BS ISO/IEC TR 15947:2002 - Information technology. Security techniques. IT intrusion detection framework – BSI British Standards

BS ISO/IEC TR 15947:2002

Information technology. Security techniques. IT intrusion detection framework

Status : Withdrawn   Published : November 2002

WITHDRAWN TITLE
*To ask about withdrawn titles contact the
BSI Customer Services
cservices@bsigroup.com, +44 345 086 9001


BS ISO/IEC TR 15947:2002 defines a framework for detection of intrusions in IT systems. Many classes of intrusions are considered. These include intrusions that are intentional or unintentional, legal or illegal, harmful or harmless, and unauthorized access by insiders or outsiders.

BS ISO/IEC TR 15947:2002 focuses on:

  • establishing common definitions for terms and concepts associated with an IT intrusion detection framework
  • describing a generic model of intrusion detection
  • providing high level examples of attempts to exploit systems vulnerabilities
  • discussing common types of input data and the sources needed for an effective intrusion detection capability
  • discussing different methods and combinations of methods of intrusion detection analysis
  • describing activities/actions in response to indications of intrusions.

The framework explains intrusion detection terms and concepts, and describes the relationship among them. Further, it addresses possible ordering of intrusion detection tasks and related activities.

BS ISO/IEC TR 15947:2002 provides the basis for a common understanding of intrusion detection and aims to assist IT managers to deploy within their organizations Intrusion Detection Systems (IDS) that interact and work together.

Contents:

  • Scope
  • References
  • Terms and definitions
  • Introduction to intrusion detection
  • Generic model of intrusion detection process
  • Characteristics of intrusion detection
  • Architecture considerations
  • Management of an IDS
  • Intrusion detection analysis
  • Implementation and deployment issues
  • Intrusion detection issues
  • Summary
  • Bibliography



Standard NumberBS ISO/IEC TR 15947:2002
TitleInformation technology. Security techniques. IT intrusion detection framework
StatusWithdrawn
Publication Date11 November 2002
Withdrawn Date01 January 2012
Normative References(Required to achieve compliance to this standard)No other standards are normatively referenced
Informative References(Provided for Information)No other standards are informatively referenced
International RelationshipsISO/IEC TR 15947:2002
DescriptorsComputer technology, Data security, Data storage protection, Safety measures, Data processing, Information exchange, Data transmission, Risk assessment
ICS35.030
Title in FrenchTechnologies de l'information. Techniques de securite. Cadre de detection de l'intrusion dans les systemes des technologies de l'information
CommitteeIST/33
ISBN0 580 40694 6
PublisherBSI
FormatA4
DeliveryNo
Pages32
File Size858.1 KB
NotesThis standard has been withdrawn as it is identical to ISO/IEC TR 15947:2002 which has been withdrawn ISO/IEC/JTC 1/SC 27/WG 1
Price£182.00


WITHDRAWN TITLE
*To ask about withdrawn titles contact the
BSI Customer Services
cservices@bsigroup.com, +44 345 086 9001
 Your basket
Your basket is empty

Multi-user access to over 3,500 medical device standards, regulations, expert commentaries and other documents


BSOL

The faster, easier way to work with standards


Tracked Changes

Understand the changes made to a standard with our new Tracked Changes version


Worldwide Standards
We can source any standard from anywhere in the world