ITU-T X.1606 PDF

This Recommendation focuses on security requirements of communications as a service (CaaS) application environments, which differ from those for software as a service (SaaS) in [ITU-T X.1602]. CaaS of telecommunication organizations merges the communication capabilities of telecommunications and the Internet. The convergence leads to some unique CaaS features that are subject to specific risks. These risks are identified in this Recommendation and appropriate security requirements are recommended.

These requirement measures take into account national legal and regulatory obligations in individual member states in which CaaS operates. The text is based on the methodology specified in clause 10 of [ITU-T X.1601].