GB/T 20274.2-2008
ActiveInformation security technology - Evaluation framework for information systems security assurance Part 2: Technical assurance
信息安全技术 信息系统安全保障评估框架 第2部分:技术保障
Application Summary AI generated
This standard defines the technical assurance requirements and evaluation methodology for information system security, focusing on technical controls such as cryptography, access control, and audit mechanisms. It is applied in China for assessing and certifying the security of IT products and systems, particularly in government, finance, and critical infrastructure sectors. The standard provides a structured framework for security evaluators and developers to ensure systems meet specified technical security assurance levels.
Related Standards
GB/T 21049-2007
Chinese-sensible code
GB/T 19245-2003
Specification for information interchange of electronic business card
GB/T 16986-2003
Application identifiers for EAN·UCC system
GB/T 16829-2003
Information technology--Automatic identification and data capture techniques--Bar code symbology specifications--Interleaved 2 of 5
GB/T 18391.2-2003
Information technology--Specification and standardization of data elements--Part 2: Classification for data elements
GB/T 19253-2003
Information technology--Notation of format for data element values
GB/T 2261.1-2003
Classification and codesof basic personal information--Part 1: Codes for sexual distinction of human
GB/T 2261.2-2003
Classification and codesof basic personal information--Part 2: Codes for marriage status
Transparency note: The application summary and key sentences on this page were automatically generated by AI from the standard's original text. This content has not been human-verified and should not be used for compliance or regulatory purposes. Always refer to the official standard document from the issuing authority.