This standard specifies the security protection requirements for telecommunications networks and Internet information service business systems in terms of security level protection, security risk assessment, disaster backup and recovery, etc. This standard applies to telecommunications networks and Internet information service business systems. Information service business systems in this standard specifically refer to telecommunications networks and Internet information service business systems.