Welcome to the Industrial Automation website!

NameDescriptionContent
XING-Automation
E-mail  
Password  
  
Forgot password?
  Register
当前位置:

Open a new stage in the security protection of critical information infrastructure

F: | Au:佚名 | DA:2023-12-05 | 368 Br: | 🔊 点击朗读正文 ❚❚ | Share:

First, legislation on the security protection of critical information infrastructure is an important part of each country's cybersecurity strategy

(1) The complex and grave global cyber security situation poses new challenges to the security and protection of critical information infrastructure in all countries. Recently, the infrastructure and important information systems of many countries have been subjected to cyber attacks, causing global shock and posing huge risks to national security and stability. In particular, in 2021, the largest fuel pipeline operator in the United States and the world's largest meat processing enterprises were shut down due to hacker attacks, resulting in damage to infrastructure affecting the operation of the national and even global economy, having a chain impact on the whole industrial chain, and triggering global thinking on strengthening the security protection of critical information infrastructure. Recently, major countries and regions in the world have strengthened the security protection of critical infrastructure. The United States not only significantly increased funding for critical infrastructure cybersecurity, but also proposed a number of bills and official guidelines to strengthen critical infrastructure cybersecurity and prevent ransomware attacks. The EU has also made improving the protection and resilience of critical infrastructure a top priority for cybersecurity over the next five years in the EU Security Union Strategy.

(2) Major countries and regions in the world have taken critical infrastructure legislation as the most critical link in cybersecurity legislation. The United States and Europe started earlier in critical infrastructure legislation. The United States promulgated the Critical Infrastructure Protection Act of 2001 as early as 2001, followed by the Executive Order on Improving Critical Infrastructure Network Security and the Executive Order on Enhancing Federal Government Network and Critical Infrastructure Network Security. With the increasingly severe cybersecurity situation, the United States has actively adjusted its cybersecurity protection strategy, and recently issued the Interim National Security Strategic Guideline for 2021 and the Executive Order on Strengthening National Cybersecurity for 2021. The EU has introduced several pieces of legislation related to the protection of critical infrastructure, including the 2008 EU Directive on the Identification and Security Assessment of Critical Infrastructure and the 2016 Directive on Network and Information Security. Russia enacted the Federal Critical Information Infrastructure Security Act in 2017, and Australia enacted the Critical Infrastructure Security Act in 2018. In addition, the United Kingdom, Germany, Japan and other countries have also introduced relevant legislation and policies for the protection of critical infrastructure.

(3) China's cybersecurity Law emphasizes a higher level of protection for critical information infrastructure. On the basis of clarifying the basic system of national network security, China's cybersecurity Law introduced in 2016 stipulates a higher level of security protection requirements for critical information infrastructure. The Cybersecurity Law provides for the key protection of critical information infrastructure, and in Chapter 3, "Network Operation Security", a single section is set up to specifically provide for the security protection of critical information infrastructure. Higher requirements are put forward for security management measures such as technical measures, personnel mechanisms, data security, and risk assessment involved in the security protection of critical information infrastructure, and it is emphasized that the security protection system of critical information infrastructure should be further improved through supporting legislation, highlighting the important position of critical information infrastructure in the overall national network security system.

The Regulations establish specific institutional requirements for the security protection of China's critical information infrastructure

The Cybersecurity Law makes general provisions on the relevant implementation objects, responsibility subjects, and work contents of the security protection system for critical information infrastructure. As an important supporting regulation of the Cybersecurity Law, the Regulations are implemented based on work and define a series of basic elements related to the security protection of critical information infrastructure such as the scope of application, regulatory subjects, and assessment objects. Security protection requirements and security measures are put forward to ensure specific objects, clear rights and responsibilities, and clear tasks, and to provide systematic guidance and work compliance for security protection work.

(1) Determine the scope of protected objects. Article 2 of the Regulations gives a clear definition of critical information infrastructure, Article 9 puts forward the key considerations for the protection work department to formulate identification rules, and determines that the protection work department is responsible for formulating the identification rules and lists of critical information infrastructure in the industry and the field. On the one hand, the formation process of the identification rules and lists must be based on the reality, fully combined with the characteristics and importance of the industry and the field of business, and achieve the accurate definition of the scope of the list on the basis of quantitative index parameters; On the other hand, the list should be dynamically adjusted and updated along with the development of national cybersecurity and informatization.

(2) Clarify the division of oversight responsibilities. In order to ensure the smooth development of the security protection of critical information infrastructure, the Regulations set up a scientific and rigorous supervision and management mechanism. At the national level, the national network information department is responsible for overall coordination, the public security department of The State Council is responsible for guidance and supervision, and the telecommunications department of The State Council and other relevant departments are responsible for the security protection, supervision and management of key information infrastructure of the industry; At the local level, the relevant departments of the provincial people's governments are responsible for the security protection, supervision and management of critical information infrastructure. It not only effectively ensures the unified, orderly and coordinated promotion of the security protection of critical information infrastructure, but also gives full play to the professional advantages of specific industry sectors to improve the security protection of critical information infrastructure.

3. Strengthening primary responsibility for security. The Regulations emphasize that critical information infrastructure operators (hereinafter referred to as operators) assume the main responsibility for the security protection of critical information infrastructure, and set strict requirements for the operators' own security management mechanism. The first is to emphasize the responsibility of the main person in charge, and make it clear that the main person in charge of the operator is responsible for the security protection of critical information infrastructure. The second is to require the establishment of a special security management organization, which is specifically responsible for the security protection of the critical information infrastructure of the unit. The third is the implementation of security background checks for personnel in key positions, including the person in charge of the operator's special safety management agency and the personnel identified as key positions. The fourth is to ensure the operation of the special safety management agency, and provide funds and professional personnel protection for the special safety management agency of the unit.

(4) Detailed security protection requirements. The Regulations strengthen the security protection of critical information infrastructure and put forward higher security protection requirements for operators on the basis of the Network Security Law. The first is to implement the "three synchronization" requirements, requiring security protection measures and critical information infrastructure synchronous planning, synchronous construction, synchronous use, critical information infrastructure from the date of inclusion in the list of key information infrastructure, in the design and construction (expansion), operation and maintenance, emergency recovery, decommissioning and waste stages, should ensure the implementation of security protection covering the whole life cycle. The second is to carry out regular security testing and risk assessment, and the operator must carry out network security testing and risk assessment at least once a year, which can be carried out by itself or commissioned by network security service agencies. The third is to fulfill the obligation of reporting security incidents and threats, in the event of a major cybersecurity incident or the discovery of a major cybersecurity threat, the operator shall report to the relevant departments. The fourth is to implement the requirements of network security review, operator procurement of network products and services may affect national security, should be in accordance with the national network security provisions for security review. Fifth, to strengthen monitoring and early warning and information sharing, the Regulations propose to establish and improve the network security monitoring and early warning system for critical information infrastructure, accurately grasp the operation of critical information infrastructure, and promote network security information sharing.

5. Strengthening key security guarantees. First, the implementation of vulnerability detection, penetration testing and other activities for critical information infrastructure should be approved by the national network information department, the public security department of The State Council, or authorized by the protection department and the operator. Activities such as vulnerability detection and penetration testing of basic telecommunications networks shall be reported to the competent department of telecommunications under The State Council in advance. Second, the energy and telecommunications industries provide important support and resource guarantee for the stable operation of key information infrastructure in finance, water conservancy, transportation and other industries, and the basic telecommunications network is also basic and global, carrying other key information infrastructure. The state will take measures to give priority to the safe operation of key information infrastructure such as energy and telecommunications. The energy and telecommunications industries will provide key guarantees for the safe operation of critical information infrastructure in other industries and fields.

Third, the new stage of critical information infrastructure security protection

1. Improving the system of supporting standards and regulations. First, accelerate the formulation and introduction of national standards around the common security needs and baseline security requirements of critical information infrastructure. Second, the protection work department focuses on the actual conditions and characteristics of the industry, deeply promotes the construction of key information infrastructure standards in the industry, and organizes the implementation. The third is to carry out in-depth research on the management mechanism in key aspects such as operators' responsibilities and obligations, information sharing mode, collaborative disposal mechanism, and security protection capability identification.

(2) Deepening the implementation of industry supervision responsibilities. The first is to guide and supervise the industry operators to implement the main responsibility of security, and do a solid job in the security protection of key information infrastructure such as network security threat monitoring and disposal, network security review. The second is to improve the supervision and inspection mechanism, and strengthen the security protection inspection and risk assessment of key information infrastructure in the industry. The third is to build and improve the emergency support system, establish technical support means such as situational awareness and emergency command, organize and carry out scenario-based, thematic and joint emergency drills, and build a team of experts.

3. We will strengthen demonstrations of the application of new technologies and models. First, strengthen research on innovation and development, and actively use new technologies such as cloud computing, big data, and artificial intelligence to enhance the cybersecurity capabilities of critical information infrastructure. The second is to establish an innovation incentive mechanism, deepen the innovative application and pilot demonstration of advanced cybersecurity technologies, gather the strength of the cybersecurity industry, and strengthen the supply of cybersecurity capabilities for critical information infrastructure. The third is to carry out the assessment and continuous optimization of the network security capability of critical information infrastructure, and objectively assess the level of network security capability. Choose the direction of improving security capability in a scientific way.


  • Basler Electric BE1-700 Digital Protective Relay
  • Basler Electric SR8A-2B01B3A Static Voltage Regulator
  • Basler Electric SR4A-2B01B3E Static Voltage Regulator
  • Basler Electric 9017709102 PC Board
  • Basler Electric SR4A-2B01B3A Static Voltage Regulator
  • Basler Electric PRS-250 Veri-Sync Relay
  • Basler Electric 9066800102 Excitation Support System
  • Basler Electric BE1-87G Generator Differential Relay 9 1708 18 100
  • Basler Electric 36T865-2 BE03752001 Power Supply
  • Basler Electric M-300 149D940G02 Power Supply
  • Basler Electric ACA2040-25GM 4Mp 25Fps Area Scan Camera
  • Basler BE1-87G-S1A-A1C-A0N0 Differential Relay
  • Basler SR8A-2B06B3E Static Regulator SR8A2B06B3E
  • Basler SCP-210 Frequency Controller 9095400100
  • Basler BE1-59-A3E-A1J-N1N3F Overvoltage Relay BE159A3EA1JN1N3F
  • Basler 9 2011 11 100 Bracket Mounted Terminal Unit
  • Basler 9 1606 00 101 Voltage Regulator
  • Basler CBS-377 Current Boost System 9109600102
  • Basler 8650C72 Exciter Control Module PCB Rev 5
  • Basler C2EE1PA0N1F BE1-32R Reverse Power Relay
  • ADLINK HPCI-14S12U - Industrial Control Backplane 12PCI Backplane PCI-14S Passive Backplane
  • ADLINK PCIe-GIE74C - image acquisition card 4-CH GigE Vision PoE+ Frame Grabber
  • ADLINK PCI-8164 - control card 4-Axis Advanced Motion Controller Board
  • ADLINK PCIe-U304 - 4 Port USB3 PCIe Frame Grabbers USB Screw Hole Card
  • ADLINK PCI-9112 - Multi-Function Data Acquisition Card DAQ Card
  • ADLINK PCI-7432 - 51-12013-0A50 4-CH Isolated Numérique I/O PCI Cartes Digital I/O Card
  • ADLINK PCA-6106P3-0C1 REV.C1 - backplane 6-Slot Passive Backplane Board
  • ADLINK PCI-7224 - 24-CH Opto-Isolated Digital I/O PCI Board
  • ADLINK CPCI-7433R(G) - Digital Input Board Rear I/O CompactPCI Card
  • ADLINK EBP-13E4 - 51-46703-0A30 Industrial PC Backplane Passive Backplane
  • ADLINK PCIE-HDV62 - Image acquisition card High Definition Video Frame Grabber
  • ADLINK EBP-13E4 - 51-46703-0A30 Industrial Backplane Board Passive Backplane
  • ADLINK 90111-B1 / CPCI-6770 - PCB CPU MODULE CompactPCI Single Board Computer
  • ADLINK PCI-7248 - DATA ACQUISITION PCI CARD 48-CH Parallel Digital I/O Board
  • ADLINK PCI-7230 - 51-12003-0a50 board PCI7230 32-CH Isolated Digital I/O Card
  • ADLINK PCI2A000CB - 51-20000-0B30 Multi-Function DAQ Card Baseboard
  • ADLINK PCI-8134-005 - 4-Axis Motion Controller Card
  • ADLINK PCI-7224 - 24-CH Opto-Isolated Digital I/O PCI Card
  • ADLINK PCI-7434 - 64-CH Isolated Digital Output Card
  • ADLINK PCI-8132 - motion control card 2-Axis Servo & Stepper Controller
  • ADLINK PCI-8134 - Motion Controller PCI Card 4-Axis Controller Board
  • ADLINK PCI-8164 - Motion Control Card 51-12406-0A40 4-Axis Controller
  • ADLINK 51-12001-0C20 - Circuit Board Data Acquisition Interface Module Hardware
  • ADLINK NuPR0-840 - industrial control motherboard Full-Size PICMG CPU Board
  • ADLINK PCI-7444 - 51-12023-0A10 card 128-CH Isolated Digital Output Board
  • ADLINK PCI-1612B - data acquisition card 4-Port RS-232/422/485 Serial Communication Card
  • ADLINK PCI-6208V 009 - 8/16-CH 16-Bit Analog Output Cards PCB-I-E-482=6BX3
  • ADLINK NUPRO-935A/LV - industrial control motherboard Full-Size PICMG SBC Board
  • ADLINK PCI-9114DG - Multi-Function DAQ Card Data Acquisition PCI Card
  • ADLINK ACL-7130 - Data acquisition card Isolated Digital I/O Board
  • ADLINK ABX-6300D-4E1-BP - board ABX6300D4E1BP Video Interface Expansion Card
  • ADLINK CPCI-6940 - CPCI-6940/D1539/M16-0(EA)-000E 6U CompactPCI Processor Board
  • ADLINK NuPRO-760 - industrial control motherboard Half-Size PICMG SBC CPU Board
  • ADLINK IMB-M42H (G)-0020 - industrial control motherboard LGA1155 Micro-ATX Mainboard
  • ADLINK RTV-24 / PCI-MP4S - 51-12519-1C30 4-Channel Real Time Video Capture Board
  • Basler XR2002F Voltage Regulator 9139400101
  • Basler 2D80367G23 DXCB De-Excitation Module 1200V 5000A
  • Basler SR4A-2B15B3A Static Regulator 120V 50/60Hz
  • Basler SSR 125-12NF Static Regulator 9 1859 00 106
  • Basler BE1-BPR Breaker Protection Relay 9272000315
  • Basler SSR 63-12 Static Regulator 9 1859 00 101
  • Basler AEM-2020 Analog Expansion Module
  • Basler BE 25231-001 Transformer BE25231001
  • Basler MVC 108 Manual Voltage Control 9037000102
  • Basler PSS-100-Y5 Power System Stabilizer 0.1-5.0Hz
  • Basler Electric BE1A-25-M1G-A6T-N4V1F Sync-Check Relay
  • Basler Electric SR8A2B10B1A Static Voltage Regulator
  • Basler Electric SR8A2B10B1A Static Voltage Regulator
  • Basler Electric SSR 125-12 Static Voltage Regulator 9185900102
  • Basler Electric 90-73900-102 Power Supply (Westinghouse 2374A07G03)
  • Basler Electric 9400200117 Control Power Unit 12/24VDC 20W
  • Basler Electric BE1-87G Solid State Generator Differential Relay
  • Basler Electric BE1-32R Style C3ED1TA0S1F Solid State Protective Relay
  • Basler Electric SR32A2B05B3E Static Voltage Regulator
  • Basler Electric SR8A2B06B3A Static Voltage Regulator
  • Basler MOC3502 90-72300-116 Motor Potentiometer
  • Basler SR4A2310B1A Static Voltage Regulator
  • Basler Electric 90-88800-102 PRS-250 Veri-Sync Relay
  • Basler Electric 90-88800-102 PRS-250 Veri-Sync Relay
  • Basler SR4A-2B05A3E Static Regulator SR4A2B05A3E
  • Basler 9-0723-00-130 9072300130 Control Module
  • Basler BE1-79MA10A6JC0L0F Reclosing Relay
  • Basler CBS-377 Current Boost System 91096001
  • Basler SR4A1B05A3A Static Regulator 480V 62.5V 10VA
  • Basler BE159N A7ED1JC0S0F Protective Relay BE159N-0
  • Basler BE3-25A Auto-Synchronizer S.No. 728
  • Basler BE1-50 Instantaneous Overcurrent Relay G4EA1RG0N0F
  • Basler Electric KT3B Voltage Regulator
  • Basler Electric ACA2500-14GCSYM GigE Camera
  • Basler Electric XR2002F Voltage Regulator
  • Basler Electric BE1-50 Instantaneous Overcurrent Relay F2EA1PA0N5F
  • Basler Electric CBS 212A Current Boost System
  • Basler Electric BE147NE3FE1PC3N3F Negative Sequence Voltage Relay
  • Basler Electric BE1-79MA10A6JC0L0F Automatic Reclosing Relay
  • Basler Electric BE1-59N A6E E1C B0N1F Neutral Overvoltage Relay
  • Basler Electric MVC 108 Manual Voltage Control
  • Basler Electric BE1-59-A4E-E1C-A0N0F Overvoltage Relay
  • Basler BE1-57/27R Solid State Protective Relay
  • Basler BE3-25AX Time Overcurrent Relay
  • BASLER ELECTRIC BE1-24/A1EF1JC1N0F / BE124A1EF1JC1N0F Overvoltage Relay
  • Basler Electric Solid State Protective Relay BE1-32R Style B2ED1PB0N0F
  • Basler BE3-51-3E1E1 9320000110 24VDC Overcurrent Relay
  • Basler UFOV 260A Underfrequency Overvoltage Module
  • Basler 50F4EA1PA0N0F Instantaneous Overcurrent Relay
  • Basler BE1-50 Instantaneous Overcurrent Relay
  • Basler BE1-32 Solid State Protective Relay
  • Basler SCP 250-G-60 VAR Power Factor Controller
  • Basler BE1-59N A5EE1KC0N0F Ground Fault Relay
  • Basler BE1-79A Reclosing Relay
  • Basler BE1-32R E1EA1OA0N0F Reverse Power Relay
  • Basler DCQA-103 DCQC104-1 CMX-7D Circuit Board
  • Basler SSR125-12 Static Regulator 918500102
  • Basler 90 17709 112 Regulator Control Board
  • Basler AVC63-4 AVC634 Voltage Regulator
  • Basler 9 1049 04 100 PC Board Control Module
  • Basler SR4A-2B03B3A Static Voltage Regulator
  • Basler SR8A-2B15B3A Static Voltage Regulator
  • Basler KR7FFX Static Regulator 840V
  • Basler EL200-7 Voltage Regulator 90-660VAC 7A
  • Basler PRP210-1 Reverse Power Relay 9056300102
  • Basler SSR 63-12 Static Regulator 600VAC
  • Basler 9289901106 Digital Board
  • Basler DECS100 Voltage Regulator DECS100A01
  • Basler Electric CEM-2020 Contact Expansion Module
  • Basler Electric BE3-25-1 C1 N4 Synchronizing Check Relay
  • Basler Electric ACA2000-50GM GigE Camera 2MP 50fps
  • Basler Electric ACA2240-20GMSYM GigE Camera Sony IMX264
  • Basler BE1-50G Ground Overcurrent Relay