Research on Framework of Information Classified Security Protection Capability

Firstly,this paper studies on relationship between threat and security protection capability,explains that they interact by business information system service of information system. At the same time,points out that security protection capability need to be classified,and the capability must be accord with information system’s security protection classification. Then we points out framework of protection capability from two aspects of security technology and management. And protection capacity is divided into different sorts,including protection,testing,resume response,system,organization person,security engineering,security operation and so on. Lastly,analyzes main embodiment of different classify protection capacity based on this framework. All these guide to choose security measure that they properly protect information system and make it relatively security,and provide theory basis for developing basic requirements for classified information system security.