现行国家信息安全技术标准Word下载.docx

现行国家信息安全技术标准Word下载.docx

《现行国家信息安全技术标准Word下载.docx》由会员分享，可在线阅读，更多相关《现行国家信息安全技术标准Word下载.docx（34页珍藏版）》请在冰点文库上搜索。

信息安全管理体系审核和认证机构要求

Informationtechnology—Securitytechniques—Requirementsforbodiesprovidingauditandcertificationofinformationsecuritymanagementsystems

5

GB/T33132-2016

信息安全风险处理实施指南

Informationsecuritytechnology—Guideofimplementationforinformationsecurityrisktreatment

6

GB/T32905-2016

SM3密码杂凑算法

Informationsecuritytechniques—SM3crytographichashalgorithm

国标委计划[2006]81号

7

GB/T22186-2016

具有中央处理器的IC卡芯片安全技术要求

Informationsecuritytechniques—SecuritytechnicalrequirementsforICcardchipwithCPU

8

GB/T32907-2016

SM4分组密码算法

Informationsecuritytechnology—SM4blockcipheralgorthm

9

GB/T32918.1-2016

SM2椭圆曲线公钥密码算法 

总则

Informationsecuritytechnology—PublickeycryptographicalgorithmSM2basedonellipticcurves—Part1:

General

10

GB/T32919-2016

工业控制系统安全控制应用指南

Informationsecuritytechnology—Applicationguidetoindustrialcontrolsystemsecuritycontrol

国标委综合[2010]87号

11

GB/T32917-2016

WEB应用防火墙安全技术要求与测试评价方法

Informationsecuritytechnology—SecuritytechniquerequirementsandtestingandevaluationapproachesforWEBapplicationfirewall

12

GB/T32918.4-2016

第4部分：

公钥加密算法

Informationsecuritytechnology—PublickeycryptographicalgorithmSM2basedonellipticcurves—Part4:

Publickeyencryptionalgorithm

13

GB/Z32916-2016

信息安全控制措施审核员指南

Informationtechnology—Securitytechniques—Guidelinesforauditorsoninformationsecuritycontrols

14

GB/T22081-2016

信息安全控制实践指南

InformationTechnology—SecurityTechniques—Codeofpracticeforinformationsecuritycontrols

15

GB/T32914-2016

信息安全服务提供方管理要求

Informayionsecuritytechnology—Informationsecurityserviceprovidermanagementrequirements

16

GB/T32923-2016

信息安全治理

Informationtechnology—Securitytechniques—Governanceofinformationsecurity

17

GB/T22080-2016

信息安全管理体系 

要求

Informationtechnolog—Securitytechniques—Informationsecuritymanagementsystems—Requirements

18

GB/T32924-2016

网络安全预警指南

Informationsecuritytechnology—Guidelineforcybersecuritywarning

19

GB/T32915-2016

二元序列随机性检测方法

Informationsecuritytechnology—Randomnesstestmethodsforbinarysequence

20

GB/T32918.3-2016

第3部分：

密钥交换协议

Informationsecuritytechnology—PublickeycryptographicalgorithmSM2basedonellipticcurves—Part3:

Keyexchangeprotocol

21

GB/T32921-2016

信息技术产品供应方行为安全准则

Informationsecuritytechnology—Securitycriteriononsupplierconductofinformationtechnologyproducts

22

GB/T32920-2016

行业间和组织间通信的信息安全管理

Informationtechnology—Securitytechniques—Informationsecuritymanagementforinter-sectorandinter-organizationalcommunications

23

GB/T32918.2-2016

第2部分：

数字签名算法

Informationsecuritytechnology—PublickeycryptographicalgorithmSM2basedonellipticcurves—Part2:

Digitalsignaturealgorithm

24

GB/T32927-2016

移动智能终端安全架构

Informationsecuritytechnology—Securityarchitectureofmobilesmartterminal

25

GB/T32925-2016

政府联网计算机终端安全管理基本要求

Informationsecuritytechnology—Basicsecurityrequirementsfornetworkedcomputerterminalofgovernment

26

GB/T32922-2016

IPSecVPN安全接入基本要求与实施指南

Informationsecuritytechnology—BaselineandimplementationguideofIPSecVPNsecuringaccess

27

GB/T20276-2016

具有中央处理器的IC卡嵌入式软件安全技术要求

28

GB/T32926-2016

政府部门信息技术服务外包信息安全管理规范

Informationsecuritytechnology—Informationsecuritymanagementspecificationforgovernmentinformationtechnologyserviceoutsourcing

29

GB/T30269.601-2016

传感器网络 

第601部分：

信息安全：

通用技术规范

Informationtechnology—Sensornetwork—Part601:

Informationsecuritygeneraltechnicalspecifications

国标委综合[2009]93号

30

GB/T32213-2015

公钥基础设施 

远程口令鉴别与密钥建立规范

Informationsecuritytechnology—Publickeyinfrastructure—Specificationsforremotepasswordauthenticationandkeyestablishment

31

GB/T20279-2015

网络和终端隔离产品安全技术要求

Informationsecuritytechnology—Securitytechnicalrequirementsofnetworkandterminalseparationproducts

32

GB/T31503-2015

电子文档加密与签名消息语法

Informationsecuritytechnology—Encryptionandsignaturemessagesyntaxforelectronicdocument

33

GB/T31509-2015

信息安全风险评估实施指南

Informationsecuritytechnology—Guideofimplementationforinformationsecurityriskassessment

34

GB/T20281-2015

防火墙安全技术要求和测试评价方法

Informationsecuritytechnology—Securitytechnicalrequirementsandtestingandevaluationapproachesforfirewall

35

GB/T31508-2015

数字证书策略分类分级规范

Informationsecuritytechniques—Publickeyinfrastructure—Digitalcertificatepoliciesclassificationandgradingspecification

36

GB/T31495.1-2015

信息安全保障指标体系及评价方法 

概念和模型

Informationsecuritytechnology—Indicatorsystemofinformationsecurityassuranceandevaluationmethods—Part1:

Conceptsandmodel

国标委综合[2009]59号

37

GB/T31500-2015

存储介质数据恢复服务要求

Informationsecuritytechnology—Requirementofdatarecoveryserviceforstoragemedia

38

GB/T31504-2015

鉴别与授权 

数字身份信息服务框架规范

Informationsecuritytechnology—Authenticationandauthorization—Digitalidentityinformationserviceframeworkspecification

39

GB/T31506-2015

政府门户网站系统安全技术指南

Informationsecuritytechnology—Securitytechnologyguidelinesforwebportalsystemofgovernment

40

GB/T31501-2015

授权应用程序判定接口规范

Informationsecuritytechnology—Authenticationandauthorization—Specificationforauthorizationapplicationprogrammingdecisioninterface

41

GB/T31499-2015

统一威胁管理产品技术要求和测试评价方法

Informationsecuritytechnology—Technicalrequirementsandtestingandevaluationapproachesforunifiedthreatmanagementproducts

42

GB/T31507-2015

智能卡通用安全检测指南

Informationsecuritytechnology—Generaltestingguideforsecurityofsmartcard

43

GB/T31495.3-2015

实施指南

Informationsecuritytechnology—Indicatorsystemofinformationsecurityassuranceandevaluationmethods—Part3:

Implementationguide

44

GB/T31497-2015

信息安全管理 

测量

Informationtechnology—Securitytechniques—Informationsecuritymanagement—Measurement

45

GB/T31495.2-2015

指标体系

Informationsecuritytechnology—Indicatorsystemofinformationsecurityassuranceandevaluationmethods—Part2:

Indicatorsystem

46

GB/T31496-2015

信息安全管理体系实施指南

Informationtechnology—Securitytechniques—Informationsecuritymanagementsystemimplementationguidance

47

GB/T31505-2015

主机型防火墙安全技术要求和测试评价方法

Informationsecuritytechnology—Techniquerequirementsandtestingandevaluationapproachesforhost-basedfirewallandpersonalfirewall

48

GB/T31502-2015

电子支付系统安全保护框架

Informationsecuritytechnology―Securityprotectframeworkofelectronicpaymentsystem

49

GB/T20277-2015

网络和终端隔离产品测试评价方法

Informationsecuritytechnology—Testingandevaluationapproachesofnetworkandterminalseparationproducts

50

GB/T31722-2015

信息安全风险管理

Informationtechnology—Securitytechniques—Informationsecurityriskmanagement

51

GB/T20275-2013

网络入侵检测系统技术要求和测试评价方法

Informationsecuritytechnology—Technicalrequirementsandtestingandevaluationapproachesfornetwork-basedintrusiondetectionsystem

2013年第27号公告

52

GB/T30976.1-2014

工业控制系统信息安全 

评估规范

Industrialcontrolsystemsecurity―Part1:

Assessmentspecification

2014年第19号公告

53

GB/T29765-2013

数据备份与恢复产品技术要求与测试评价方法

Informationsecuritytechnology-Technicalrequirementsandtestingandevaluatingmethodfordatabackupandrecoveryproducts

2013年第18号公告

54

GB/T30271-2013

信息安全服务能力评估准则

Informationsecuritytechnology—Assessmentcriteriaforinformationsecurityservicecapability

55

GB/T29244-2012

办公设备基本安全要求

Informationsecuritytechnology-Basicsecurityrequirementsforofficedevices

2012年第41号公告

56

GB/T24363-2009

信息安全应急响应计划规范

Informationsecuritytechnology-Specificationsofemergencyresponseplanforinformationsecurity

2009-12-01实施

57

GB/Z20985-2007

信息安全事件管理指南

Informationtechnology-Securitytechniques-Informationsecurityincidentmanagementguide

2007-11-01实施

58

GB/T31168-2014

云计算服务安全能力要求

Informationsecuritytechnology―Securitycapabilityrequirementsofcloudcomputingservices

2014年第21号公告

59

GB/T31167-2014

云计算服务安全指南

Informationsecuritytechnology―Securityguideofcloudcomputingservices

60

GB/T30274-2013

电子签名卡应用接口测试规范

Informationsecuritytechniques—PublicKeyInfrastructure―Specificationoftestingonapplicationinterfacesofelectronicsignaturecard

61

GB/T30976.2-2014

验收规范

Industrialcontrolsystemsecurity―Part2:

Acceptancespecification

62

GB/T30285-2013

灾难恢复中心建设与运维管理规范

Informationsecuritytechnology—Constructionandsustainmanagementspecificationsofdisasterrecoverycenter

63

GB/T30283-2013

信息安全服务 

分类

Info