电子政务外网等级保护测评探讨

Classified Protection Evaluation Investigation of E-government Extranet

信息系统等级保护制度是我国加强信息系统安全防护的重要措施,电子政务外网运行着电子政务的公共服务业务,开展等级保护与等级保护测评非常必要,政务外网[2011]15号文要求开展电子政务外网的等级保护与等级保护测评工作。该文就政务外网某网络系统开展等级保护测评为例,探讨等级保护的定级、测评对象与测评机构的选择、测评内容与方法的确定、骨干网络系统的漏洞测试、安全整改等内容。本次测评在属地电子政务行业产生了良好的示范效应。

The classified protection system of information system is import to information system protection. E-government public service is operated on Yunnan E-government extranet, to carry out classified protection evaluation is essential. Based on a classified protection evaluation, grade determination, the selection of evaluation targe and evaluation organization, evaluation content and method definition, vulnerability detection of backbone network, security rectification, and so on are investigated. This assessment produce demonstration effect.