摘要
关键信息基础设施作为承载国家重要领域信息传递的载体,其安全关乎国计民生、公共利益和国家安全。近年随着《中华人民共和国网络安全法》《关键信息基础设施安全保护条例》(以下简称“关保”)等政策制度相继出台,关键信息基础设施网络安全已上升成为国家战略,引起社会广泛关注。因此,认清关键信息基础设施现实风险,设计基于态势感知的技术体系、建立合规的制度体系、构建权责分明的组织体系,实现人、技术、制度的有机结合,提升网络安全运营能力,对确保关键信息基础设施安全具有重要现实意义。
As the carrier of carrying information transmission in important national field,the security of critical information infrastructure is related to the national economy and people′s livelihood,public interests and national security.In recent years,with the promulgation of the Network Security Law,the Regulations on the Security Protection of Critical Information Infrastructure and other policies and systems,network security of critical information infrastructure has risen to become a national strategy,which has aroused widespread concern in the society.Therefore,it is of great practical significance to recognize the real risks of critical information infrastructure,design a technology system based on situation awareness,establish a compliant system,and build an organizational system with clear responsibilities,so as to achieve the organic combination of people,technology,and systems,and thus improve the network security operation capability to ensure the security of critical information infrastructure.
作者
袁国伟
Yuan Guowei(School of Information and Communication,National University of Defense Technology,Wuhan 430014,China)
出处
《网络安全与数据治理》
2022年第12期34-39,共6页
CYBER SECURITY AND DATA GOVERNANCE
关键词
关键信息基础设施
网络安全运营
技术体系
制度体系
critical information infrastructure
network security operation
technical system
institutional system
