2.1.6 Security service provision applications

Next: 2.1.7 Other adaptive security Up: 2.1 Components of an Previous: 2.1.5 The logging and

2.1.6 Security service provision applications

Security provision applications help the adaptive security management service and its engines to do their job. The system and network scanners discussed in paragraph 2.1.3 are such applications because they provide the vulnerability data to the appropriate security engine.

Corresponding to ISO 7498-2 (and ISO/IEC 10181 parts 2-6), other services may include [MIT98, p.2-4]:

authentication,
access control,
confidentiality,
integrity,
non-repudiation,

and additionally

security audit (ISO/IEC 10181 part 7),
key management (ISO/IEC 11770),
other trusted third party (TTP) services (ISO TR 14516).

We will consider the use of these services in some more depth in paragraph 3.1.4 on page

Other examples of possible security service providers are network management applications, communication handlers, secure clock synchronization services and so forth. The logging and auditing application described in section 2.1.5 provides support for the security audit services.