GB/T 40652-2021 English PDFUS$519.00 · In stock
Delivery: <= 5 days. True-PDF full-copy in English will be manually translated and delivered via email. GB/T 40652-2021: Information security technology - Guide to malware incident prevention and handling Status: Valid
Basic dataStandard ID: GB/T 40652-2021 (GB/T40652-2021)Description (Translated English): Information security technology - Guide to malware incident prevention and handling Sector / Industry: National Standard (Recommended) Classification of Chinese Standard: L80 Word Count Estimation: 26,229 Issuing agency(ies): State Administration for Market Regulation, China National Standardization Administration GB/T 40652-2021: Information security technology - Guide to malware incident prevention and handling---This is a DRAFT version for illustration, not a final translation. Full copy of true-PDF in English version (including equations, symbols, images, flow-chart, tables, and figures etc.) will be manually/carefully translated upon your order. Information security technology - Guide to malware incident prevention and handling ICS 35.030 CCSL80 National Standards of People's Republic of China Information Security Technology Malware incident prevention and handling guidelines Released on 2021-10-11 2022-05-01 implementation State Administration of Market Supervision and Administration Issued by the National Standardization Management Committee Table of contentsForeword Ⅰ 1 Scope 1 2 Normative references 1 3 Terms and definitions 1 4 Abbreviations 2 5 Planning and preparation 3 5.1 Overview 3 5.2 Incident Response Team 3 5.3 Basic precautions 4 5.4 Safety awareness education 5 5.5 Vulnerability prevention 5 5.6 Malware prevention 6 6 Discovery and Report 8 6.1 Overview 8 6.2 Malware incident discovery 8 7 Evaluation and decision-making 10 8 response 10 8.1 Overview 10 8.2 Malware Incident Response Plan 10 8.3 Containment of Malware Incidents 10 8.4 Identifying the infected host 11 8.5 Eradication of Malware 12 8.6 Traceability of Malware Incidents 12 8.7 System Recovery 13 9 Summary of experience 13 Appendix A (Informative) Malware Incident Handling Scenario 14 Appendix B (Informative) Common Techniques for Containing Malware 18 Reference 23ForewordThis document is in accordance with the provisions of GB/T 1.1-2020 "Guidelines for Standardization Work Part 1.Structure and Drafting Rules of Standardization Documents" Drafting. Please note that some of the contents of this document may involve patents. The issuing agency of this document is not responsible for identifying patents. This document was proposed and managed by the National Information Security Standardization Technical Committee (SAC/TC260). Drafting organizations of this document. University of Chinese Academy of Sciences, Xidian University, National Computer Virus Emergency Response Center, Chinese Academy of Sciences Information Engineering Research Institute, Qi'anxin Technology Group Co., Ltd., Beixinyuan Software Co., Ltd., China Aviation Technology Research Institute. The main drafters of this document. Zhang Yuqing, He Yuan, Liu Qixu, Wang He, Yang Yiyu, Wang Wenjie, Wang Jice, Chen Jianmin, Fu Anmin, Li Xuejun, Zhong Li, Liu Xing'an, Zhang Chongbin, Zhang Yongyin, Lin Yue, Sun Hongyu, Liu Xinjian. Information Security Technology Malware incident prevention and handling guidelines1 ScopeThis document is based on GB/T 20985.1-2017 and GB/T 20985.2-2020, for the prevention and The process gives further guidance. This document is suitable for computer system administrators, network administrators, security incident response teams, etc. to prevent and handle malware incidents.2 Normative referencesThe contents of the following documents constitute the indispensable clauses of this document through normative references in the text. Among them, dated quotations Only the version corresponding to that date is applicable to this document; for undated reference documents, the latest version (including all amendments) is applicable to This document. GB/T 20985.1-2017 Information Technology Security Technology Information Security Incident Management Part 1.Principles of Incident Management GB/T 20985.2-2020 Information technology security technology Information security incident management Part 2.Incident response planning and standards Preparation guide GB/T 25069 Information Security Technical Terms3 Terms and definitionsThe following terms and definitions defined in GB/T 25069 apply to this document. 3.1 Malware Software specially designed to damage or destroy the system and attack the confidentiality, integrity or availability. Note. Viruses and Trojan horses are examples of malware. [Source. ISO /IEC 27033-1.2015, 3.22] 3.2 Malware incident Information security incidents that are caused by malicious software and cause breaches of confidentiality, integrity, or availability. 3.3 Antivirussoftware The program that monitors the host and the network, detects malware through its characteristics, whitelists, and abnormal behaviors, and can identify and clear them. In addition to malware. Note. Anti-virus software is also called anti-virus software and anti-virus software. 3.4 Virus Insert a group of computer instructions into a computer program that destroy computer functions or data, affect the use of the computer and can copy itself Order or program code. [Source. GB/T 31499-2015, 3.6] ......Tips & Frequently Asked Questions:Question 1: How long will the true-PDF of GB/T 40652-2021_English be delivered?Answer: Upon your order, we will start to translate GB/T 40652-2021_English as soon as possible, and keep you informed of the progress. The lead time is typically 3 ~ 5 working days. The lengthier the document the longer the lead time.Question 2: Can I share the purchased PDF of GB/T 40652-2021_English with my colleagues?Answer: Yes. The purchased PDF of GB/T 40652-2021_English will be deemed to be sold to your employer/organization who actually pays for it, including your colleagues and your employer's intranet.Question 3: Does the price include tax/VAT?Answer: Yes. Our tax invoice, downloaded/delivered in 9 seconds, includes all tax/VAT and complies with 100+ countries' tax regulations (tax exempted in 100+ countries) -- See Avoidance of Double Taxation Agreements (DTAs): List of DTAs signed between Singapore and 100+ countriesQuestion 4: Do you accept my currency other than USD?Answer: Yes. If you need your currency to be printed on the invoice, please write an email to Sales@ChineseStandard.net. In 2 working-hours, we will create a special link for you to pay in any currencies. Otherwise, follow the normal steps: Add to Cart -- Checkout -- Select your currency to pay. |
