|
US$209.00 · In stock
Delivery: <= 3 days. True-PDF full-copy in English will be manually translated and delivered via email.
LST1806-2017: Network specification for grain information system
Status: Valid
| Standard ID | Contents [version] | USD | STEP2 | [PDF] delivered in | Standard Title (Description) | Status | PDF |
| LS/T 1806-2017 | English | 209 |
Add to Cart
|
3 days [Need to translate]
|
Network specification for grain information system
| Valid |
LS/T 1806-2017
|
PDF similar to LST1806-2017
Basic data | Standard ID | LS/T 1806-2017 (LS/T1806-2017) | | Description (Translated English) | Network specification for grain information system | | Sector / Industry | Food & Beverage Industry Standard (Recommended) | | Classification of Chinese Standard | B20 | | Classification of International Standard | 35.240.99 | | Word Count Estimation | 9,933 | | Date of Issue | 2017-03-10 | | Date of Implementation | 2017-06-01 | | Quoted Standard | GB/T 2887-2011; GB/T 5271.1-2000; GB/T 5271.9-2001; GB/T 7260.1-2008; GB/T 7260.2-2009; GB/T 7260.3-2003; GB/T 7260.4-2008; GB/T 18018-2007; GB/T 18903-2002; GB/T 20270-2006; GB/T 20281-2015; GB/T 21050-2007; GB/T 21061-2007; GB/T 22239-2008; GB 50174-200 | | Regulation (derived from) | State-Food-Communication No. 1 of 2017 | | Issuing agency(ies) | National Grain Administration | | Summary | This standard specifies the basic design requirements of the information transmission network involved in the information exchange and sharing between the administrative departments of the grain industry and between the grain administrative departments and the grain enterprises, including the network structure, the topology structure, the equipment requirements, Domain name and IP management requirements, room construction requirements, service quality requirements, network security requirements and information security requirements. This standard applies to the overall planning, design, development, application, training and operation and maintenance of the food industry information system network, as well as food industry information exchange and sharing, and support interconnection of food industry information system. | LST1806-2017: Network specification for grain information system---This is a DRAFT version for illustration, not a final translation. Full copy of true-PDF in English version (including equations, symbols, images, flow-chart, tables, and figures etc.) will be manually/carefully translated upon your order.
Network specification for grain information system
ICS 35.240.99
B20
People's Republic of China food industry standard
Food Information System Network Design Specification
Published on.2017-03-10
2017-06-01 implementation
National Food Bureau released
Content
Foreword I
1 Scope 1
2 Normative references 1
3 Terms and Definitions 1
4 Abbreviations 2
5 network structure 3
6 Topology 3
7 Equipment Requirements 3
8 Domain Name and IP Management 3
9 computer room construction 4
10 Quality of Service 4
11 Network Security 5
12 Information Security 5
13 Network Management 5
Reference 6
Foreword
This standard was drafted in accordance with the rules given in GB/T 1.1-2009.
This standard was proposed by the National Grain Administration.
This standard is under the jurisdiction of the National Grain and Oil Standardization Technical Committee (SAC/TC270).
This standard was drafted. National Information Center, National Grain and Oil Information Center, International Trade Engineering Design Institute, Henan University of Technology, Jiangsu Province Food
Bureau, Aerospace Information Co., Ltd.
The main drafters of this standard. Xu Feng, Yan Maosheng, Li Suyun, Wang Ziliang, Hou Wei, Wei Huijun, Xu Jinping, Peng Shougen, Wang Tao, Yi, Gao Song,
臧 Fax.
Food Information System Network Design Specification
1 Scope
This standard stipulates the exchange of information between the administrative departments of the grain industry, the food administrative department and the grain enterprises.
The basic design requirements of the information system transmission network involved, including network structure, topology, device requirements, domain name and IP management
Requirements, computer room construction requirements, service quality requirements, network security requirements, and information security requirements.
This standard applies to the overall planning, design, development, application, training and operation and maintenance of the food industry information system network, as well as the food line.
Industry information exchange and sharing, support the food industry information system interconnection.
2 Normative references
The following documents are indispensable for the application of this document. For dated references, only dated versions apply to this article.
Pieces. For undated references, the latest edition (including all amendments) applies to this document.
GB/T 2887-2011 General specification for computer sites
GB/T 5271.1-2000 Information technology vocabulary Part 1. Basic terms
GB/T 5271.9-2001 Information technology -- Part 9. Data communication
GB/T 7260.1-2008 Uninterruptible power supply equipment - Part 1-1. General requirements for UPS
Safety requirements
GB/T 7260.2-2009 Uninterruptible power supply equipment (UPS) Part 2. Electromagnetic compatibility (EMC) requirements
GB/T 7260.3-2003 Uninterruptible power supply equipment (UPS) Part 3. Methods and test requirements for determining performance
GB/T 7260.4-2008 Uninterruptible power supply equipment - Part 1-2. General requirements and safety of UPS for restricted access areas
Claim
GB/T 18018-2007 Information security technology router security technical requirements
GB/T 18903-2002 Information Technology Service Quality. Framework
GB/T 20270-2006 Information security technology network basic security technical requirements
GB/T 20281-2015 Information security technology firewall security technical requirements and test evaluation methods
GB/T 21050-2007 Information security technology network switch security technical requirements (assessment assurance level 3)
GB/T 21061-2007 National e-government network technology and operational management practices
GB/T 22239-2008 Information security technology information system security level protection basic requirements
GB 50174-2008 Electronic Information System Room Design Specification
LS/T 1807-2017 Food Information Security Technical Specification
YD/T 1190-2002 Network-based Virtual IP Private Network (IP-VPN) Framework
YD/T 5227-2015 Cloud computing resource pool system equipment installation engineering design specification
3 Terms and definitions
The following terms and definitions apply to this document.
3.1
National e-government extranet nationale-governmentextranet
A specialized network that meets the needs of social services such as social management and public services at all levels of government. National e-government extranet
The central government external network and the local government external network are composed of logic isolation from the Internet.
3.2
National e-government intranet nationale-governmentintranet
It mainly meets the needs of internal office, management, coordination, supervision and decision-making of government departments at all levels, and meets the administrative departments of sub-provincial and above.
A special network for special office needs is formed by the interconnection of business networks of party committees, people's congresses, governments, CPPCC, courts, and procuratorates, and the Internet.
Physical isolation.
3.3
Internet internet
Wide area network, local area network and stand-alone international computer network composed of certain communication protocols.
3.4
LAN localareanetwork (LAN)
A computer network within a user's home in a limited geographic area.
Note. Communication within a LAN does not obey external rules; however, communications across domain boundaries may be subject to some form of rules.
[GB/T 5271.1-2000, definition 01.01.46]
3.5
Virtual private network virtual private network (VPN)
In a shared network, the ability to implement the original private network through various technologies (such as tunneling, encryption, etc.), and to ensure the security of the network,
Reliability and manageability provide greater scalability and flexibility.
[YD/T 1190-2002, definition 3.1.12]
3.6
Metropolitan area metrotropintannetwork
A network that connects several local area networks within the same city area.
[GB/T 5271.9-2001, definition 09.07.10]
3.7
WAN wideareanetwork (WAN)
A network that provides a variety of communication services to a larger geographic area than a LAN or metropolitan area network.
[GB/T 5271.9-2001, definition 09.07.11]
3.8
Network switch networkswitch
A device that connects each node or other network device in the network provides a logical path of the second layer of the open system interconnection model, based on the number
According to the link layer information, the data packet can be filtered based on the destination address.
[GB/T 21050-2007, definition 3.1.5]
3.9
Node node
A device in a computer network system that can store or forward information.
[GB/T 21050-2007, definition 3.1.6]
3.10
Router router
The main network node device works at the network layer, determines the storage and forwarding of data flowing through the routing algorithm, and has access control.
System and security extensions.
[GB/T 18018-2007, definition 3.1.1]
4 Abbreviations
The following abbreviations apply to this document.
IP. Internet Protocol (InternetProtocol)
QoS. Quality of Service (QualityofService)
UPS. Uninterruptible Power System/Uninterruptible PowerSupply
5 network structure
The food information system network includes the Internet, the national e-government extranet, the national e-government intranet, and the business private network. Among them, the national electricity
The sub-government external network is isolated from the Internet logic, and the national e-government intranet, business private network and the Internet are physically isolated.
Food industry information system exchange and sharing network interconnection, including business systems at all levels of food administrative departments, food administration
Information exchange and sharing between the business system of the management department and the business system of the food enterprise, including but not limited to.
a) National Food Bureau Business Information System;
b) the business information system of the provincial grain administrative department;
c) Business information system of municipal food administrative department;
d) Business information system of county-level food administrative departments;
e) Food Business Information System.
6 topology
The network topology of each information system network node in the grain industry in the network access area shall be expressed as a star, ring or bus type.
Meet the following requirements.
a) Star, ring and bus topology should be standardized to minimize connection failures between network devices and to ensure network equipment is convenient
increase or decrease;
b) Star, ring and bus topologies should be scalable and flexible;
c) Ethernet standard should be adopted to support star LAN design, using point-to-point connections and structured cabling topologies;
d) The network access layer, aggregation layer and core layer shall provide separate access terminals for different access networks.
7 Equipment requirements
7.1 router
The access router shall comply with the relevant requirements of GB/T 18018-2017, where the national and provincial information system network access areas are connected.
The ingress router should be configured according to the level 3 protection level protection requirements. The information system below the provincial level and the access router of the enterprise service information system.
It should be configured according to the level protection secondary safety requirements.
7.2 Network Switch
The network switch shall comply with the relevant requirements of Chapters 5 to 7 of GB/T 21050-2007.
7.3 Firewall
The firewall should comply with the relevant requirements of Chapter 6 of GB/T 20281-2015.
8 Domain Name and IP Management
8.1 Domain Name Requirements
Domain name management shall comply with the relevant requirements of 9.2 of GB/T 21061-2007.
The naming of food information network domain names should follow the following principles.
a) The subdomains of each level of the network are composed of English letters (case equivalent), numbers (0~9) and connectors (-);
b) The naming of domain names should meet the following requirements.
--- Name length should not exceed 25 characters;
--- The body of the domain name should not use the name containing the words "CHINA", "CHINESE", "CN", "NATIONAL";
--- The names of other countries or regions known to the public, foreign place names, and names of international organizations should not be used;
--- The industry name or the generic name of the item should not be used;
--- You should not use the name of the company or the name of the trademark that someone else has registered in China;
--- Names that are detrimental to national, social or public interest should not be used.
8.2 IP address requirements
The division of IP addresses shall comply with the relevant requirements of 9.1 of GB/T 21061-2007.
9 computer room construction
9.1 Basic requirements
The construction of the equipment room should comply with Chapter 4 of GB/T 2887-2011, Chapter 3 of GB 50174-2008 and LS/T 1807-2017.
Relevant requirements of 8.1.1. Among them, the national and provincial computer rooms should be constructed in accordance with the national standard B-class computer room, and the provincial-level computer rooms should follow B.
The construction of the computer room; if the system is built through the cloud platform, it should refer to the cloud computing service room construction standard YD/T 5227-2015.
9.1 Construction.
9.2 Site selection requirements
Executed according to 4.1 in GB 50174-2008. All kinds of computer rooms of government agencies should be built within the controllable range of buildings, and should not be shared with other equipment.
Enjoy space.
9.3 UPS requirements
The UPS system shall comply with the relevant requirements of the GB/T 7260 series of standards.
9.4 Grounding requirements
The grounding protection system shall comply with the relevant requirements of 4.4 of GB/T 2887-2011 and 8.3 and 8.4 of GB 50174-2008
related requirements.
9.5 Fire protection requirements
The construction of fire protection facilities in the equipment room shall comply with the requirements of Chapter 13 of GB 50174-2008.
9.6 Electromagnetic shielding requirements
The construction of the confidential computer room should meet the requirements of Chapter 9 of GB 50174-2008.
10 Quality of service
The quality of food information network service shall comply with the requirements specified in Chapter 6 of GB/T 18903-2002, and shall also comply with the following
Claim.
a) Food Information System Network WAN QoS indicators should meet the following requirements.
---The average time delay is < 0.2s;
--- Delay jitter < 0.01s;
--- Throughput >128M/s;
--- Packet loss rate < 0.05%;
--- Availability >99.9%;
--- Reliability ≥ 365d.
b) Food Information System Network Metropolitan Area Network QoS indicators should meet the following requirements.
---The average time delay is < 0.2s;
--- Delay jitter < 0.01s;
--- Throughput >128M/s;
--- Packet loss rate < 0.05%;
--- Availability >99.9%;
--- Reliability ≥ 365d.
11 Network Security
The network security of the food information system network access area shall comply with the requirements of 7.1.2 and 7.2.5.6 of GB/T 22239-2008.
12 Information Security
Information security technology shall comply with the relevant requirements of 8.4 of GB/T 20270-2006 and LS/T 1807-2017. Information transmission should be root
According to the confidentiality of the transmitted data, different networks are selected for transmission, mainly including the following methods.
a) Confidential information should be transmitted through the national e-government intranet;
b) Non-confidential sensitive information should be transmitted through the national e-government extranet;
c) public food industry information and public services for the public can be transmitted via the Internet;
d) If the transmission information has confidentiality provisions, it shall be implemented in accordance with the relevant provisions of the State Secrecy Management Department and the Ministry of Public Security.
13 Network Management
Network management of qualified food information system network access areas should realize the visualization of network topology and facilitate timely implementation.
Barrier processing to improve network management efficiency.
references
[1] GB/T 17859-1999 Computer Information System Security Protection Level Division Guidelines
[2] GB/T 30850.3-2014 E-government standardization guide Part 3. Network construction
[3] GAT669.8-2008 Technical standard for urban monitoring and alarming systems - Part 8. Technical requirements for transmission networks
[4] GW01012014 National e-government external network information security standard system framework
[5] GW01022014 National e-government external network information security standardization work specification
[6] GW01032011 National e-government external network security level protection basic requirements
[7] GW01042014 National E-Government External Network Security Level Protection Implementation Guide
[8] GW02012011 National e-government external network IPSecVPN security access technical requirements and implementation guide
[9] GW02022014 National e-government external network security access platform technical specifications
[10] GW02032014 National e-government external network security monitoring system technical specifications and implementation guidelines
[11] GW02042014 Technical requirements and interface specifications for national e-government external network security management system
[12] GW02052014 National e-government external network cross-network data security exchange technical requirements and implementation guide
[13] GW02062014 Access to the LAN security technical specification of the government external network
[14] GW02062015 National e-government external network IPv4 address planning
[15] National Electronic Document Management “13th Five-Year Plan”
[16] National Informatization Leading Group's Guiding Opinions on China's E-Government Construction (Zhong Ban Fa [2002] No. 17)
[17] Opinions of the National Informatization Leading Group on Promoting the Construction of National E-Government Network (Zhong Ban Fa [2006] No. 18)
[18] Opinions of the National Informatization Leading Group on Strengthening Information Security Work (Zhong Ban Fa [2003] No. 27)
[19] National E-Government General Framework (Guo Xin [2006] No. 2)
Tips & Frequently Asked Questions:Question 1: How long will the true-PDF of LST1806-2017_English be delivered?Answer: Upon your order, we will start to translate LST1806-2017_English as soon as possible, and keep you informed of the progress. The lead time is typically 1 ~ 3 working days. The lengthier the document the longer the lead time. Question 2: Can I share the purchased PDF of LST1806-2017_English with my colleagues?Answer: Yes. The purchased PDF of LST1806-2017_English will be deemed to be sold to your employer/organization who actually pays for it, including your colleagues and your employer's intranet. Question 3: Does the price include tax/VAT?Answer: Yes. Our tax invoice, downloaded/delivered in 9 seconds, includes all tax/VAT and complies with 100+ countries' tax regulations (tax exempted in 100+ countries) -- See Avoidance of Double Taxation Agreements (DTAs): List of DTAs signed between Singapore and 100+ countriesQuestion 4: Do you accept my currency other than USD?Answer: Yes. If you need your currency to be printed on the invoice, please write an email to [email protected]. In 2 working-hours, we will create a special link for you to pay in any currencies. Otherwise, follow the normal steps: Add to Cart -- Checkout -- Select your currency to pay.
|