信息系统密码应用基本要求标准在政务云场景下的应用
Standards for Basic requirements for Information System Password Applications in Government Cloud Scenarios
周玮 1罗礼晨 1魏云涛1
作者信息
摘要
为了保障政务云上信息系统机密性、完整性、真实性安全需求,遵循GB/T 39786-2021《信息安全技术 信息系统密码应用基本要求》标准,分析了政务云上信息系统所面临的安全风险,提出在政务云上通过集约化的方式建设密码资源池的方式,为云上信息系统提供加密、认证等手段,确保了云上信息系统的数据传输存储的安全,能有效地加以防范和应对,从而为政府机构提供一个更加稳健的政务服务平台.
Abstract
In order to ensure security requirements of information systems on the government cloud,such as the confidentiality,integrity and authenticity,in accordance with the standard GB/T 39786-2021"Information security technology-Baseline for information system cryptography application",this paper analyzes the security risks faced by information systems on the government cloud,and proposes the construction of a password resource pool through intensive methods on the government cloud to provide encryption,authentication and other means for cloud information systems,ensuring the security of data transmission and storage of cloud information systems.It can effectively prevent and respond to them,thus providing a more robust government service platform for government agencies.
关键词
商用密码/密码资源池/政务云/信息安全/GB/T/39786-2021Key words
commercial password/password resource pool/government affairs cloud/information security/GB/T 39786-2021引用本文复制引用
出版年
2024
NETL
NSTL
万方数据