电信运营商提供的增值服务安全保护导则 |
随着网络和用户终端能力的快速提升,越来越多的电信运营商向用户提供各种基于网络资源的服务。这些服务称为增值服务,为基础电信服务(如,语音呼叫、短信、彩信和数据访问)增加额外的价值。典型的增值服务包括移动办公自动化、电子阅读、电子商务等。在许多情况下,增值服务涉及敏感操作或关键数据,这些是恶意攻击者的目标。恶意用户可能利用这些服务漏洞获取利益或损害服务和其他用户。 本建议书规定了电信运营商提供的增值服务的安全保护导则。除分析了典型的服务情形、安全威胁和攻击方法外,本建议书还提供了应对威胁和攻击的技术措施。这有助于运营商确保增值服务的安全性,同时保护用户的利益。 |
|
Citation: |
https://handle.itu.int/11.1002/1000/13368 |
Series title: |
X series: Data networks, open system communications and security X.1100-X.1199: Secure applications and services (I) X.1140-X.1149: Web security (I) |
Approval date: |
2017-10-14 |
Provisional name: | X.websec-8 |
Approval process: | AAP |
Status: |
In force |
Maintenance responsibility: |
ITU-T Study Group 17 |
Further details: |
Patent statement(s)
Development history
|
|
|
Ed. |
ITU-T Recommendation |
Status |
Summary |
Table of Contents |
Download |
1
|
X.1146 (10/2017)
|
In force
|
here
|
here
|
here
|
Title |
Approved on |
Download |
Guidelines for identity-based cryptosystems used for cross-domain secure communications
|
2023
|
here
|
Overview of hybrid approaches for key exchange with quantum key distribution
|
2022
|
here
|
Guidelines for security management of using artificial intelligence technology
|
2022
|
here
|
Successful use of security standards (2nd edition)
|
2020
|
here
|
Description of the incubation mechanism and ways to improve it
|
2020
|
here
|
Strategic approaches to the transformation of security studies
|
2020
|
here
|
|