Recommendation ITU-T X.1220 (11/2023) – Security framework for storage protection against malware attacks on hosts
Summary
FOREWORD
Table of Contents
1 Scope
2 References
3 Definitions
     3.1 Terms defined elsewhere
     3.2 Terms defined in this Recommendation
4 Abbreviations and acronyms
5 Conventions
6 Introduction
7 Storage protection framework
     7.1 Functional architecture
     7.2 Entities
8 Operating procedure
     8.1 Application registration
     8.2 Network drive mount
     8.3 Data request and process result receipt
9 Security threats
     9.1 Storage protection server administrator credentials leak
     9.2 User credential leak
     9.3 Applications tampering
     9.4 Malware registration by inducing users
     9.5 Application changes
10 Security requirements
     10.1 MFA for storage protection server administrator accounts
     10.2 MFA for user accounts
     10.3 Hash-based application registration
     10.4 Binary hash management
Annex A  Relationship between security requirements and threats
Appendix I  Use cases of storage protection framework
     I.1 CCTV storage protection
     I.2 Blockchain wallet storage protection
     I.3 Email server storage protection
     I.4 Backup storage protection
     I.5 General storage protection
Bibliography