【英文标准名称】:Informationtechnology—Securitytechniques—Networksecurity—Part3:Referencenetworkingscenarios—Threats,designtechniquesandcontrolissues
【原文标准名称】:信息技术.安全技术.网络安全.第3部分:参考网络方案.威胁,设计技术与控制问题
【标准号】:ISO/IEC27033-3-2010
【标准状态】:现行
【国别】:国际
【发布日期】:2010-12-15
【实施或试行日期】:2010-12-15
【发布单位】:国际标准化组织(IX-ISO)
【起草单位】:ISO/IECJTC1
【标准类型】:()
【标准水平】:()
【中文主题词】:
【英文主题词】:Access;Circuitnetworks;Communicationtechnology;Dataprocessing;Dataprotection;Datasecurity;Datatransfer;Definitions;Informationinterchange;Informationprocessing;Informationtechnology;Integrity;ITsecurity;LAN;Management;Networking;Safety;Teleprocessing;Terminaldevices
【摘要】:ThispartofISO/IEC27033describesthethreats,designtechniquesandcontrolissuesassociatedwithreferencenetworkscenarios.Foreachscenario,itprovidesdetailedguidanceonthesecuritythreatsandthesecuritydesigntechniquesandcontrolsrequiredtomitigatetheassociatedrisks.Whererelevant,itincludesreferencestoISO/IEC27033-4toISO/IEC27033-6toavoidduplicatingthecontentofthosedocuments.TheinformationinthispartofISO/IEC27033isforusewhenreviewingtechnicalsecurityarchitecture/designoptionsandwhenselectinganddocumentingthepreferredtechnicalsecurityarchitecture/designandrelatedsecuritycontrols,inaccordancewithISO/IEC27033-2.Theparticularinformationselected(togetherwithinformationselectedfromISO/IEC27033-4toISO/IEC27033-6)willdependonthecharacteristicsofthenetworkenvironmentunderreview,i.e.theparticularnetworkscenario(s)and‘technology’topic(s)concerned.Overall,thispartofISO/IEC27033willaidconsiderablythecomprehensivedefinitionandimplementationofsecurityforanyorganization'snetworkenvironment.
【中国标准分类号】:
【国际标准分类号】:35_040
【页数】:36P.;A4
【正文语种】:英语