GB/T 20274.4-2008
ActiveInformation security technology Evaluation framework for information systems security assurance Part 4: Engineering assurance
信息安全技术 信息系统安全保障评估框架 第4部分:工程保障
Application Summary AI generated
This standard defines the engineering assurance requirements and evaluation criteria for information systems, focusing on the security aspects of system development, implementation, and maintenance processes. It is applied by organizations and evaluators in China to assess the security engineering practices of information systems, ensuring that security controls are integrated throughout the system lifecycle. The standard is used in contexts such as government, finance, and critical infrastructure sectors for certification and compliance audits.
Related Standards
GB/T 21049-2007
Chinese-sensible code
GB/T 19245-2003
Specification for information interchange of electronic business card
GB/T 16986-2003
Application identifiers for EAN·UCC system
GB/T 16829-2003
Information technology--Automatic identification and data capture techniques--Bar code symbology specifications--Interleaved 2 of 5
GB/T 18391.2-2003
Information technology--Specification and standardization of data elements--Part 2: Classification for data elements
GB/T 19253-2003
Information technology--Notation of format for data element values
GB/T 2261.1-2003
Classification and codesof basic personal information--Part 1: Codes for sexual distinction of human
GB/T 2261.2-2003
Classification and codesof basic personal information--Part 2: Codes for marriage status
Transparency note: The application summary and key sentences on this page were automatically generated by AI from the standard's original text. This content has not been human-verified and should not be used for compliance or regulatory purposes. Always refer to the official standard document from the issuing authority.