标准摘要
[中文适用范围]: ISO/IEC 27033 的这一部分描述了与参考网络场景相关的威胁、设计技术和控制问题。 对于每种场景,它都提供了有关安全威胁以及减轻相关风险所需的安全设计技术和控制的详细指导。 在相关的情况下,它包括对 ISO/IEC 27033-4 至 ISO/IEC 27033-6 的引用,以避免重复这些文档的内容。 ISO/IEC 27033 本部分中的信息供根据 ISO/IEC 27033-2 审查技术安全架构/设计选项以及选择和记录首选技术安全架构/设计和相关安全控制时使用。 所选择的特定信息(以及从 ISO/IEC 27033-4 到 ISO/IEC 27033-6 中选择的信息)将取决于所审查的网络环境的特征,即特定的网络场景和“技术”主题( s) 关心。 总体而言,ISO/IEC 27033 的这一部分将极大地帮助任何组织网络环境的安全性的全面定义和实施。 [外文原描述]: ISO/IEC 27033-3:2010 describes the threats, design techniques and control issues associated with reference network scenarios. For each scenario, it provides detailed guidance on the security threats and the security design techniques and controls required to mitigate the associated risks. Where relevant, it includes references to ISO/IEC 27033-4 to ISO/IEC 27033-6 to avoid duplicating the content of those documents. The information in ISO/IEC 27033-3:2010 is for use when reviewing technical security architecture/design options and when selecting and documenting the preferred technical security architecture/design and related security controls, in accordance with ISO/IEC 27033-2. The particular information selected (together with information selected from ISO/IEC 27033-4 to ISO/IEC 27033-6) will depend on the characteristics of the network environment under review, i.e. the particular network scenario(s) and ‘technology' topic(s) concerned. Overall, ISO/IEC 27033-3:2010 will aid considerably the comprehensive definition and implementation of security for any organization's network environment.
英文名称Information technology - Security techniques - Network security - Part 3: Reference networking scenarios - Threats, design techniques and control issues