C114 News March 26 (Lin Wan) At the recently held cyber security forum, Zhu Guobang, Director of the Cyber Security Bureau of the Ministry of Public Security, delivered a brilliant speech entitled "Interpretation of Grade Protection Standard 2.0". Zhu Guobang revealed that hierarchical protection has entered a new stage, and the 2.0 standard of hierarchical protection is expected to be introduced in April this year.

　　Zhu Guobang, Director of Network Security Bureau of the Ministry of Public Security

　　In 1994, the state established the hierarchical protection system. 2007-2017 is the era of hierarchical protection 1.0. In 2007, the Ministry of Public Security led the implementation of the network security hierarchical protection system in conjunction with the Secret Bureau and the Cryptographic Bureau.

　　Zhu Guobang pointed out that in the past ten years, the Ministry of Public Security has focused on five tasks: grading, filing, evaluation, rectification, supervision and inspection of hierarchical protection, formulating policies and standards for hierarchical protection, and guiding various sectors to implement the hierarchical protection system. At the same time, it has achieved policy leadership and industry support.

　　"Nowadays, the level protection has entered a new stage - the level protection standard 2.0 era." Zhu Guobang said that Classified Protection Standard 2.0 is based on the current changes in the situation of network security, task requirements and the development of the whole technology, to re-examine the hierarchical protection system, and put forward new policies and requirements in four aspects.

　　First, on June 1, 2017, the National Network Security Law was formally promulgated and implemented. Article 21 of the Network Security Law clearly points out that the State implements the network security hierarchical protection system, and should fulfill the obligations of network security according to the requirements of network security hierarchical protection, which is the basic system determined by law.

　　Secondly, there are some changes in Level Protection 2.0, which is reflected in the great expansion of the object of network security level protection supervision. In the past, more and more traditional information systems have been developed and changed. Now, the development and changes of the whole information system have changed greatly, which is also the key problem to be solved in Level Protection 2.0. Originally, traditional systems have been paid attention to, but now cloud platforms and big data platforms have been paid attention to. Security, for radio and television, is concerned about the security of financial media.

　　Third, the measures of network security level protection will be further improved, which is the core of level protection 2.0. In the 2.0 era, the Ministry of Public Security has taken the lead in formulating regulations on network security grade protection. The Central Network Information Office, Secret Bureau and Cryptographic Bureau have basically reached an agreement to prepare the four committees to sign and report to the State Council for the adoption of legislative procedures. In this regulation on hierarchical protection, there are provisions for the classification of network security grade protection. The case raises some new requirements. For example, in the process of grading, the evaluation of each grading unit is required to solve the problem of inaccurate grading; for example, in the filing aspect, the public security organs at or above the county level can be adjusted for the filing, which was originally accepted at the prefecture and municipal level, and so on. At the same time, level protection 2.0 also strengthens the protection requirements for data security of network operators.

　　Fourthly, the grade protection 2.0 standard is expected to be issued in April this year. It revises a series of basic requirements of grade protection, technical requirements of safety design and evaluation requirements of grade protection issued in 2008. The 2.0 standard will also publish the standards of cloud computing, big data, Internet of things, mobile interconnection level protection. It has a new working mechanism, including level protection coordination mechanism, and the corresponding mechanism of close communication and cooperation with the competent industry departments. It will also give full play to the role and strength of evaluation agencies, service agencies, scientific research institutes and other aspects, and promote the whole network security. The implementation of the hierarchical protection system will further strengthen the overall safety protection.