2011, 3(2): 86-90.
基于信息系统安全保护等级的勘察设计企业信息安全保障体系建设
中国电子工程设计院,北京 100840 |
Information Safety Protection System Establishment of Survey and Engineering Enterprise Based on Information System Safety Protection Tiers
China Electronics Engineering Design Institute, Beijing 100840, China |
引用本文:
张瑞祥, 谢卫, 熊炜, 李永刚. 基于信息系统安全保护等级的勘察设计企业信息安全保障体系建设[J]. 土木建筑工程信息技术,
2011, 3(2): 86-90.
Citation:
Zhang Ruixiang, Xie Wei, Xiong Wei, Li Yonggang. Information Safety Protection System Establishment of Survey and Engineering Enterprise Based on Information System Safety Protection Tiers[J]. Journal of Information Technologyin Civil Engineering and Architecture,
2011, 3(2): 86-90.
摘要:本文以国家颁布的计算机信息系统安全保护等级划分准则等信息安全管理标准、规范为基线,把确保企业信息安全风险降低到可以接受程度作为安全目标,通过对企业信息安全需求的分析,介绍建立企业信息安全保证体系的基本思路,以及选择并实施有关信息安全管理措施的方法。
Abstract: Based on the national standards and codes like "Classified Criteria for Security Protection of Computer Information System", aiming to reduce the enterprise information safety risk to an acceptable level and through the analysis on enterprise information safety demand, this article introduces the basic principle of establishing an enterprise information safety protection system as well as the approach to the selection and implementation of relating information safety control measures.
| [1] |
《计算机信息系统安全保护等级划分准则》(GB 17859-1999) |
| [2] |
《信息系统安全保护等级定级指南》 |
| [3] |
《信息技术安全管理指南》(GBT 19715. 2-2005) |
| [4] |
《信息系统等级保护安全设计技术要求》 |
计量
- PDF下载量(9)
- 文章访问量(941)
- HTML全文浏览量(796)
