Home Cart Quotation About-Us
www.ChineseStandard.net
SEARCH

GA 1277.7-2023 English PDF

Q: How long will the true-PDF of English version of GA 1277.7-2023 be delivered?

Upon your order, we will start to translate GA 1277.7-2023_English as soon as possible, and keep you informed of the progress. The lead time is typically 1 ~ 3 working days. The lengthier the document the longer the lead time.

Q: Can I share the purchased PDF of GA 1277.7-2023_English with my colleagues?

Yes. The purchased PDF of GA 1277.7-2023_English will be deemed to be sold to your employer/organization who actually pays for it, including your colleagues and your employer's intranet.

Q: Does the price include tax/VAT?

Yes. Our tax invoice, downloaded/delivered in 9 seconds, includes all tax/VAT and complies with 100+ countries' tax regulations (tax exempted in 100+ countries). Avoidance of Double Taxation Agreements (DTAs) between Singapore and 100+ Countries: https://www.iras.gov.sg/taxes/international-tax

Q: Do you accept my currency other than USD?

Yes. If you need your currency to be printed on the invoice, please write an email to Sales@ChineseStandard.net. In 2 working-hours, we will create a special link for you to pay in any currencies. Otherwise, follow the normal steps: Add to Cart -- Checkout -- Select your currency to pay.

US$259.00 · In stock
Delivery: <= 3 days. True-PDF full-copy in English will be manually translated and delivered via email.
GA 1277.7-2023: Security management requirements for internet interactive service - Part 7: Cloud service
Status: Valid

Standard ID	USD	BUY PDF	Lead-Days	Standard Title (Description)	Status
GA 1277.7-2023	259	Add to Cart	3 days	Security management requirements for internet interactive service - Part 7: Cloud service	Valid

Similar standards

GB/T 37230 GA/T 1255 GB 13954 GA 1277.11 GA 1277.6 GA 1277.10

Basic data

Standard ID: GA 1277.7-2023 (GA1277.7-2023)
Description (Translated English): Security management requirements for internet interactive service - Part 7: Cloud service
Sector / Industry: Public Security (Police) Industry Standard
Classification of Chinese Standard: A90
Classification of International Standard: 35.240
Word Count Estimation: 11,133
Date of Issue: 2023-01-11
Date of Implementation: 2023-03-01
Issuing agency(ies): Ministry of Public Security
Summary: This standard specifies cloud service security management requirements. This standard applies to Internet interactive service providers implementing cloud service security protection management systems and security protection technical measures.

GA 1277.7-2023: Security management requirements for internet interactive service - Part 7: Cloud service

---This is a DRAFT version for illustration, not a final translation. Full copy of true-PDF in English version (including equations, symbols, images, flow-chart, tables, and figures etc.) will be manually/carefully translated upon your order.
ICS35:240 CCSA90 People's Republic of China Public Security Industry Standards Internet interactive service security management requirements Part 7: Cloud Services Part 7: Cloud service Released 2023-01-11 2023-03-01 Implementation Released by the Ministry of Public Security of the People's Republic of China

Preface I Introduction II 1 Scope 1 2 Normative references 1 3 Terms and Definitions 1 4 Safety Management System 2 5 Organization 2 6 Personnel Safety Management 2 7 Access Control Management 2 7:1 Basic requirements 2 7:2 Authority Assignment 2 7:3 Special permissions 2 7:4 Permission check 2 8 Safety technical measures 3 8:1 Network and system operation security 3 8:2 Cloud Computing Platform Security 3 8:3 Data security and backup 3 8:4 Security Audit 3 9 Cloud Service Operation Security 4 9:1 Basic requirements 4 9:2 Customer Service Agreement 5 9:3 Customer management measures 5 9:4 Prevention and disposal of illegal and harmful information 5 9:5 Protection against destructive programs 5 10 Personal Information Protection 5 11 Complaints 5 12 Subcontracting Services 6 13 Security Incident Management 6

foreword

This document is in accordance with the provisions of GB/T 1:1-2020 "Guidelines for Standardization Work Part 1: Structure and Drafting Rules for Standardization Documents" drafting: This document is Part 7 of GA 1277 "Internet Interactive Service Security Management Requirements": GA 1277 has released the following parts: --- Part 1: Basic requirements; --- Part 2: Microblog service; --- Part 3: Audio and video chat room services; --- Part 4: Instant messaging service; --- Part 5: Forum services; --- Part 6: Mobile application software distribution service; --- Part 7: Cloud services; --- Part 8: E-commerce services; --- Part 9: Search service: Please note that some contents of this document may refer to patents: The issuing agency of this document assumes no responsibility for identifying patents: This document was proposed by the Cyber Security Bureau of the Ministry of Public Security: This document is under the jurisdiction of the Information System Security Standardization Technical Committee of the Ministry of Public Security: This document was drafted by: Network Security Bureau of the Ministry of Public Security, the Third Research Institute of the Ministry of Public Security, and Network Security Security of Wenzhou Public Security Bureau, Zhejiang Province Detachment, Beijing Network Industry Association, Alibaba Cloud Computing Co:, Ltd:, Huawei Cloud Computing Technology Co:, Ltd: The main drafters of this document: Chen Feiyan, Zhao Yunxia, Chen Yan, Zhang Huadong, Gao Shuang, Chang Yuanyuan, Song Shiqin, Zhang Zhiheng, Cai Yaokuo, Zhu Song, Yang Hongyu:

Introduction

GA 1277 aims to regulate and guide Internet interactive service providers to implement the "Network Security Law of the People's Republic of China" and "Chinese People's According to laws and regulations such as the Data Security Law of the People's Republic of China and the Personal Information Protection Law of the People's Republic of China, the security management system and security Technical measures, etc:, are proposed to be composed of 11 parts: --- Part 1: Basic requirements: The purpose is to specify the basic requirements for the security management of Internet interactive services: --- Part 2: Microblogging service: The purpose is to standardize and clarify the microblog service security management requirements: --- Part 3: Audio and video chat room services: The purpose is to standardize and clarify the security management requirements for audio and video chat room services: --- Part 4: Instant Messaging Services: The purpose is to standardize and clarify the security management requirements of instant messaging services: --- Part 5: Forum services: The purpose is to standardize and clarify the safety management requirements of forum services: --- Part 6: Mobile application software distribution services: The purpose is to standardize and clarify the security management requirements of mobile application software distribution services: --- Part 7: Cloud services: The purpose is to standardize and clarify cloud computing platform service security management requirements: --- Part 8: E-commerce services: The purpose is to standardize and clarify e-commerce service security management requirements: --- Part 9: Search service: The purpose is to standardize and clarify the search service security management requirements: --- Part 10: Internet car-hailing service: The purpose is to standardize and clarify the safety management requirements for Internet car-hailing services: --- Part 11: Internet short-term rental housing information service: The purpose is to standardize and clarify the security management of Internet short-term rental housing information services Require: In order to strengthen the security management of cloud services and strengthen the implementation of the responsibility of the security subject of the cloud computing platform, this document proposes its implementation in combination with the characteristics of cloud services: Specific requirements for safety protection management system and safety protection technical measures: Internet interactive service security management requirements Part 7: Cloud Services

1 Scope

This document specifies cloud service security management requirements: This document applies to Internet interactive service providers implementing cloud service security protection management systems and security protection technical measures:

2 Normative references

The contents of the following documents constitute the essential provisions of this document through normative references in the text: Among them, dated references For documents, only the version corresponding to the date is applicable to this document; for undated reference documents, the latest version (including all amendments) is applicable to this document: GB/T 20985:1 Information Technology Security Technology Information Security Incident Management Part 1: Principles of Incident Management GB/Z 20986 Guidelines for classification and grading of information security technology and information security incidents GB/T 22239-2019 Basic Requirements for Network Security Level Protection of Information Security Technology GB/T 35273 Personal Information Security Specifications for Information Security Technology GA 1277:1-2020 Internet Interactive Service Security Management Requirements Part 1: Basic Requirements GA 1278 Basic Procedures and Requirements for Internet Service Security Assessment of Information Security Technology

3 Terms and Definitions

The following terms and Definitions apply to this document: 3:1 cloud computing cloudcomputing Access scalable and flexible physical or virtual shared resource pools through the network, and self-service acquisition and management of resources on demand: Note: Examples of resources include servers, operating systems, networks, software, applications and storage devices, etc: [Source: GB/T 31168-2014, 3:1] 3:2 The ability to provide one or more resources with the help of cloud computing using defined interfaces: [Source: GB/T 31168-2014, 3:2] 3:3 cloud service provider cloudserviceprovider Provider of cloud computing services: Note: The cloud service provider manages, operates, and supports cloud computing computing infrastructure and software, and pays for cloud computing resources through the network: [Source: GB/T 31168-2014, 3:3] ......

Image

Tips & Frequently Asked Questions:

Question 1: How long will the true-PDF of GA 1277.7-2023_English be delivered?

Answer: Upon your order, we will start to translate GA 1277.7-2023_English as soon as possible, and keep you informed of the progress. The lead time is typically 1 ~ 3 working days. The lengthier the document the longer the lead time.

Question 2: Can I share the purchased PDF of GA 1277.7-2023_English with my colleagues?

Answer: Yes. The purchased PDF of GA 1277.7-2023_English will be deemed to be sold to your employer/organization who actually pays for it, including your colleagues and your employer's intranet.

Question 3: Does the price include tax/VAT?

Answer: Yes. Our tax invoice, downloaded/delivered in 9 seconds, includes all tax/VAT and complies with 100+ countries' tax regulations (tax exempted in 100+ countries) -- See Avoidance of Double Taxation Agreements (DTAs): List of DTAs signed between Singapore and 100+ countries

Question 4: Do you accept my currency other than USD?

Answer: Yes. If you need your currency to be printed on the invoice, please write an email to Sales@ChineseStandard.net. In 2 working-hours, we will create a special link for you to pay in any currencies. Otherwise, follow the normal steps: Add to Cart -- Checkout -- Select your currency to pay.