Ministry of Public Security of the People's Republic of China
& lt& lt Sales License for Computer Information System Security Special Products >:>
China People's Liberation Army Information Security Evaluation Certification Center
< < military information security product certification certificate >; & gt
China national information security evaluation authentication center
& lt& lt National Information Security Certification >>
National Administration for the Protection of State Secrets
& lt& lt;
Shanghai informatization office
< < software enterprise certification certificate >; & gt& lt& lt software product registration certificate >; & gt
2, network security physical isolation product certification
Producer of State Secrecy Bureau
Certification of special products for computer information system security of Ministry of Public Security
3, military password and security product certification
Ministry of Public Security of the People's Republic of China
& lt& lt Sales License for Computer Information System Security Special Products >:>
China People's Liberation Army Information Security Evaluation Certification Center
< < military information security product certification certificate >; & gt
4. System integration authentication of classified network
National Administration for the Protection of State Secrets
& lt& lt System Integration Authentication of Secret Network >:>? The organization shall establish a documented information security management system that meets the requirements of BS7799-2 standard, complete internal audit and management review before applying for certification, and ensure that the system is effective and fully operational for more than three months;
The organization shall provide the certification body with sufficient information on the operation of the information security management system. For multiple sites, the certification scope, address and personnel distribution of each site should be stated, and the certification body will audit multiple sites by sampling.
If necessary, the organization may apply to the certification body for pre-examination;
Certification is divided into two stages: the first stage is document review, which can be carried out on-site or off-site; The second stage of on-site audit;
Conduct supervision once a year after obtaining certification;
When the organization's information security management system changes, or there is a major change that affects the compliance of the information security management system, it shall promptly notify the certification center; The certification center will conduct supervision and review, renewal review or review as appropriate to maintain the validity of the certificate; According to the national laws and regulations on information security management, the Regulations on Certification and Accreditation and its detailed rules for implementation, information security products are certified within the designated business scope, and management system certification, personnel training and technology research and development related to information security are carried out. Specifically including:
1, to carry out product and management system certification in the field of information security;
2. Training certification and testing, inspection and evaluation personnel related to certification on certification standards, procedures and related requirements;
3 to provide information security service institutions and personnel qualification training and registration;
4. Research on information security certification and detection technology;
5. Engage in other related work according to laws, regulations and authorization.