GB/T 39276-2020 English PDFUS$189.00 · In stock
Delivery: <= 3 days. True-PDF full-copy in English will be manually translated and delivered via email. GB/T 39276-2020: Information security technology - General security requirements of network products and services Status: Valid
Basic dataStandard ID: GB/T 39276-2020 (GB/T39276-2020)Description (Translated English): Information security technology - General security requirements of network products and services Sector / Industry: National Standard (Recommended) Classification of Chinese Standard: L80 Classification of International Standard: 35.040 Word Count Estimation: 10,176 Date of Issue: 2020-11-19 Date of Implementation: 2021-06-01 Regulation (derived from): National Standard Announcement No. 26 of 2020 Issuing agency(ies): State Administration for Market Regulation, China National Standardization Administration GB/T 39276-2020: Information security technology - General security requirements of network products and services---This is a DRAFT version for illustration, not a final translation. Full copy of true-PDF in English version (including equations, symbols, images, flow-chart, tables, and figures etc.) will be manually/carefully translated upon your order. Information security technology-General security requirements of network products and services ICS 35.040 L80 National Standards of People's Republic of China Information Security Technology General requirements for network product and service security 2020-11-19 released 2021-06-01 implementation State Administration for Market Regulation Issued by the National Standardization Management Committee Table of contentsForeword Ⅰ 1 Scope 1 2 Normative references 1 3 Terms and definitions 1 4 Overview 2 5 General requirements for safety 2 5.1 General requirements for basic safety 2 5.2 General requirements for enhanced safety 4 Reference 7ForewordThis standard was drafted in accordance with the rules given in GB/T 1.1-2009. Please note that certain contents of this document may involve patents. The issuing agency of this document is not responsible for identifying these patents. This standard was proposed and managed by the National Information Security Standardization Technical Committee (SAC/TC260). Drafting organizations of this standard. China Electronics Standardization Research Institute, Beijing Saixi Technology Development Co., Ltd., Ministry of Public Security Third Research Institute, China Information Security Evaluation Center, China Cyber Security Review Technology and Certification Center, National Information Technology Security Research Center, China Electronics Institute of Information Industry Development, Institute of Information Engineering, Chinese Academy of Sciences, China Academy of Information and Communications Technology, National Information Center, National Computer Network Network and Information Security Management Center, China Power Data Service Co., Ltd., China Software Evaluation Center, the Fifth Institute of Electronics of the Ministry of Industry and Information Technology, The 15th Research Institute of China Electronics Technology Group Corporation, the Software Research Institute of the Chinese Academy of Sciences, the First Research Institute of the Ministry of Public Security, Alibaba (Beijing) Software Software Service Co., Ltd., Lenovo (Beijing) Co., Ltd., Alibaba Cloud Computing Co., Ltd., Inspur Electronic Information Industry Co., Ltd., Beijing Tian Rongxin Network Security Technology Co., Ltd., Huawei Technologies Co., Ltd., Venus Star Information Technology Group Co., Ltd., China Electric Power Science Research Institute Co., Ltd., Beijing Shenzhou NSFOCUS Technology Co., Ltd., Shenzhen Tencent Computer System Co., Ltd., Beijing Qihoo Technology Co., Ltd. Company, Beijing Winut Technology Co., Ltd., Valley Network Security Technology Co., Ltd., National Application Software Product Quality Supervision and Inspection Center, Xinhua Three Technologies Co., Ltd., Zhejiang Ant Small and Micro Financial Services Group Co., Ltd., Sangfor Technology Co., Ltd., Siemens (China) Co., Ltd., Qi'anxin Technology Group Co., Ltd. The main drafters of this standard. Liu Xiangang, Li Jingchun, Gu Jian, Li Bin, Li Song, Ye Runguo, Sun Yan, Xie Anming, Hu Ying, Wang Chuang, Xu Dongyang, Gao Jinping, Song Haohao, Zhou Kaibo, Shu Min, Wu Di, Liu Bei, He Yanzhe, Fang Jinshe, Cui Ningning, Zhou Yachao, Zhang Baofeng, Buning, Ren Zejun, Shen Yongbo, Li Ruxin, Fan Dongyang, Lei Xiaofeng, Bao Xuhua, Cheng Guangming, Guo Yongzhen, Bai Xiaoyuan, Zhao Jiang, Du Xiaoli, Shi Gang, Han Yu, Dong Jingjing, Liu Yuling, Li Ling, Li Na, Yan Yan, Xu Yuqing, Zhang Yi, Jiao Yufeng, Dai Wei, Shi Lingzhi, Zhong Jianwei, Yao Jinlong, Song Zheng, Yan Tao, Guo Xu, Wang Hui. Information Security Technology General requirements for network product and service security1 ScopeThis standard specifies the general security requirements that network products and services should meet, including security function requirements and security assurance requirements. This standard applies to network product and service providers for the security design, security implementation and safe operation of network products and services, and it can also be Used to guide third-party evaluation agencies to conduct security evaluations on network products and services.2 Normative referencesThe following documents are indispensable for the application of this document. For dated reference documents, only the dated version applies to this article Pieces. For undated references, the latest version (including all amendments) applies to this document. GB/T 25069 Information Security Technical Terms3 Terms and definitionsThe following terms and definitions defined in GB/T 25069 apply to this document. 3.1 The internet It is composed of computers or other information terminals and related equipment to collect, store, transmit, and transmit information according to certain rules and procedures. Exchange and processing system. 3.2 Internet product As a part of the network and the hardware, software, or system that realizes network functions, it implements the collection and collection of information in accordance with certain rules and procedures. Storage, transmission, exchange and processing. Note. Network products include computers, communication equipment, information terminals, industrial control network equipment, system software and application software, etc. 3.3 User Info Information related to individuals, legal persons or other organizations, as well as data defining and describing such information. Note. User information includes personal information, user-generated documents, programs, multimedia materials, user communication content, address, time, product configuration, operation and Location data, logs generated during system operation, etc. 3.4 Malicious program Programs used to implement network attacks, interfere with the normal use of networks and information systems, destroy networks and information systems, and steal network and system data. Note. Malicious programs mainly include viruses, worms, Trojan horses, and other programs that affect the security and stable operation of the host, network or system. 3.5 Security flaw Introduced by problems in the stages of design, development, configuration, production, operation and maintenance, the weaknesses that may affect the security of network products and services. ......Tips & Frequently Asked Questions:Question 1: How long will the true-PDF of GB/T 39276-2020_English be delivered?Answer: Upon your order, we will start to translate GB/T 39276-2020_English as soon as possible, and keep you informed of the progress. The lead time is typically 1 ~ 3 working days. The lengthier the document the longer the lead time.Question 2: Can I share the purchased PDF of GB/T 39276-2020_English with my colleagues?Answer: Yes. The purchased PDF of GB/T 39276-2020_English will be deemed to be sold to your employer/organization who actually pays for it, including your colleagues and your employer's intranet.Question 3: Does the price include tax/VAT?Answer: Yes. Our tax invoice, downloaded/delivered in 9 seconds, includes all tax/VAT and complies with 100+ countries' tax regulations (tax exempted in 100+ countries) -- See Avoidance of Double Taxation Agreements (DTAs): List of DTAs signed between Singapore and 100+ countriesQuestion 4: Do you accept my currency other than USD?Answer: Yes. If you need your currency to be printed on the invoice, please write an email to Sales@ChineseStandard.net. In 2 working-hours, we will create a special link for you to pay in any currencies. Otherwise, follow the normal steps: Add to Cart -- Checkout -- Select your currency to pay. |
