GB/T 28449-2012

Abolished

Information security technology - Testing and evaluation process guide for classified protection of information system security

信息安全技术信息系统安全等级保护测评过程指南

Standard Type

GBT

ICS

35.020

CCS

L80

Status

Abolished

Issue Date

2012-06-29

Implementation

2012-10-01

Centralized Committee

国家标准委

Issuing Authority

中华人民共和国国家质量监督检验检疫总局、中国国家标准化管理委员会

Application Summary AI generated

This standard provides a structured process guide for testing and evaluating the security of information systems in China, specifically within the framework of the Multi-Level Protection Scheme (MLPS). It is applied by security testing agencies and system operators to conduct consistent, step-by-step assessments of system security controls, ensuring compliance with mandatory classified protection requirements. The guide is used across all industries and government sectors in China that operate information systems requiring formal security classification and periodic evaluation.

Related Standards

GB/T 18903-2002 Information technology--Quality of service:Framework GB/T 18811-2002 Basic glossary of electronic commerce GB/T 5271.9-2001 Information technology--Vocabulary--Part 9:Data communication GB/T 5271.8-2001 Information technology--Vocabulary--Part 8:Security GB/T 5271.28-2001 Information technology--Vocabulary--Part 28:Artificial intelligence--Basic concepts and expert system GB/T 5271.27-2001 Information technology--Vocabulary--Part 27:Office automation GB/T 17964-2000 Information technology--Security techniques--Modes of operation for an n-bit block cipher GB/T 17900-1999 Security requirements for proxy server

Transparency note: The application summary and key sentences on this page were automatically generated by AI from the standard's original text. This content has not been human-verified and should not be used for compliance or regulatory purposes. Always refer to the official standard document from the issuing authority.