T 17143.5): Event report management function; - Part 6 (GB/T 17143.6): Log control function; - Part 7 (GB/T 17143.7): Security alarm reporting function; - Part 8 (GB/T 17143.8): Security audit trail function. This Standard was proposed by Ministry of Electronics Industry of the People's Republic of China. This Standard shall be under the jurisdiction of Ministry of Electronics Industry Standardization Research Institute. The drafting organizations of this Standard: Ministry of Electronics Industry Standardization Research Institute. Main drafters of this Standard: Zheng Hongren, Zhou Xiaohua, Zhang Xiaotao, Huang Jiaying. www.chinesestandard.net Page 3 of 24
Introduction GB/T 17143 is a multipart standard developed according to GB 9387 and GB/T 9387.4. GB/T 17143 is related to the following standards: GB/T 16644 Information technology - Open systems interconnection - Common management information service GB/T 17142 Information technology - Open systems interconnection - Systems management overview GB/T 17175 Information technology - Open Systems Interconnection - Structure of management information GB/T 16645 Information technology - Open systems interconnection - Common management information protocol www.chinesestandard.net Page 6 of 24
Information technology - Open Systems Interconnection - Systems Management Part 7: Security alarm reporting function 1 Scope This Standard defines the security alarm reporting function. The security alarm reporting function is a systems management function which may be used by an application process in a centralized or decentralized management environment to exchange information for the purpose of systems management, as defined by GB/T 9387.4. This Standard is positioned in the application layer of GB 9387 and is defined according to the model provided by GB/T 17176. The role of systems management functions is described by GB/T 17142. The security alarm notifications defined by this systems management function provide information regarding operational condition and quality of service, pertaining to security. Security-related events are of relevance to the provision of security. The security policy determines the actions to be undertaken whenever a securityrelated event has occurred The security policy may, for example, specify that a security alarm report be generated, a record of the event be made in a security audit trail, a threshold counter be incremented, the event be ignored, or a combination of these actions be taken. This Standard is only concerned with security alarm reporting. This Standard - establishes user requirements for the service definition needed to support the security alarm reporting function; - defines the service provided by the security alarm reporting function; - specifies the protocol that is necessary in order to provide the service; - defines the relationship between the service and management notifications; - defines relationships with other systems management functions; - specifies conformance requirements. www.chinesestandard.net Page 7 of 24
This Standard does not - define the nature of any implementation intended to provide the security alarm reporting function; - specify the manner in which management is accomplished by the user of the security alarm reporting function; - define the nature of any interactions which result in the use of the security alarm reporting function; - specify the services necessary for the establishment, normal and abnormal release of a management association; - define any other notifications, deked by other standards, which may be of interest to a security administrator. 2 Normative references The following documents contain provisions which, through reference in this text, constitute provisions of this Standard. At the time of publication, the editions indicated were valid. All standards are subject to revision, and parties to agreements based on this Standard are encouraged to investigate the possibility of applying the most recent editions of the standards indicated below. GB 9387-88 Information processing systems- Open Systems interconnection - Basic Reference Model (idt ISO 7498:1984, eqv CCITT X.200:1988) GB/T 9387.2-1995 Information processing systems - Open Systems Interconnection - Basic reference Model - Part 2: Security architecture (idt ISO/IEC 7498-2:1988, eqv CCITT X.800:1991) GB/T 9387.4-1996 Information processing systems - Open Systems interconnection - Basic Reference Model - Part 4: Management framework (idt ISO/IEC 7498-4:1989, eqv CCITT X.700:1992) GB/T 15129-94 Information processing systems-open Systems Interconnection-Service conventions (idt ISO/TR 8509:1987, eqv CCITT X.210:1988) GB/T 16262-1996 Information processing system - Open systems interconnection - Specification of abstract syntax notation one (ASN.1) (idt ISO/IEC 8824:1990, eqv CCITT X.208:1988) GB/T 16263-1996 Information processing systems - Open systems interconnection - Specification of basic encoding rules for abstract syntax www.chinesestandard.net Page 8 of 24
notation one(asn.1) (idt ISO/IEC 8825:1990, eqv CCITT X.209:1988) GB/T 16644-1996 Information technology - Open systems interconnection - Common management information service definition (idt ISO/IEC 9595:1991, eqv CCITT X.710:1991) GB/T 17142-1997 Information technology--open Systems Interconnection- -Systems management overview (idt ISO/IEC 10040:1992) GB/T 17143.2-1997 Information technology - Open Systems Interconnection - Systems Management - Part 2: State management function (idt ISO/IEC 10164-2:1993) GB/T 17143.3-1997 Information technology - Open Systems Interconnection - Systems Management - Part 3: Attributes for representing relationships (idt ISO/IEC 10164-3:1993) GB/T 17143.5-1997 Information technology - Open Systems Interconnection - Systems Management - Part 5: Event report management function (idt ISO/IEC 10164-5:1993) GB/T 17143.6-1997 Information technology - Open Systems Interconnection - Systems Management - Part 6: Log control function (idt ISO/IEC 10164-6:1993) GB/T 17175.2-1997 Information technology--open Systems Interconnection--Structure of management information--part 2: Definition of management information (idt ISO/IEC 10165-2:1992) GB/T 17175.4-1997 Information technology - Open Systems Interconnection - Structure of management information - Part 4: Guidelines for the definition of managed objects (idt ISO/IEC 10165-4:1992) GB/T 17176-1997 Information technology--open Systems Interconnection- -Application layer structure (idt ISO/IEC 9545:1994) GB/T 17178.1-1997 Information technology - Open Systems Interconnection - Conformance testing methodology and framework - Part 1: General concepts (idt ISO/IEC 9646-1:1994) 3 Definitions For the purposes of this document, the following terms and definitions apply. 3.1 Basic reference model definitions This Standard makes use of the following term defined in GB 9387: www.chinesestandard.net Page 9 of 24