What is the information security level protection and evaluation standard?

Classified protection of information security refers to classified security protection of proprietary information of national security, legal persons, other organizations and citizens, as well as information systems that disclose information and store, transmit and process such information, classified management of information security products used in information systems, and classified response and disposal of information security incidents in information systems.

Ten important standards

Classification standard of computer information system security level protection

(GB

17859- 1999)

(Basic class standard)

Guide for the implementation of information system security level protection

(GB/T

25058-20 10)

(Basic class standard)

Information system security protection level grading guide

(GB/T

22240-2008)

(Application of grading standards)

Basic requirements of information system security level protection

(GB/T

22239-2008)

(Construction standard of application level)

General security technical requirements for information systems

(GB/T

2027 1-2006)

(Construction standard of application level)

Technical requirements for safety design of information system level protection

(GB/T

25070-20 10)

(Construction standard of application level)

Information system security level protection evaluation requirements

(Application of evaluation criteria)

Guide to the evaluation process of information system security level protection

(Application of evaluation criteria)

Information system security management requirements

(GB/T

20269-2006)

(Application Class Management Standard)

Management requirements of information system security engineering

(GB/T

20282-2006)

(Application Class Management Standard)

Other relevant standards

GB/T

2 1052-2007