摘要
信息安全是一个综合性工程,既要强调对抗风险的抵御能力,又要有破坏发生后的恢复能力,构建以物理环境、通信与操作、访问控制、信息系统开发与维护为框架的策略集合是安全防御的常态技术环境。此外,移动应用的迅猛发展为安全防御带来了新挑战,访问控制、数据安全及应用软件安全是移动环境的关键性问题。在高校信息安全建设实践中,安全等级保护的国家标准是标尺和指导。
The information security is a comprehensive project,which involves both defensive qualities to the risks and restorability after the damages. The usual technological environment of defense securities covers a series of strategies,including the physical environment,transmission and operations,control accessing,information system development and maintenance. Besides,the dramatically rapid development in the mobile application emerges big novel challenges of the security defense process. Its critical fields consists of the access control,the data safeties and the applications securities. In the course of the information securities practice in the universities,the national standard,the baseline for classified protection of information system security,is a measuring scale and guidance.
出处
《北京联合大学学报》
CAS
2014年第3期63-66,共4页
Journal of Beijing Union University
关键词
信息安全
防御体系
等级保护
Information security
Defense system
Classified security protection
