Requirements for collection and preservation of cybersecurity incident evidence
- 참여자
-
이주영, 문대성
- 연도
- 2020
- 표준화기구
- ITU
- 표준번호
- X.1216
- 원문링크
-
https://www.itu.int/rec/T-REC-X.1216-202009-I
- 협약과제
-
20HR1300, 능동적 사전보안을 위한 사이버 자가변이 기술개발,
문대성
- 요약
- Recommendation ITU-T X.1216 describes a general procedure for cybersecurity incident response and investigation. It also analyses sources of cybersecurity incident evidence and specifies capability requirements for tools used for collection and preservation of such evidence in an investigative process. This Recommendation also specifies reliability assurance requirements for these tools as guidelines to developers who design tools for such purpose.