Work item:
|
X.nssa-cc
|
Subject/title:
|
Requirements of network security situational awareness platform for cloud computing
|
Status:
|
[Carried to next study period]
|
Approval process:
|
TAP
|
Type of work item:
|
Recommendation
|
Version:
|
New
|
Equivalent number:
|
-
|
Timing:
|
-
|
Liaison:
|
-
|
Supporting members:
|
-
|
Summary:
|
Network security situational awareness?NSSA? is derived from "situational awareness". It usually includes four processes: data acquisition, security situation analysis, security situation assessment and security situation prediction, and generally has the following capabilities: 1) the capability of detection and persistent monitoring various attack threats, abnormal behaviour and their scope of influence; 2) the capability of data mining, threat analysis, and the traceability of abnormal behaviour; 3) the capability of security prediction and early warning; 4) the capability of visualization of security situation.
For cloud computing service providers, NSSA platform plays an important role in improving cloud computing's security protection, the ability to detect security breaches or anomalous behaviours, security decision-making and emergency response ability, and even it can help improve the early warning mechanism for cloud computing..
This recommendation will first introduce the concept and development of network security situational awareness ,analyze the advantages of NSSA coping with the security challenges of cloud computing, then aim to document the requirements for network security situational awareness platform for cloud computing.
|
Comment:
|
-
|
Reference(s):
|
|
|
Historic references:
|
Contact(s):
|
|
ITU-T A.5 justification(s): |
|
|
|
First registration in the WP:
2019-09-12 16:27:12
|
Last update:
2021-11-12 23:50:07
|