浅谈保密网中“三员”的工作

Discussion on the Confidential Network Management of "SAN-YUAN"

分析了保密网中系统管理员、安全保密管理员和安全审计管理员(简称为"三员")的工作职责,将"三员"的工作分为保密政策法规和标准学习,信息系统日常安全保密管理和协助开展安全保密教育宣传三部分。重点分析了"三员"进行日常保密管理需要做的工作,将信息系统的保密管理对象分为计算机类、服务器类、网络设备、安全保密产品、应用系统、数据库、通信与办公自动化设备等7类,并列举出每类设备的保密管理要点,详细分析了身份鉴别这一点应该如何实现。可为单位信息系统日常保密工作的开展提供技术指导。

The responsibility of system administrator, security administrator and security audit manager（referred as SAN-YUAN） for the confidential network was analyzed. The responsibility of SAN-YUAN includes： study of confidentiality policies and standards, daily security management of IT system, security and confidential knowledge education（assistant）. The daily security management is the key point. The security management object of IT system is divided into 7 categories： computer, server, network equipment, security products, application system, database, communication and OA equipments. the key management points of each kind of equipment was enumerated. The implementation methods for identity authentication are introduced explicitly. This paper can be a technical guidance of daily security and confidential management job.