>>>welcome visitor, haven't logged in. Login
Subscribe Now Contact us  
Font Size:  A A A Search “Fabao” Window English 中文 = 简体  繁体
  Favorite   DownLoad   Print
 
Announcement of the Cyberspace Administration of China, the National Development and Reform Commission, the Ministry of Industry and Information Technology, and the Ministry of Finance on Issuing the Cloud Computing Services Security Assessment Measures [Not Yet Effective]
国家互联网信息办公室、国家发展和改革委员会、工业和信息化部、财政部关于发布《云计算服务安全评估办法》的公告 [尚未生效]
【法宝引证码】

Announcement of the Cyberspace Administration of China, the National Development and Reform Commission, the Ministry of Industry and Information Technology, and the Ministry of Finance on Issuing the Cloud Computing Services Security Assessment Measures 

国家互联网信息办公室、国家发展和改革委员会、工业和信息化部、财政部关于发布《云计算服务安全评估办法》的公告

(Announcement No. 2 [2019] of the Cyberspace Administration of China, the National Development and Reform Commission, the Ministry of Industry and Information Technology, and the Ministry of Finance) (国家互联网信息办公室、国家发展和改革委员会、工业和信息化部、财政部公告2019年第2号)

For the purposes of improving the security and controllable level of the purchasing and using cloud computing services by Party and government organs and key information infrastructure operators, the Cyberspace Administration of China, the National Development and Reform Commission, the Ministry of Industry and Information Technology, and the Ministry of Finance have developed the Cloud Computing Services Security Assessment Measures, which are hereby issued. 为提高党政机关、关键信息基础设施运营者采购使用云计算服务的安全可控水平,国家互联网信息办公室、国家发展和改革委员会、工业和信息化部、财政部制定了《云计算服务安全评估办法》,现予以发布。
Annex: Cloud Computing Services Security Assessment Measures 附件:云计算服务安全评估办法
Cyberspace Administration of China 国家互联网信息办公室
National Development and Reform Commission 国家发展和改革委员会
Ministry of Industry and Information Technology 工业和信息化部
Ministry of Finance 财政部
July 2, 2019 2019年7月2日
Cloud Computing Services Security Assessment Measures 云计算服务安全评估办法
Article 1 These Measures are developed in order to improve the security and controllable level of the purchasing and using cloud computing services by Party and government organs and key information infrastructure operators.   第一条 为提高党政机关、关键信息基础设施运营者采购使用云计算服务的安全可控水平,制定本办法。
Article 2 With respect to security assessment for cloud computing services, ex-ante assessment and continuous supervision shall be combined, and security shall be guaranteed meanwhile promoting application. Moreover, according to relevant laws, regulations and rules and in light of the national network security standards, the role of professional and technical institutions and experts shall be maximized to conduct objective evaluation and strictly supervise the security and controllability of cloud computing service platforms (hereinafter referred to as “cloud platforms”), thus providing reference for Party and government organs and key information infrastructure operators in purchasing cloud computing services.   第二条 云计算服务安全评估坚持事前评估与持续监督相结合,保障安全与促进应用相统一,依据有关法律法规和政策规定,参照国家有关网络安全标准,发挥专业技术机构、专家作用,客观评价、严格监督云计算服务平台(以下简称“云平台”)的安全性、可控性,为党政机关、关键信息基础设施运营者采购云计算服务提供参考。
For the purposes of the Measures, “cloud platform” includes software and hardware facilities of cloud computing services and related management systems. 本办法中的云平台包括云计算服务软硬件设施及其相关管理制度等。
Article 3 The security assessment for cloud computing services shall mainly focus on the following:   第三条 云计算服务安全评估重点评估以下内容:
(1) The credit standing, operation status and other basic information of cloud platform management operators (hereinafter referred to as “cloud service providers”); (一)云平台管理运营者(以下简称“云服务商”)的征信、经营状况等基本情况;
(2) The personal background and stability of cloud service providers, especially those who can access customer data and collect relevant metadata; (二)云服务商人员背景及稳定性,特别是能够访问客户数据、能够收集相关元数据的人员;
(3) The supply chain security of cloud platform technologies, products and services; (三)云平台技术、产品和服务供应链安全情况;
(4) Cloud service providers' security management ability and cloud platform security protection; (四)云服务商安全管理能力及云平台安全防护情况;
(5) Feasibility and convenience of customer migration data; (五)客户迁移数据的可行性和便捷性;
(6) Business continuity of cloud service providers; and (六)云服务商的业务连续性;
(7) Other factors that may affect the security of cloud services. (七)其他可能影响云服务安全的因素。
...... ......

Dear visitor, you are attempting to view a subscription-based section of lawinfochina.com. If you are already a subscriber, please login to enjoy access to our databases. If you are not a subscriber, you can pay for a document through Online Pay and read it immediately after payment.
An entity user can apply for a trial account or contact us for your purchase.
Tel: +86 (10) 82689699, +86 (10) 82668266 ext. 153
Mobile: +86 13311570712
Fax: +86 (10) 82668268
E-mail: database@chinalawinfo.com

 
您好:您现在要进入的是北大法律英文网会员专区。
如您是我们英文用户可直接 登录,进入会员专区查询您所需要的信息;如您还不是我们 的英文用户;您可通过网上支付进行单篇购买,支付成功后即可立即查看本篇内容;
单位用户可申请试用或者来电咨询购买。
Tel: +86 (10) 82689699, +86 (10) 82668266 ext. 153
Mobile: +86 13311570712
Fax: +86 (10) 82668268
E-mail:database@chinalawinfo.com
     
     
【法宝引证码】        北大法宝en.pkulaw.cn
Message: Please kindly comment on the present translation.
 
Confirmation Code:
Click image to reset code
 
  Translations are by lawinfochina.com, and we retain exclusive copyright over content found on our website except for content we publish as authorized by respective copyright owners or content that is publicly available from government sources.

Due to differences in language, legal systems, and culture, English translations of Chinese law are for reference purposes only. Please use the official Chinese-language versions as the final authority. Lawinfochina.com and its staff will not be directly or indirectly liable for use of materials found on this website.

We welcome your comments and suggestions, which assist us in continuing to improve the quality of our materials as we dynamically expand content.
 
Home | About us | Disclaimer | Chinese