摘要
当前,随着移动互联网技术的高速发展,支付网络作为金融信息化的重要组成部分,正在朝着更加开放、更加多元化的方向发展,对信息技术的依赖性在日益加强.保障网络安全、防范系统性金融风险已经成为国家要求和支付网络的迫切需求.首先介绍了开放式电子支付网络环境下信息安全管理的现状和面临的挑战,分析了信息安全管理的相关标准,最后从笔者所在企业的实践出发,着重介绍了开放式支付网络环境下信息安全管理体系的实践,从而探索研究信息安全管理体系的创新与突破.
At present, with the rapid development of mobile Internet technology, payment network,as an important part of financial informationization, is developing towards more open and diversified, and becoming increasingly dependent on information technology. Safeguarding network security and preventing systemic financial risks have become an urgent need for national requirements and payment networks. Firstly, this paper introduces the status and challenges of information security management in an open electronic payment network environmentthen,we analyze the relevant standards of information security management. Finally,we focus on the information security in the open payment network environment from the practice of the author's enterprise, in order to explore innovations and breakthroughs in information security management systems.
作者
赵海
陈芳
Zhao Hai;Chen Fang(Jilin Branch,China UnionPay,Changchun 130033;Department of Technology,China UnionPay,Shanghai 200135)
出处
《信息安全研究》
2019年第6期534-541,共8页
Journal of Information Security Research
关键词
电子支付
信息安全
安全管理体系
风险评估
安全度量
electronic payment
information security
security management system
risk assessment
securitymetrics