摘要
基于我国自主研究制定的GB/T 37988-2019《信息安全技术数据安全能力成熟度模型》,提出ISO/IEC PWI 27045《信息技术大数据安全与隐私保护数据安全管理框架》,通过定义数据生命周期各阶段的安全管理措施,帮助大数据的参与组织建立自身的数据安全管理体系。并介绍该研究背景和下一步计划等。
Based on the Chinese national standard"Data security capability maturity model"which was defined in TC260,this paper puts forward"Big data security and privacy–data security management framework".The research aims to define the security management measures at each stage of the data lifecycle,to help big data organizations establish their data security management system;and then,the compilation background,technical content and the next work plan of the research introduced.
出处
《信息技术与标准化》
2021年第8期33-35,47,共4页
Information Technology & Standardization
关键词
大数据安全
安全与隐私
数据安全管理
安全标准
big data security
security and privacy
data security management
security standard
