GB/Z 24294.2-2017 Information security technology.Guide of implementation for Internet-based e-government information security.Part 2:Access control and secure exchange (English Version)
This part of GB/Z 24294 defines two stages of Internet e-government domain control. In the access control stage, the access control structure, access security device functions, access authentication, access control rules, access control Guiding suggestions and requirements are given in terms of management and other aspects; in the security exchange stage, guiding suggestions and requirements are given for the security exchange mode, customized data security exchange requirements, and data flow security exchange requirements. This part is applicable to organizations that do not have e-government external network dedicated lines or leased communication network dedicated lines, and carry out e-government security access control strategy design, project implementation and system development based on the Internet that do not involve state secrets. Personnel and information security product providers provide management and technical references for information security planning and construction. If it involves state secrets, or the aggregated information stored, processed, and transmitted may involve state secrets, it shall be implemented in accordance with state secrecy regulations and standards.