IDC/ISP information security management system (ISMS) is a system with basic data management, access log management, information security management and other functions that IDC/ISP business operators must build to meet the information security management needs of operators and telecom management departments.
Each IDC/ISP operator shall build a unified ISMS and communicate with the security supervision system (SMMs) built by the telecommunication management department through the information security management interface (ISMI) to realize the relevant functions required by the Ministry of industry and information technology.
IDC information security management system includes control unit (CU) and execution unit (EU).
1、 Cu is responsible for communicating with SMMS of Traffic Management Bureau, receiving management instructions from SMMS, and reporting data to SMMS according to requirements. Meanwhile, CU distributes management instructions to EU for execution, and receives execution results and log records from EU, so as to realize centralized management of EU at each execution point of the unit, and complete scheduling, forwarding, execution, summary, analysis and early warning.
2. EU captures the network data, identifies the network protocol used in the data packet, discovers the application service, network agent service, website domain name and user's Internet information of the monitored line host, and timely reports to the CU and responds to the instructions of the CU. The protocol blocks the illegal website / webpage and makes the website lose its service function.
The relationship between control unit and execution unit of ISMS and the relationship between ISMS and SMMS are shown in the following figure: