| 涉密信息系统安全保密管理人员的职责要求与权限划分 |
| |
| 引用本文: | 耿伟,吴肖炎.涉密信息系统安全保密管理人员的职责要求与权限划分[J].信息安全与通信保密,2009(7):114-115. |
| |
| 作者姓名: | 耿伟 吴肖炎 |
| |
| 作者单位: | 1. 国家保密科学技术研究所,北京,100044
2. 山东省莱州市高级职业学校数控科,山东,莱州,271104 |
| |
| 摘 要: | 涉密信息系统的安全保密管理人员包括系统管理员、安全保密管理员和安全审计员。本文分别对国家保密标准中所规定的这三类安全保密管理人员进行研究,分析各自职责。并以涉密信息系统用户账号和授权管理流程为例,说明了安全保密管理人员的权限划分原则。以此促进涉密信息系统建设使用单位对标准要求的理解和落实,同时也为涉密信息系统内业务应用系统和安全保密产品的设计开发提出了相应的功能要求。
|
| 关 键 词: | 保密 管理 权限 |
Responsibilities and Divisions of Authority for security-and-Privacy Management Personnel of Secret-involved |
| |
| GENG Wei,WU Xiao-yan.Responsibilities and Divisions of Authority for security-and-Privacy Management Personnel of Secret-involved[J].China Information Security,2009(7):114-115. |
| |
| Authors: | GENG Wei WU Xiao-yan |
| |
| Affiliation: | GENG Wei, WU Xiao-yan (1 Institute of National Security Science and Technology, Beijing 100044, China;2Digital Control Division, Laizhou Senior Vocational School, Shandong Provinc, Laizhou Shandong 271104, China) |
| |
| Abstract: | The security and privacy management personnel for secret-involved system management personnel, security and privacy management personnel, and security audit personnel. This paper discusses these three security and privacy management personnels stipulated in the state security standard, analyzes their respective responsibilities, and taking the user account of secret-involved information system and authorization management flow as examples, describes the authority-division principles for security and privacy management personnles, thus promoting the understanding and implementation of the security standard by the constructing and user organizations of the secret-involved |
| |
| Keywords: | security management authorization |
| 本文献已被 维普 万方数据 等数据库收录! |
|
