This standard specifies the technical requirements for security design of protected objects from the first to fourth levels of network security classification protection. This standard is applicable to guide the design and implementation of network security level protection security technical solutions by operating units, network security enterprises, and network security service agencies, and can also be used as the basis for supervision, inspection and guidance by network security functional departments. Note: The fifth-level protection object is a very important supervision and management object, which has special management mode and safety design technical requirements, so it is not described in this standard.
GB/T 25070-2019 Referenced Document
GB 17859 Classified oriteria for security protection of computer information system
GB/T 22240 Information security technology—Classification guide for classified protection of cybersecurity*, 2020-04-28 Update
GB/T 25069 Information security techniques—Terminology*, 2022-03-09 Update
GB/T 31167 Information Security Technology Cloud Computing Service Security Guidelines*, 2023-05-23 Update
GB/T 31168 Information Security Technology Cloud Computing Service Security Capability Requirements*, 2023-05-23 Update
GB/T 32919 Information security technology—Application guide to industrial control system security control
GB/T 25070-2019 history
2019GB/T 25070-2019 Information security technology — Technical requirements of security design for classified protection of cybersecurity
2010GB/T 25070-2010 Information security technology.Technical requirements of security design for information system classified protection