信息安全技术 信息系统灾难恢复规范 GB/T 20988-2007

信息安全技术

信息系统灾难恢复规范

Information security technology- Disaster recovery specifications for information systems

目次

前言 ................................................................................. II

引言 ................................................................................ III

1 范围 ................................................................................ 1

2 规范性引用文件 ...................................................................... 1

3 术语和定义 .......................................................................... 1

4 灾难恢复概述 ........................................................................ 3

4.1 灾难恢复的工作范围 ................................................................ 3

4.2 灾难恢复的组织机构 ................................................................ 3

4.3 灾难恢复规划的管理 ................................................................ 4

4.4 灾难恢复的外部协作 ................................................................ 4

4.5 灾难恢复的审计和备案 .............................................................. 4

5 灾难恢复需求的确定 .................................................................. 4

5.1 风险分析 .......................................................................... 4

5.2 业务影响分析 ...................................................................... 4

5.3 确定灾难恢复目标 .................................................................. 5

6 灾难恢复策略的制定 .................................................................. 5

6.1 灾难恢复策略制定的要素 ............................................................ 5

6.2 灾难恢复资源的获取方式 ............................................................ 5

6.3 灾难恢复资源的要求 ................................................................ 6

7 灾难恢复策略的实现 .................................................................. 7

7.1 灾难备份系统技术方案的实现 ........................................................ 7

7.2 灾难备份中心的选择和建设 .......................................................... 7

7.3 专业技术支持能力的实现 ............................................................ 7

7.4 运行维护管理能力的实现 ............................................................ 7

7.5 灾难恢复预案的实现 ................................................................ 8

附录A (规范性附录) 灾难恢复能力等级划分 ........................................... 10

附录B (资料性附录) 灾难恢复预案框架 ............................................... 14

附录C (资料性附录) 某行业RTO/RPO与灾难恢复能力等级的关系示例 .................... 16

PDF版全文在线阅读

[pdf-embedder url="https://www.aqdh.com/wp-content/uploads/2017/11/0000mark_20170110114316221.pdf"]