According to the Directive Network and Information Security on European Union requirements, this paper tries to identify the security framework of network and information system, to analyze the possible impact on the critical information infrastructure, summarize the characteristics of the security framework directive,and the implementing advantages and limitations. For effective implementation the Cybersecurity Law of the People's Republic of China, it is an enlightenment of exploring the implementation of the security assurance.%围绕欧洲《网络与信息安全指令》有关要求,本文尝试识别构建的网络与信息系统安全框架,分析指令要求对关键信息基础设施网络安全保障的可能影响,总结指令安全框架的特点,及其实施的优势和局限.为落实我国《网络安全法》关键信息基础设施有关安全审查等要求,探析安全保障工作实施启示.
展开▼