建设整改方案XX医院信息安全等级保护建设整改方案福建星网锐捷网络有限公司版权所有侵权必究建设整改方案建设整改方案修订记录修订日期修订版本修订章节修订描述作者2013-04-24V1.0全文初稿吴坤生建设整改方案目录1概述.................................................................................................................................41.1目的.................................................................................................................41.2等级安全体系设计目标........................................................................................41.2.1总体目标........................................................................................................51.2.2安全技术体系目标...........................................................................................52安全需求分析....................................................................................................................62.1现状分析..........................................................................................................62.1.1网络体系现状.................................................................................................62.1.2安全体系现状.................................................................................................72.1.3应用系统现状.................................................................................................82.2安全风险威胁分析..............................................................................................82.3安全问题总结..................................................................................................102.3.1网络安全问题...............................................................................................102.3.2主机安全问题...............................................................................................112.3.3应用系统和数据安全......................................................................................112.3.4安全保障......................................................................................................122.4安全需求总结..................................................................................................122.4.1身份鉴别与访问控制......................................................................................122.4.2病毒的防治..................................................................................................122.4.3安全审计......................................................................................................132.4.4安全管理......................................................................................................133等保安全体系总体设计......................................................................................................143.1等级保护体系概述............................................................................................143.2等级化安全体系设计方法...................................................................................143.2.1143.3分域保护框架建立............................................................................................143.3.1144整改方案总结..................................................................................................................155附录:资产清单列表............................................................
