|
Work item:
|
X.SecaaS-Req
|
|
Subject/title:
|
Security requirements in the domain of security as a service
|
|
Status:
|
Under study
|
|
Approval process:
|
AAP
|
|
Type of work item:
|
Recommendation
|
|
Version:
|
New
|
|
Equivalent number:
|
-
|
|
Timing:
|
2027-12 (Medium priority)
|
|
Liaison:
|
-
|
|
Supporting members:
|
China Telecom, China Unicom
|
|
Summary:
|
Security as a service (SecaaS) is a cloud service category in which the capabilities provided to the cloud service customer are the integration of a suite of security services with the existing operating environment.
[ITU-T X.1646] has identified the security threats in the domain of SecaaS. This Recommendation aims to provide the corresponding security requirements in the following areas: architecture, identity and access management, software isolation and API related issues, isolation of instances, data protection, availability, incident response, management, orchestration and deployment.
|
|
Comment:
|
-
|
|
Reference(s):
|
|
|
Historic references:
|
|
Contact(s):
|
|
| ITU-T A.5 justification(s): |
|
|
|
|
First registration in the WP:
2025-12-11 10:21:56
|
|
Last update:
2025-12-11 18:15:26
|
