GB/T 31500-2024 English PDFUS$509.00 · In stock
Delivery: <= 4 days. True-PDF full-copy in English will be manually translated and delivered via email. GB/T 31500-2024: Cybersecurity technology - Security specification of data recovery service for storage media Status: Valid GB/T 31500: Historical versions
Basic dataStandard ID: GB/T 31500-2024 (GB/T31500-2024)Description (Translated English): Cybersecurity technology - Security specification of data recovery service for storage media Sector / Industry: National Standard (Recommended) Classification of Chinese Standard: L80 Classification of International Standard: 35.030 Word Count Estimation: 25,235 Date of Issue: 2024-10-26 Date of Implementation: 2025-05-01 Older Standard (superseded by this standard): GB/T 31500-2015 Issuing agency(ies): State Administration for Market Regulation, China National Standardization Administration GB/T 31500-2024: Cybersecurity technology - Security specification of data recovery service for storage media---This is an excerpt. Full copy of true-PDF in English version (including equations, symbols, images, flow-chart, tables, and figures etc.), auto-downloaded/delivered in 9 seconds, can be purchased online: https://www.ChineseStandard.net/PDF.aspx/GBT31500-2024 ICS 35.030 CCSL80 National Standard of the People's Republic of China Replaces GB/T 31500-2015 Network security technology storage media data recovery service Safety regulations storagemedia Released on October 26, 2024 Implementation on May 1, 2025 State Administration for Market Regulation The National Standardization Administration issued Table of ContentsPreface III 1 Scope 1 2 Normative references 1 3 Terms and Definitions 1 4 Principle 2 5 General Requirements 3 6 Safety Management Requirements 3 6.1 Institution 3 6.2 Personnel 3 6.3 Environment 4 6.4 Quality Control 5 6.5 Security Audit 6 7 Security Implementation Requirements 6 7.1 Overview 6 7.2 Media Reception 6 7.3 Media Detection 7 7.4 Data Recovery 7 7.5 Data Delivery 8 7.6 Data Destruction 8 8 Safety Management Evaluation Methods 8 8.1 Organization 8 8.2 Personnel 9 8.3 Environment 10 8.4 Quality Control 13 8.5 Security Audit 14 9 Safety Implementation Evaluation Methods 15 9.1 Media Reception 15 9.2 Media Detection 15 9.3 Data Recovery 16 9.4 Data Delivery 16 9.5 Data Destruction 17 Appendix A (Normative) Basic Configuration Requirements for Software and Hardware Tools for Data Recovery Services 18 Appendix B (Informative) Data Recovery Service Agreement Template 19 Reference 20 Preface This document is in accordance with the provisions of GB/T 1.1-2020 "Guidelines for standardization work Part 1.Structure and drafting rules for standardization documents" Drafting. This document replaces GB/T 31500-2015 "Information Security Technology Storage Media Data Recovery Service Requirements" and GB/T 31500- Compared with.2015, in addition to structural adjustments and editorial changes, the main technical changes are as follows. a) The scope of application of the document has been changed (see Chapter 1, Chapter 1 of the.2015 edition); b) Added terms and definitions such as “logical failure”, “mirror data”, and “data recovery service”, and changed the terms and definitions of “storage media”. righteousness (see Chapter 3); c) The relevant requirements of the “confidentiality principle” have been changed, and the “compliance principle” and “grading principle” clauses have been added (see Chapter 4,.2015 Edition). Chapter 4 of); d) Added general requirements (see Chapter 5); e) The requirements for practitioners have been changed, further divided into two categories, and the clauses have been refined accordingly (see 6.1,.2015 edition). 5.1); f) Changed the requirements for practitioners, further divided the requirements into two categories, and detailed the clauses accordingly (see 6.2,.2015 edition) 5.2); g) Changed the relevant requirements of "Environment" and detailed the relevant provisions of service places, facilities and equipment, and storage media (see 6.3,.2015 Versions 5.3, 5.4, 7.3, and 7.4); h) Added "quality control" requirements (see 6.4); i) Added "Safety Audit" requirements (see 6.5); j) Changed the relevant requirements of “Security Implementation Requirements” and changed “Service Process Requirements” to “Security Implementation Requirements” (see Chapter 7,.2015 Chapter 6 of the.2001 edition); k) Added "Safety Management Evaluation Method" to describe the evaluation method of safety management requirements in Chapter 6 (see Chapter 8); l) Added "Safety Implementation Evaluation Method" to describe the evaluation method for the safety implementation requirements in Chapter 7 (see Chapter 9); m) Added Normative Appendix A (see Appendix A). Please note that some of the contents of this document may involve patents. The issuing organization of this document does not assume the responsibility for identifying patents. This document is proposed and coordinated by the National Cybersecurity Standardization Technical Committee (SAC/TC260). This document was drafted by. National Information Center, Lenovo (Beijing) Co., Ltd., Institute of Information Engineering, Chinese Academy of Sciences, Forensic Science Research Institute, China Electronics Technology Standardization Institute, China Electronics Great Wall Internet System Application Co., Ltd., Beijing Yuanbao Technology Co., Ltd., Yunlingxin Information Technology (Tianjin) Co., Ltd. The main drafters of this document are. Wang Xiaoqiang, Wang Jiahui, Wei Lian, Zhang Yu, Zhu Xuefeng, Li Ruxin, Feng Weimiao, Guo Hong, Min Jinghua, Gao Yanan, Li Ran, Zhao Xiaole, Wang Xiaozhen, Liang Lulu, Mi Baoxin, Liu Yiran, Wang Qingde, Yang Shaoliang, Li Yan, Zhao Zhen, Jia Chenggang, and Liu Jun. The previous versions of this document and the documents it replaces are as follows. ---First published in.2015 as GB/T 31500-2015; ---This is the first revision. Network security technology storage media data recovery service Safety regulations 1 Scope This document establishes the security principles of storage media data recovery services, stipulates security management requirements and security implementation requirements, and describes the requirements for Evaluation methods for meeting safety management requirements and safety implementation requirements. This document is intended to guide storage media data recovery service agencies in the implementation and management of data recovery services that do not involve state secrets. Self-evaluation and third-party supervision and review of data recovery service agencies for storage and storage media, as well as procurement of data recovery services by storage service users evaluation. 2 Normative references The contents of the following documents constitute the essential clauses of this document through normative references in this document. For referenced documents without a date, only the version corresponding to that date applies to this document; for referenced documents without a date, the latest version (including all amendments) applies to This document. GB/T 25069-2022 Information Security Technical Terminology GB/T 42446-2023 Information security technology - General requirements for the competence of network security practitioners GB 50073 Cleanroom Design Specifications GB 50174 Data Center Design Specification 3 Terms and Definitions The terms and definitions defined in GB/T 25069-2022 and the following apply to this document. 3.1 electronic data Objective data formed by electronic technology such as computer application and communication, used to represent text, graphic symbols, multimedia, etc. information. Note. Electronic data includes static data and dynamic data stored, processed or transmitted in electronic form. 3.2 storage medium storagemedium Storage Media Various media or devices that carry electronic data (3.1), including but not limited to computer hard disks, tapes, floppy disks, CDs, various forms of storage media, Memory cards, memory chips, etc. [Source. GB/T 25069-2022, 3.94, modified] 3.3 data recovery Regenerate (restore) lost or damaged electronic data in storage media (3.2) through specialized computer software and hardware technology (3.1) process. ......Tips & Frequently Asked Questions:Question 1: How long will the true-PDF of GB/T 31500-2024_English be delivered?Answer: Upon your order, we will start to translate GB/T 31500-2024_English as soon as possible, and keep you informed of the progress. The lead time is typically 2 ~ 4 working days. The lengthier the document the longer the lead time.Question 2: Can I share the purchased PDF of GB/T 31500-2024_English with my colleagues?Answer: Yes. The purchased PDF of GB/T 31500-2024_English will be deemed to be sold to your employer/organization who actually pays for it, including your colleagues and your employer's intranet.Question 3: Does the price include tax/VAT?Answer: Yes. Our tax invoice, downloaded/delivered in 9 seconds, includes all tax/VAT and complies with 100+ countries' tax regulations (tax exempted in 100+ countries) -- See Avoidance of Double Taxation Agreements (DTAs): List of DTAs signed between Singapore and 100+ countriesQuestion 4: Do you accept my currency other than USD?Answer: Yes. If you need your currency to be printed on the invoice, please write an email to Sales@ChineseStandard.net. In 2 working-hours, we will create a special link for you to pay in any currencies. Otherwise, follow the normal steps: Add to Cart -- Checkout -- Select your currency to pay.Question 5: Should I purchase the latest version GB/T 31500-2024?Answer: Yes. Unless special scenarios such as technical constraints or academic study, you should always prioritize to purchase the latest version GB/T 31500-2024 even if the enforcement date is in future. Complying with the latest version means that, by default, it also complies with all the earlier versions, technically. |
