| (I) A occurrence in a system that is relevant to the security of
the system. (See: security incident.)
(C) The term includes both events that are security incidents and
those that are not. In a CA workstation, for example, a list of
security events might include the following:
- Performing a cryptographic operation, e.g., signing a digital
certificate or CRL.
- Performing a cryptographic card operation: creation, insertion,
removal, or backup.
- Performing a digital certificate lifecycle operation: rekey,
renewal, revocation, or update.
- Posting information to an X.500 Directory.
- Receiving a key compromise notification.
- Receiving an improper certification request.
- Detecting an alarm condition reported by a cryptographic
module.
- Logging the operator in or out.
- Failing a built-in hardware self-test or a software system
integrity check.
|
