DigiPlus

List of the contents of this article:

• 1,DigiPlus What are the information security attributes of the industrial control system?
• 2, Which company department is responsible for the safety of the industrial control system
• 3, What is CISP-ICSSE
• 4, Industrial Control System Safety and "Equal Protection"

What are the information security attributes of the industrial control system?

The basic attributes of information security are mainly organic density, integrity, usability, rebuttability and controllability, etc., in addition to authenticity, timeliness, compliance, privacy, etc. Confidentiality Confidentiality is often referred to as one of the three natures of the network information system CIA, which represents Confidentiality.

The three basic attributes of information security Confidentiality Information confidentiality, also known as information confidentiality, refers to the characteristics that information is not disclosed to or used by unauthorized individuals and entities. Information secretivity varies depending on the number of objects that information is allowed to access.

Five attributes of information security: confidentiality, integrity, availability, controllability and irrefutability. Confidentiality The characteristics of information not being disclosed to unauthorized users, entities or processes, or for their use.Confidentiality means that the information in the network is not acquired and used by unauthorized entities.

The common basic attributes of network information security are mainly organic density, integrity, usability, anti-rebuttion and controllability, etc., in addition to authenticity, timeliness, compliance, privacy, etc.

Information security refers to protecting the security of computer systems, networks and data to prevent unauthorized access and destruction. Information security includes the following basic attributes: Confidentiality: This is the most basic attribute of information security.

The basic attributes of information security are mainly manifested in the following five aspects: (1) Confidentiality is to ensure that information is enjoyed by authorized persons and not leaked to unauthorized persons.

Which company is responsible for the safety of the industrial control system? The department department is responsible for the appropriate

The main person in charge is fully responsible for the production safety work of the unit.

The production safety responsibility system is in accordance with "safetyThe safety production policy of "all first, prevention-oriented" and the principle of "safety management of production must be managed" are a system that clearly stipulates what responsible personnel at all levels, functional departments, their staff and production personnel in various positions should do and responsibilities in terms of production safety.

In October, the Ministry of Industry and Information Technology issued the Guide to Information Security Protection of Industrial Control Systems (hereinafter referred to as the Guide) to guide industrial enterprises to carry out industrial control and safety protection. Industrial control safety is related to economic development, social stability and national security.

The item belongs to the management of the industrial control department or automation department of the enterprise. This is because the industrial control cabinet is a device used to control and monitor industrial automation systems, which include production lines, robots, instruments, sensors, etc.

Responsible for the construction, use and management of telecommunications network, Internet network and information security technology platform.Responsible for the construction of network and information security protection system in the field of information and communication.

What is CISP-ICSSE

1. CISP-ICSSE means "registered cloud security engineer", and licensees are mainly engaged in the security direction of industrial control systems in the field of information security technology. Work, have the basic knowledge and ability to formulate industrial control security threat response plans, carry out industrial control system safety protection design, establish industrial control safety emergency response system, implement safety management, etc.

2. "Registered Industrial Control System Safety Engineer", English is CertifiedInformationSecurityProfessiona_IndustriaControSystemSecurityEngineer, abbreviated as CISP-ICSSE.

3. Issued by the China Information Security Evaluation Center, the gold content is very high! The preferred certificate in industrial control is worth recommending. You need to find an official website authorized institution like Gu'an to participate in the training to take the exam and get the certificate.

4. CISP-ICSSE certification registration method: consult the application training institution by phone, fax or email to confirm the registration and take the exam. After submitting the registration materials, wait for the review. After passing, you can take the exam.

5. C I S P is a general term for the certification category, which is actually divided into C I S E, C I S O, C I S A AND C I S D FOUR CERTIFICATES. The object is different, and the applicable surface is also different.

industrial control system security and "equal protection"

1. It can be seen from the components of the industrial control system that the network architecture of the industrial control system relies on network technology, and uses network technology to build control computing nodes into industrial The computing environment controlled by the production process is already within the scope of the level protection information system.

2. The information security grading planning of industrial control system began on January 1, 2019. Compared with 0, there are four main changes in equal protection 0: (1) Changes in the name The name has been changed from "Information System Security Level Protection" to "Network Security Level Protection".

3. In the new standard of "etc. 0", five new extension requirements have been added to each level: cloud computing security, mobile interconnection security, Internet of Things security, industrial control system security and big data security to meet the security needs of emerging technologies.

4. The objects of protection include various technical applications such as network, information system, cloud platform, Internet of Things, industrial control system, big data, mobile interconnection, etc.

5. How to put forward requirements for the construction of grade protection in special application scenarios of industrial control systems that are different from traditional networks. The industrial control system is mainly composed of process-level, operation-level and communication networks between and internal levels. For large-scale control systems, it also includes the management level.

6. The release of etc. protection 0 effectively supplements the security protection capabilities in the fields of cloud computing, mobile interconnection, the Internet of Things, industrial control and big data security, and is a new step to achieve the strategic goals of national network security.