資源描述:
《GB/T 36643-2018 信息安全技術 網(wǎng)絡安全威脅信息格式規(guī)范規(guī)范》由會員上傳分享,免費在線閱讀,更多相關內容在行業(yè)資料-天天文庫。
1、ICS35.040L80中華人民共和國國家標準GB/T36643—2018信息安全技術網(wǎng)絡安全威脅信息格式規(guī)范Informationsecuritytechnology—Cybersecuritythreatinformationformat2018-10-102018-10-10發(fā)布2019-05-01實施GB/T36643—2018目次前言............................................................................II引言............
2、...............................................................III1范圍..............................................................................12規(guī)范性引用文件....................................................................13術語和定義..................................
3、......................................14縮略語............................................................................25網(wǎng)絡安全威脅信息模型..............................................................25.1概述..................................................................
4、........25.2威脅信息維度..................................................................25.3威脅信息組件..................................................................36網(wǎng)絡安全威脅信息組件..............................................................46.1概述.........................
5、.................................................46.2可觀測數(shù)據(jù)....................................................................46.3攻擊指標.....................................................................106.4安全事件.....................................................
6、................126.5攻擊活動.....................................................................136.6攻擊方法.....................................................................146.7應對措施.....................................................................156.8威脅主體......
7、...............................................................176.9攻擊目標.....................................................................18附錄A(資料性附錄)采用JSON表示的完整網(wǎng)絡安全威脅信息示例........................20參考文獻.............................................................
8、...............29IGB/T36643—2018前言本標準按照GB/T1.1—2009給出的規(guī)則起草。請注意本文件的某些內容可能涉及專利。本文件的發(fā)布機構不承擔識別這些專利的責任。本標準由全國信息安全標準化技術委員會(SAC/TC260)提出并歸口。本標準起草單位:中國電子