目次前言................................................................................III引言.................................................................................IV1范围...............................................................................12规范性引用文件.....................................................................13术语和定义.........................................................................14等级保护实施概述...................................................................14.1基本原则.........................................................................14.2角色和职责.......................................................................14.3实施的基本流程...................................................................25信息系统定级.......................................................................45.1信息系统定级阶段的工作流程.......................................................45.2信息系统分析.....................................................................45.2.1系统识别和描述.................................................................45.2.2信息系统划分...................................................................55.3安全保护等级确定.................................................................65.3.1定级、审核和批准...............................................................65.3.2形成定级报告...................................................................66总体安全规划.......................................................................76.1总体安全规划阶段的工作流程.......................................................76.2安全需求分析.....................................................................86.2.1基本安全需求的确定.............................................................86.2.2额外/特殊安全需求的确定........................................................96.2.3形成安全需求分析报告...........................................................96.3总体安全设计....................................................................106.3.1总体安全策略设计..............................................................106.3.2安全技术体系结构设