|
US$689.00 ยท In stock
Delivery: <= 5 days. True-PDF full-copy in English will be manually translated and delivered via email.
GB/T 41387-2022: Information security technology - Smart home general security specification
Status: Valid
| Standard ID | Contents [version] | USD | STEP2 | [PDF] delivered in | Standard Title (Description) | Status | PDF |
| GB/T 41387-2022 | English | 689 |
Add to Cart
|
5 days [Need to translate]
|
Information security technology - Smart home general security specification
| Valid |
GB/T 41387-2022
|
PDF similar to GB/T 41387-2022
Basic data | Standard ID | GB/T 41387-2022 (GB/T41387-2022) | | Description (Translated English) | Information security technology - Smart home general security specification | | Sector / Industry | National Standard (Recommended) | | Classification of Chinese Standard | L80 | | Word Count Estimation | 35,316 | | Issuing agency(ies) | State Administration for Market Regulation, China National Standardization Administration | GB/T 41387-2022: Information security technology - Smart home general security specification---This is a DRAFT version for illustration, not a final translation. Full copy of true-PDF in English version (including equations, symbols, images, flow-chart, tables, and figures etc.) will be manually/carefully translated upon your order.
Information security technology -- Smart home general security specification
ICS 35.030
CCSL80
National Standards of People's Republic of China
Information Security Technology Smart Home General Security Specification
Published on 2022-04-15
2022-11-01 Implementation
State Administration for Market Regulation
Released by the National Standardization Administration
directory
Preface III
1 Scope 1
2 Normative references 1
3 Terms and Definitions 1
4 Abbreviations 2
5 Smart Home System Composition and Security Framework 3
5.1 Composition of Smart Home System 3
5.2 Smart Home Security Framework 3
6 Smart home terminal security requirements4
6.1 Hardware Security 4
6.2 Firmware Security 4
6.3 Operating System Security 5
6.4 Application Security 6
6.5 Interface Security 7
6.6 Communication Security 7
6.7 Data Security7
7 Smart Home Gateway Security Requirements7
7.1 Hardware Security 7
7.2 Firmware Security 7
7.3 Operating system security 8
7.4 Application Security 8
7.5 Interface Security 8
7.6 Communication Security 8
7.7 Data Security 8
8 Security requirements for smart home consoles9
8.1 Hardware Security 9
8.2 Firmware Security 9
8.3 Operating System Security 9
8.4 Application Security 9
8.5 Interface Security 9
8.6 Communication Security 9
8.7 Data Security 9
9 Security Requirements for Smart Home Application Service Platform 9
9.1 Platform Environment Security 9
9.2 Application Security 9
9.3 Interface call security 10
9.4 Data Security 11
9.5 Terminal Management Security 11
10 General Test Methods for Smart Home Security 11
10.1 General description 11
10.2 Smart home terminal security test method 12
10.3 Smart Home Gateway Security Test Method 20
10.4 Smart home control terminal security test method 23
10.5 Security Testing Method of Smart Home Application Service Platform 23
Appendix A (Informative) Typical Smart Home Scenarios and Security Risk Analysis 29
A.1 Typical Application Scenarios of Smart Home 29
A.2 Smart Home Security Risks 29
A.3 Smart Home Participants 29
Reference 31
foreword
This document is in accordance with the provisions of GB/T 1.1-2020 "Guidelines for Standardization Work Part 1.Structure and Drafting Rules of Standardization Documents"
drafted.
Please note that some content of this document may be patented. The issuing agency of this document assumes no responsibility for identifying patents.
This document is proposed and managed by the National Information Security Standardization Technical Committee (SAC/TC260).
This document is drafted by. China Mobile (Hangzhou) Information Technology Co., Ltd., China Mobile Communications Group Co., Ltd., China Information and Communication Research
Institute, the Third Research Institute of the Ministry of Public Security, National Computer Network Emergency Technology Handling Coordination Center, China Electronics Technology Standardization Institute, China Software
Evaluation Center (Software and Integrated Circuit Promotion Center of the Ministry of Industry and Information Technology), China Network Security Review Technology and Certification Center, Beijing Jingdong Shang
Branch Information Technology Co., Ltd., Lenovo (Beijing) Co., Ltd., Beijing Baidu Netcom Technology Co., Ltd., Alibaba (Beijing) Software Service Co., Ltd.
Co., Ltd., Hisense Group Holding Co., Ltd., Qingdao Haier Technology Co., Ltd., 360 Technology Group Co., Ltd., Beijing Qihoo Technology
Co., Ltd., Shenzhen Advantage Technology Co., Ltd., OPPO Guangdong Mobile Communications Co., Ltd., Huawei Technologies Co., Ltd., Beijing Xiaomi Mobile
Dynamic Software Co., Ltd., China Information and Communication Technology Group Co., Ltd., Hangzhou Anheng Information Technology Co., Ltd., Shenzhen Tencent Computing
Machine Systems Ltd.
The main drafters of this document. Lu Xiaoming, Zhang Jinwei, Qiu Qin, Zhi Xulong, Yan Hanbing, Cai Yiming, Ning Hua, Jia Qian, Wang Huajing, Cheng Jinxue,
Lu Qing, Dong Jingyu, Zhang Feng, Qiao Zhe, Liu Tao, Wang Yanhong, Wu Yi, Du Yun, Wu Linna, Gu Jian, Zhang Yan, Liu Jishun, Guo Jing, He Qinglin, Wang Hui,
Li Shibin, Shen Yongbo, Sun Ke, Li Ruxin, Li Xiaoru, Bao Shenfu, Huang Tianning, Gao Xuesong, Dong Zheng, Jing Hao, Liu Jianguo, Zhang Yi, Yao Yinan, Wang Yu,
Li Teng, Ru Zhao, Yi Qiang, Li Mingju, Wu Guoyan, Wang Hui, Xu Yongtai, Li Shuo.
Information Security Technology Smart Home General Security Specification
1 Scope
This document specifies the general technical requirements and corresponding test evaluation methods for smart home security.
This document is applicable to the security design and implementation of smart home products, and the security testing and management of smart homes can also be used for reference.
2 Normative references
The contents of the following documents constitute essential provisions of this document through normative references in the text. Among them, dated citations
documents, only the version corresponding to that date applies to this document. For undated references, the latest edition (including all amendments) applies to
this document.
GB/T 25069 Information Security Technical Terminology
GB/T 29234-2012 Technical requirements for broadband customer network security based on public telecommunication network
GB/T 31168-2014 Information Security Technology Cloud Computing Service Security Capability Requirements
GB/T 35273-2020 Information Security Technology Personal Information Security Specification
GB/T 36633-2018 Information Security Technology Network User Identity Authentication Technical Guide
GB/T 39579-2020 Technical requirements for smart home applications in public telecommunication networks
GB/T 41388-2022 Basic Security Specification for Trusted Execution Environment of Information Security Technology
ISO /IEC 27033-6 Information Technology Security Technology Network Security Part 6.Wireless IP Network Access Security Protection (Infor-
3 Terms and Definitions
GB/T 25069, GB/T 39579-2020 and GB/T 41388-2022 as well as the following terms and definitions apply to this
document.
3.1
smart home system
Use home network technology to connect various communication equipment, household appliances, home security and other devices in the home to the home intelligent system
Centralized communication, monitoring, control and home affairs management to provide smart home users with convenient, comfortable, safe, efficient and environmentally friendly home life.
A general term for living devices, networks, platforms, and applications.
[Source. GB/T 39579-2020, 3.1]
3.2
smart home terminal
Various terminal devices connected to the home network and collaboratively providing smart home services.
Note. Including related equipment for providing security, measurement, control, entertainment and other services.
[Source. GB/T 39579-2020, 3.4]
|