Journal of Information Security Research ›› 2017, Vol. 3 ›› Issue (8): 736-746.

Previous Articles    

Analysis on American Critical Infrastructure Security Management

  

  • Received:2017-08-15 Online:2017-08-15 Published:2017-08-15

美国关键基础设施安全管理综述

张弛   

  1. 中国信息安全研究院有限公司
  • 通讯作者: 张弛
  • 作者简介:工程师,主要研究领域为网络安全政策法规、工控安全.

Abstract: In recent years, Different countries are paying more attention to critical infrastructure security and its cyber defense to the level of national security by developing regulations, laws and standards. As general secretary of the CPC Central Committee and president of China, Xi Jinping proposed efforts to promote innovative development, and work hard to build China into a cyberpower. Critical information infrastructure protection is one of the most important parts of the network strategy. We should learn from other countries, especially developed countries, to secure our critical infrastructure while we are still in the early stage. The United States, as the first country devoting attention to protect critical infrastructure cyber security, has developed a set of critical infrastructure information security policies, measures and supporting works. The study will provide suggestions for our critical infrastructure defense by reviewing American critical infrastructure measures from the perspectives of its identification, management system and security requirement.

Key words: critical infrastructure, cyber security, recognition, management system, security requirement

摘要: 近年来,各国纷纷出台政策、法规,将关键基础设施安全提升到国家安全的高度,并开始重视对其网络安全的保护.习近平总书记提出,要努力把我国建设成为网络强国,关键信息基础设施安全保护正是网络强国战略的重要环节.目前,我国正处于关键信息基础设施保护的起步阶段,有必要了解其他国家的做法和经验.作为最早开展关键基础设施网络安全保护的国家,美国在20余年的探索中逐步形成了较为系统的关键基础设施安全管理体系和方法.通过从关键基础设施的识别和认定过程、管理体系、安全要求3方面分析美国对其关键基础设施的保护主要措施和成功经验,为我国关键基础设施保护工作提供参考.

关键词: 关键基础设施, 网络安全, 识别, 管理体系, 安全要求