ICS35.040L80中华人民共和国国家标准GB/TXXXXX—XXXX信息安全技术安全漏洞等级划分指南Informationsecuritytechnology—Vulnerabilityclassificationguide(征求意见稿)(2012年09月20日)XXXX-XX-XX发布XXXX-XX-XX实施GB/TXXXXX—XXXX目次前言..................................................................................II引言.................................................................................III1范围................................................................................12规范性引用文件......................................................................13术语和定义..........................................................................14安全漏洞等级划分方法................................................................24.1等级划分要素....................................................................24.1.1概述........................................................................24.1.2访问路径....................................................................24.1.3利用复杂度..................................................................24.1.4影响程度....................................................................24.2等级划分........................................................................4附录A(资料性附录)安全漏洞等级划分步骤及示例.......................................5A.1安全漏洞等级划分步骤............................................................5A.2安全漏洞等级划分举例............................................................5表1访问路径赋值说明表...............................................................2表2攻击复杂度赋值说明表.............................................................2表3影响程度赋值说明表...............................................................3表4保密性、完整性和可用性影响赋值说明表.............................................3表5影响程度赋值对应表...............................................................3表6安全漏洞危害等级划分表..........................................................
