|
US$669.00 · In stock
Delivery: <= 5 days. True-PDF full-copy in English will be manually translated and delivered via email.
GB/T 26318-2010: Logistics network information systems risk and prevention
Status: Valid
| Standard ID | Contents [version] | USD | STEP2 | [PDF] delivered in | Standard Title (Description) | Status | PDF |
| GB/T 26318-2010 | English | 669 |
Add to Cart
|
5 days [Need to translate]
|
Logistics network information systems risk and prevention
| Valid |
GB/T 26318-2010
|
PDF similar to GB/T 26318-2010
Basic data | Standard ID | GB/T 26318-2010 (GB/T26318-2010) | | Description (Translated English) | Logistics network information systems risk and prevention | | Sector / Industry | National Standard (Recommended) | | Classification of Chinese Standard | A02 | | Classification of International Standard | 03.100.01 | | Word Count Estimation | 29,245 | | Date of Issue | 2011-01-14 | | Date of Implementation | 2011-05-01 | | Quoted Standard | GB/T 20984-2007 | | Regulation (derived from) | National Standard Approval Announcement 2011 No.96 | | Issuing agency(ies) | General Administration of Quality Supervision, Inspection and Quarantine of the People's Republic of China, Standardization Administration of the People's Republic of China | | Summary | This standard specifies the risk assessment logistics network information systems, safety precautions and safety management requirements. This standard applies to China's logistics enterprise information systems or logistics information system to regulate public service platform and management. And as relevant agencies on logistics network information system security assessment basis. | GB/T 26318-2010: Logistics network information systems risk and prevention---This is a DRAFT version for illustration, not a final translation. Full copy of true-PDF in English version (including equations, symbols, images, flow-chart, tables, and figures etc.) will be manually/carefully translated upon your order.
Logistics network information systems risk and prevention
ICS 03.100.01
A02
National Standards of People's Republic of China
Logistics Network Information System Risk and Prevention
Issued on. 2011-01-14
2011-05-01 implementation
Administration of Quality Supervision, Inspection and Quarantine of People's Republic of China
Standardization Administration of China released
Table of Contents
Introduction Ⅲ
Introduction Ⅳ
1 Scope 1
2 Normative references 1
3 Terms and definitions
4 logistics network information system technology principles and risk classification 2
5 logistics infrastructure data risks and preventive measures 8
6 entity risks and preventive measures 10
7 hardware risks and preventive measures 12
8 software risks and preventive measures 14
9 manage risks and preventive measures 20
References 24
Foreword
This standard was drafted in accordance with GB/T 1.1-2009 given rules.
This standard is proposed and managed by the People's Republic of China Ministry of Commerce.
This standard was drafted. Two-horse Zhejiang International Cargo Co., Ltd., Shenzhen joint aspect of international freight forwarders Limited, the new Epica States
International Logistics Co., Ltd., China International Electronic Commerce Limited, the National Standardization Technical Committee of the International Freight Forwarders, Sinotrans Group
Co., Ltd., China Shipping (Group) Corporation, China Steel Corporation, Jincheng Logistics (Group) Corporation, Beijing Jiaotong University, China Steel International
Freight Ltd., Shanghai Bao-lin International Dangerous Goods Logistics Limited, Fujian GR International Freight Forwarders Ltd., Xiamen Branch, Shanghai
Hong Kong Hong Information Technology Co., Ltd., Xiamen Cheng Logistics Co., Ltd., Inner Mongolia Ankuai Logistics Group, New Era Insurance Brokers Co., Ltd., Xinjiang
De Luya International Logistics Co., Ltd., Xinjiang Tuomuer freight forwarders limited liability company.
The main drafters of this standard. Lin Zhong, Wang Xifu, Jianghan Song, Hu Rong, Yang Shuang, Chen Zheng, Feng Jianping, Yang, Jing Hund, Zhang Haifeng, Chen Zhiyong,
Lily Li.
Introduction
The standards adopted by the logistics information assets, threats, vulnerabilities, and solid after being threatened vulnerability arising from the use of assets exist
Inter negative impact identification, analysis, whereby asset value of assets, threats and vulnerabilities phase mapping, threat level and weak points level
Etc., was converted to a prompt given in the form of logistics infrastructure data risk, physical risk, the risk of hardware, software, risk management and risk five
The main sources of risk and appropriate preventive measures to counter the threat, vulnerability reduction, limitation of incidental events, to achieve one or more of the following
Function. to prevent, delay, prevent, detect, limit, modify, recovery, monitoring and awareness tips or enhancement.
Currently, due to the country, the majority of small logistics enterprises, while the scale of enterprises, service levels, quality of personnel, geographical and other differences vary, leading enterprises
Industry between information technology and the use of technology and its actual operating scale, scope of business, process management and uneven development, restricted the enterprise
And the development of information industry, increase the company's operational risk. This standard is intended to improve the medium and small logistics enterprise logistics network information risk
Prevention capability.
Logistics Network Information System Risk and Prevention
1 Scope
This standard specifies the logistics network information system risk assessment, safety precautions and safety management requirements.
This standard applies to China's logistics business logistics information systems or information systems of public service platform specification and management, and as
Relevant bodies of the logistics network information system security assessment basis.
2 Normative references
The following documents for the application of this document is essential. For dated references, only the dated version suitable for use herein
Member. For undated references, the latest edition (including any amendments) applies to this document.
GB/T 20984-2007 Information Security techniques - Information security risk assessment specification
3 Terms and Definitions
The following terms and definitions apply to this document.
3.1
Assets asset
Organization of information or valuable resources, the security policy is to protect the object.
[GB/T 20984-2007, Definition 3.1]
3.2
Asset value assetvalue
The degree of importance or sensitivity of assets characterization. Is a property asset value of the assets, but also the main elements of asset identification.
[GB/T 20984-2007, 3.2 Definition]
3.3
Threat threat
It may cause harm to the system or the organization does not want a potential cause of the accident.
[GB/T 20984-2007, the definition 3.17]
3.4
Weak point vulnerability
Asset or group of assets can take advantage of the weaknesses of the threat.
3.5
Risk risk
Potential possibility of one or a group of weak points specific threats asset utilization, resulting in damage to the assets of that specific threat event occurs
The possibility of combining with the consequences.
3.6
Informationsystemrisk Risk Information System
Specific threats to information assets, vulnerabilities or weaknesses resulting in a potential damage to assets, including information assets from threats and
Body weakness or vulnerability in three components.
Note. the severity of risk information system assets and threats available extent of damage to the product of the probability of occurrence of the measure.
Tips & Frequently Asked Questions:Question 1: How long will the true-PDF of GB/T 26318-2010_English be delivered?Answer: Upon your order, we will start to translate GB/T 26318-2010_English as soon as possible, and keep you informed of the progress. The lead time is typically 3 ~ 5 working days. The lengthier the document the longer the lead time. Question 2: Can I share the purchased PDF of GB/T 26318-2010_English with my colleagues?Answer: Yes. The purchased PDF of GB/T 26318-2010_English will be deemed to be sold to your employer/organization who actually pays for it, including your colleagues and your employer's intranet. Question 3: Does the price include tax/VAT?Answer: Yes. Our tax invoice, downloaded/delivered in 9 seconds, includes all tax/VAT and complies with 100+ countries' tax regulations (tax exempted in 100+ countries) -- See Avoidance of Double Taxation Agreements (DTAs): List of DTAs signed between Singapore and 100+ countriesQuestion 4: Do you accept my currency other than USD?Answer: Yes. If you need your currency to be printed on the invoice, please write an email to [email protected]. In 2 working-hours, we will create a special link for you to pay in any currencies. Otherwise, follow the normal steps: Add to Cart -- Checkout -- Select your currency to pay.
|