HOME Cart(0) Quotation About-Us Policy PDFs Standard-List
www.ChineseStandard.net Database: 189759 (19 Oct 2025)

GB/T 36324-2018 English PDF

US$599.00 · In stock
Delivery: <= 5 days. True-PDF full-copy in English will be manually translated and delivered via email.
GB/T 36324-2018: Information security technology -- Information security classification specifications of industrial control systems
Status: Valid

Standard ID	Contents [version]	USD	STEP2	[PDF] delivered in	Standard Title (Description)	Status	PDF
GB/T 36324-2018	English	599	Add to Cart	5 days [Need to translate]	Information security technology -- Information security classification specifications of industrial control systems	Valid	GB/T 36324-2018

PDF similar to GB/T 36324-2018

Standard similar to GB/T 36324-2018

GB/T 36630.1 GB/T 36635 GB/T 36627 GB/T 36323 GB/T 36322

Basic data

Standard ID	GB/T 36324-2018 (GB/T36324-2018)
Description (Translated English)	Information security technology -- Information security classification specifications of industrial control systems
Sector / Industry	National Standard (Recommended)
Classification of Chinese Standard	L80
Classification of International Standard	35.040
Word Count Estimation	30,377
Date of Issue	2018-06-07
Date of Implementation	2019-01-01
Regulation (derived from)	National Standards Announcement No. 9 of 2018
Issuing agency(ies)	State Administration for Market Regulation, China National Standardization Administration

GB/T 36324-2018: Information security technology -- Information security classification specifications of industrial control systems

---This is a DRAFT version for illustration, not a final translation. Full copy of true-PDF in English version (including equations, symbols, images, flow-chart, tables, and figures etc.) will be manually/carefully translated upon your order.
Information security technology--Information security classification specifications of industrial control systems ICS 35.040 L80 National Standards of People's Republic of China Information Security Technology Industrial Control System Information Security Classification Specification Published on.2018-06-07 2019-10-01 Implementation National Market Supervision Administration China National Standardization Administration released Directory Preface III Introduction IV 1 Scope 1 2 Normative references 1 3 Terms and Definitions, Abbreviations 1 3.1 Terms and Definitions 1 3.2 Abbreviations 2 4 Industrial Control System Overview 2 4.1 The basic composition of industrial control system 2 4.2 Industrial Control System Rating Object 3 5 Rules for classifying information security in industrial control systems 3 5.1 Classification Model of Information Security in Industrial Control Systems 3 5.2 Information Security Rating Factors for Industrial Control Systems 5 5.3 Information Security Level Characteristics of Industrial Control Systems 10 6 Industrial Control System Information Security Rating Rating Method 11 6.1 Information Security Grading Procedure for Industrial Control Systems 11 6.2 Defining the Industrial Control System Rating Object 12 6.3 Determining the Asset Importance of Industrial Control Systems 14 6.4 Determining the Potential Impact of Infringement 14 6.5 Determining the Level of Information Security Threat to Resist 20 6.6 Determining the Information Security Level of Industrial Control Systems 22 Appendix A (Normative Appendix) Classification of Production Safety Accidents and Environmental Emergencies 23 Reference 25

Foreword

This standard was drafted in accordance with the rules given in GB/T 1.1-2009. Please note that some of the contents of this document may involve patents. The issuing agency of this document does not assume responsibility for identifying these patents. This standard was proposed and managed by the National Information Security Standardization Technical Committee (SAC/TC260). Drafters of this standard. Beijing Jiangnan Tian An Technology Co., Ltd., China Electronics Standardization Institute, Global Energy Internet Research Hospital Co., Ltd., Shanghai Sanzuo Guardian Information Security Co., Ltd., and Net God Information Technology (Beijing) Co., Ltd. The main drafters of this standard. Chen Guanzhi, Deng Dongbai, Fan Kefeng, Gao Kunlun, Zhou Ruikang, Li Lin, Liang Yi, Cheng Peng, Zhang Yubin, Zhai Xiangzhen, Gong Jiezhong and Li Hang.

Introduction

The information security of industrial control systems is related to industrial production and operation, national economic security, and the safety of people's lives and property, to strengthen the industrial control system. Unified information security management adopts hierarchical management of information security in industrial control systems. This standard specifies industrial control based on risk assessment System information security classification rules and rating methods, put forward grade division model and grading factors, including assets of industrial control system Degree, the extent of potential risks and the degree of information security threats that need to be resisted, and proposes the division of information security into industrial control systems. Four levels of features. Chapter 4 of this standard gives an overview of the industrial control system and describes the basic composition of the industrial control system and the object of grading the industrial control system; Chapter 5 The rules for the classification of information security in industrial control systems stipulate the classification model for information security in industrial control systems, and information on industrial control systems Safety rating elements, information security level characteristics of industrial control systems; Chapter 6 Industrial control system information security rating methods, proposed industrial Control system information security grading process, stated the determination of industrial control system grading objects, determine the importance of industrial control system assets, confirm Determine the degree of potential impact after infringement, determine the level of information security threats that need to be resisted, and determine the level of information security for industrial control systems; Appendix A Explains the classification of production safety accidents and emergency environmental events. In 5.3, to clearly indicate the safety technical requirements for each level of information security in industrial control systems compared to a lower level of safety Increases and enhancements. The new part of each level is represented by the "Summer bold font." Information Security Technology Industrial Control System Information Security Classification Specification

1 Scope

This standard stipulates the rules and classification methods for information security level classification of industrial control systems based on risk assessment and proposes Models and grading factors, including the degree of importance of assets in industrial control systems, the extent of the potential risks involved, and the information security threats that need to be resisted Degree, and put forward four levels of characteristics of information security in industrial control systems. This standard is applicable to industrial production companies and related administrative departments, providing reference for the classification of information security levels in industrial control systems. The guide provides the basis for the planning, design, operation and maintenance, evaluation and management of information security for industrial control systems.

2 Normative references

The following documents are indispensable for the application of this document. For dated references, only dated versions apply to this article Pieces. For undated references, the latest version (including all amendments) applies to this document. GB/T 22080-2016 Information Technology Security Technology Information Security Management System Requirements GB/T 31722-2015 Information Technology Security Technology Information Security Risk Management Production Safety Accident Report and Investigation and Handling Regulations State Council Decree No. 493 Emergency Environmental Information Reporting Methods Order No. 17 of the Ministry of Environmental Protection 3 Terms and Definitions, Abbreviations 3.1 Terms and Definitions The terms and definitions defined in GB/T 22080-2016 and the following terms apply to this document. 3.1.1 Information security risk informationsecurityrisk The specific threat exploits the possibility of a single or group of asset vulnerabilities and the resulting harm to the organization. Note. It is measured by the possibility of a situation and the combination of its consequences. [GB/T 31722-2015, definition 3.2] 3.1.2 Impact impact The consequences of the incident have adversely affected the level of business objectives that have been achieved. In information security, generally refers to the consequences of unpredictable events. [GB/T 31722-2015, definition 3.1] 3.1.3 Threat threat Potential causes of undesired events that may cause damage to the system or organization. [GB/T 29246-2012, definition 2.45] 3.1.4 Security property securityattribute Some characteristics of the principal, user (including external IT products), object, information, session, and/or resource that define security

Tips & Frequently Asked Questions:

Question 1: How long will the true-PDF of GB/T 36324-2018_English be delivered?

Answer: Upon your order, we will start to translate GB/T 36324-2018_English as soon as possible, and keep you informed of the progress. The lead time is typically 3 ~ 5 working days. The lengthier the document the longer the lead time.

Question 2: Can I share the purchased PDF of GB/T 36324-2018_English with my colleagues?

Answer: Yes. The purchased PDF of GB/T 36324-2018_English will be deemed to be sold to your employer/organization who actually pays for it, including your colleagues and your employer's intranet.

Question 3: Does the price include tax/VAT?

Answer: Yes. Our tax invoice, downloaded/delivered in 9 seconds, includes all tax/VAT and complies with 100+ countries' tax regulations (tax exempted in 100+ countries) -- See Avoidance of Double Taxation Agreements (DTAs): List of DTAs signed between Singapore and 100+ countries

Question 4: Do you accept my currency other than USD?

Answer: Yes. If you need your currency to be printed on the invoice, please write an email to [email protected]. In 2 working-hours, we will create a special link for you to pay in any currencies. Otherwise, follow the normal steps: Add to Cart -- Checkout -- Select your currency to pay.