• There are no items in your cart

BS ISO/IEC 10745:1995

Current

Current

The latest, up-to-date edition.

Information technology. Open systems interconnection. Upper layers security model

Available format(s)

Hardcopy , PDF

Language(s)

English

Published date

12-15-1995

US$257.86
Excluding Tax where applicable

1 Scope
2 Normative references
   2.1 Identical Recommendations/International
        Standards
   2.2 Paired Recommendations/International Standards
        equivalent in technical content
3 Definitions
4 Abbreviations
5 Concepts
   5.1 Security policy
   5.2 Security associations
   5.3 Security state
   5.4 Application Layer requirements
6 Architecture
   6.1 Overall model
   6.2 Security associations
   6.3 Security exchange functions
   6.4 Security transformations
7 Services and mechanisms
   7.1 Authentication
   7.2 Access control
   7.3 Non-repudiation
   7.4 Integrity
   7.5 Confidentiality
8 Layer interactions
   8.1 Interactions between Application and
        Presentation Layers
   8.2 Interactions between Presentation and Session
        Layers
   8.3 Use of lower layer services
Annex A - Relationship to OSI management
Annex B - Bibliography

Specifies the security aspects of communication in the upper layers of the Open Systems Interconnection (OSI). Also specifies: the support in the upper layers of the security services defined in the OSI Security Architecture and the Security Frameworks for Open Systems; the interactions among the upper layers, and interactions between the upper layers and the lower layers, in providing and using security forces; the requirement for management of security information in the upper layers.

Committee
IST/6
DevelopmentNote
Supersedes 92/64465 DC. (07/2005)
DocumentType
Standard
Pages
26
PublisherName
British Standards Institution
Status
Current
Supersedes

1.1 This Recommendation | International Standard defines an architectural model that provides a basis for: the development of application-independent services and protocols for security in the upper layers of OSI; and the utilization of these services and protocols to fulfil the security requirements of a wide variety of applications, so that the need for application-specific ASEs to contain internal security services is minimized. 1.2 In particular, this Recommendation | International Standard specifies: the security aspects of communication in the upper layers of OSI; the support in the upper layers of the security services defined in the OSI Security Architecture and the Security Frameworks for Open Systems; the positioning of, and relationships among, security services and mechanisms in the upper layers, according to the guidelines of CCITT Rec. X.800 | ISO 7498-2 and ITU-T Rec. X.207 | ISO/IEC 9545. the interactions among the upper layers, and interactions between the upper layers and the lower layers, in providing and using security services; the requirement for management of security information in the upper layers. 1.3 With respect to access control, the scope of this Recommendation | International Standard includes services and mechanisms for controlling access to OSI resources and resources accessible via OSI. 1.4 This Recommendation | International Standard does not include: definition of OSI services or specification of OSI protocols; specification of security techniques and mechanisms, their operation, and their protocol requirements; or aspects of providing security which are not concerned with OSI communications. 1.5 This Recommendation | International Standard is neither an implementation specification for systems nor a basis for appraising the conformance of implementations. NOTE — The scope of this Recommendation | International Standard includes security for connectionless applications and for distributed applications (such as store-and-forward applications, chained applications, and applications acting on behalf of other applications).

Standards Relationship
ISO/IEC 10745:1995 Identical

ISO/IEC 9545:1994 Information technology Open Systems Interconnection Application Layer structure
ISO/IEC 10181-3:1996 Information technology Open Systems Interconnection Security frameworks for open systems: Access control framework
ISO/IEC 9594-8:2017 Information technology Open Systems Interconnection The Directory Part 8: Public-key and attribute certificate frameworks
ISO 7498-2:1989 Information processing systems Open Systems Interconnection Basic Reference Model Part 2: Security Architecture
ISO/IEC 10164-7:1992 Information technology Open Systems Interconnection Systems Management: Security alarm reporting function
ISO/IEC 10164-3:1993 Information technology Open Systems Interconnection Systems Management: Attributes for representing relationships
ISO/IEC 10164-8:1993 Information technology Open Systems Interconnection Systems Management: Security audit trail function
ISO/IEC 11586-1:1996 Information technology Open Systems Interconnection Generic upper layers security: Overview, models and notation
ISO/IEC 11586-4:1996 Information technology Open Systems Interconnection Generic upper layers security: Protecting transfer syntax specification
ISO/IEC 10164-9:1995 Information technology Open Systems Interconnection Systems Management: Objects and attributes for access control
ISO/IEC 10181-2:1996 Information technology Open Systems Interconnection Security frameworks for open systems: Authentication framework
ISO/IEC 11586-3:1996 Information technology Open Systems Interconnection Generic upper layers security: Security Exchange Service Element (SESE) protocol specification
ISO/IEC 11586-2:1996 Information technology Open Systems Interconnection Generic upper layers security: Security Exchange Service Element (SESE) service definition
ISO/IEC 8649:1996 Information technology Open Systems Interconnection Service definition for the Association Control Service Element
ISO/IEC 7498-4:1989 Information processing systems — Open Systems Interconnection — Basic Reference Model — Part 4: Management framework
ISO/IEC 8822:1994 Information technology Open Systems Interconnection Presentation service definition

Access your standards online with a subscription

Features

  • Simple online access to standards, technical information and regulations.

  • Critical updates of standards and customisable alerts and notifications.

  • Multi-user online standards collection: secure, flexible and cost effective.