1

On June 10, the Security Operation Development Forum hosted by the China Academy of Information and Communications Technology (hereinafter referred to as "CAICT") was held in Beijing. At the meeting, CAICT announced the latest Security Operations Center (SOC) capability evaluation, Cloud Workload Protection Platform (CWPP) capability evaluation and case selection results, released the "Host Security Capability Building Guide", and invited industry experts to give lectures. In his speech, Li Wei, deputy director of the China Academy of Information and Communications Technology, pointed out that with the continuous advancement of industrial digitalization, enterprise IT architecture changes and security challenges coexist, and security operations have received extensive attention. CAICT has achieved a series of achievements in the field of security operations over the years, and will always conscientiously implement the relevant national network security policies and policies, and firmly establish an overall national security concept.

2022 Trusted Cloud Security Latest Assessment Results Released

In order to promote the implementation of standards and regulate the development of the industry, the China Academy of Information and Communications Technology has actively carried out relevant assessment work in the field of security operations, and released the latest assessment results of trusted cloud security in 2022 at the meeting:

►There are 2 enterprises that have passed the cloud workload protection platform capability assessment (the first batch), namely: Beijing Shengxin Network Technology Co., Ltd. (Qingteng Cloud Security) (Qingteng Host Adaptive Security Platform V3.0), China Mobile Communication Group Co., Ltd. (Mobile Cloud Security Center Cloud Workload Protection Platform V1.0).

►There are two companies that have passed the security operation center capability assessment, namely: Qi'anxin Netshen Information Technology (Beijing) Co., Ltd. (Qianxin Netshen Cloud Security Operation Center (CSC) V2.0), Beijing Shenzhou NSFOCUS Co., Ltd. (NSFOCUS Smart Security Management and Operation Platform V3.0R01F05).

The latest assessment results of trusted security are released

"Safety Guardian Program" - Announcement of the Selection Results of Excellent Cases of Safety Operation

In order to guide the development direction of products and services in the security field, the China Academy of Information and Communications Technology launched the "Security Guardian Program - Security Operation Special" excellent case collection activity. After several rounds of rigorous evaluation, a total of 15 outstanding cases passed the selection. The specific list is as follows:

安全守卫者计划——安全运营专题优秀案例评选结果

Safety Guardian Program - Selection Results of Excellent Cases in Safety Operation

Qingteng Cloud Security and the Cloud University of the China Academy of Information and Communications released the "Guidelines for Host Security Capability Building"

In order to help enterprises better cope with host security risks, and to guide enterprises to build perfect host security capabilities, Qingteng Cloud Security and China Academy of Information and Communications Technology jointly compiled the first "Host Security Capability Building Guide" in China and officially at the meeting. release.

Joint Release Ceremony of "Guidelines for Host Security Capability Building"

Qingteng Cloud Security COO level interprets the white paper. The degree indicates that it is divided into basic level, enhanced level and advanced level according to the situation of the enterprise. During security construction, a detailed and thorough analysis of existing IT strategies, security policies, security standards, security baselines and costs is required, and product capabilities are fully considered. , security and business needs, and give priority to completing the most urgently needed capacity building that best matches business security requirements.

Interpretation of "Guidelines for Host Security Capability Building"

2022 "Trusted Security Operation Observatory" released

At the meeting, the China Academy of Information and Communications Technology introduced the "Observation of Trusted Security Operations", which comprehensively displayed a series of achievements in standard formulation, evaluation and testing, technical research, training exchanges and other aspects over the years.


Interpretation of "Trusted Security Operation Observation"

According to Kong Song, deputy director of the Open Source and Software Security Department of the Cloud University of the China Academy of Information and Communications Technology, at present, the China Academy of Information and Communications Technology has taken the lead in formulating three trusted security operation standards and completed a number of test evaluations based on the above standards. The current situation of safety construction is analyzed. In the future, CAICT will further improve the series of standards for "trusted security operations", release scientific research results and white papers, hold relevant salons and excellent case selection activities, provide public services for the industry, and strengthen security industry guidance.

China's first "Cloud Workload Protection Platform Capability Requirements" standard released

The Cloud Workload Protection Platform (CWPP) can adapt to the security issues brought about by the transformation of IT architecture in the new era. At the meeting, the China Academy of Information and Communications Technology officially released the first domestic "Cloud Workload Protection Platform Capability Requirements" standard. Han Fei, an engineer at the Open Source and Software Security Department of the Cloud University of China Academy of Information and Communications Technology, explained the standard. CWPP core security capabilities define and standardize the security protection capabilities that CWPP should have; security management capabilities require unified management and display capabilities to support core security functions; platform basic capabilities include security, compatibility, auditability, and stability. Four performances ensure the stable operation of the platform.


Interpretation of the "Cloud Workload Protection Platform Capability Requirements" standard

Guests from all walks of life in the industry delivered wonderful speeches

At the meeting, representatives from all parties in the industry shared the latest technologies and industry best practices in the field of security operations: Duan Xindong, Deputy Business Manager of the Information Technology Department of China Everbright Bank, introduced the "Construction Practice of Cloud Workload Protection Platform of China Everbright Bank" and shared The practical experience of escorting China Everbright Bank's digital transformation by building an integrated security defense system that integrates cloud-native application security early warning, security protection, threat detection, emergency response and recovery.


Sharing of "Everbright Bank Cloud Workload Protection Platform Construction Practice"

Liu Zhong, Senior Director of the Operational Capability Center of Beijing Shenzhou Lvmeng Technology Co., Ltd., gave a keynote speech on "Intelligence-Driven Actual Operational System", expounding how to drive through intelligence and actively hunt in the current situation of escalating offensive and defensive confrontation. to deal with threats.


Practice Sharing of "Intelligence-Driven Actual Operational System"

Sun Lipeng, head of Qi'anxin Cloud Security Management Division, shared the experience of "construction of a practical cloud security operation system", and proposed to combine security capabilities to meet the comprehensive protection of various complex scenarios.


Practical sharing of "Construction of a practical security operation system"

This conference provided new ideas for enterprise security operations, and made an in-depth interpretation of key technologies, application scenarios, industry standards and development trends involved in security operations, which played a positive role in promoting the standardized development of my country's cloud security industry. .

Up to now, the safety operation center has passed the assessment:

Huawei (HiSec Security Solution), Tencent Cloud (Yujian Security Center), Sangfor (MSS Security Operation Platform), Alibaba Cloud (Cloud Shield-Cloud Security Management Center), China Unicom Digital (Cloud Security Supervision Platform-SOC), Inspur Cloud (Yunyu Security Operation Center), Qihoo 360 (Security Management Operation Center), Venus Star (Beidou Security Operation Center), Shanghai Pudong Development Bank (Ecological Cloud Security Operation Center), Tianrongxin (Cloud Situation Analysis and Security Operation Center), Anheng (AiCSO Cloud Security Operation Center Platform), Knowing Chuangyu (Cloud Security Defense Platform), China Merchants Bank (ACS Native Cloud Security Operation Center), China Mobile (Cloud Security Center), Qi'an Xin Wangshen Information Technology (Beijing) Co., Ltd. Company (Qianxin Network Shenyun Security Operation Center (CSC) V2.0), Beijing Shenzhou NSFOCUS Technology Co., Ltd. (NSFOCUS Intelligent Security Management Operation Platform V3.0R01F05).

Conference Contact: Han Fei

Contact phone: 16601551669 (same number on WeChat)

Email: hanfei@caict.ac.cn


snakesss
1.1k 声望244 粉丝

SegmentFault 思否编辑,欢迎投稿优质技术资讯!