Shanghai Library_China publishes Manual on Security Management of Digital Libraries

Library Watch

China publishes Manual on Security Management of Digital Libraries

2017-10-30

In July 2007, China’s Ministry of Culture established the National Joint Conference on the Construction and Service of Digital Library. The members of the conference include the main institutions which is relevant to the construction and service of digital library in China, including National Library of China, National Public Cultural Development Center, Shanghai Library, National Science Library of Chinese Academy of Sciences, CALIS Management Center, CADAL Management Center, Party School Library of the Central Committee of CPC and National University of Defense Technology Library.
So far, the National Joint Conference on the Construction and Service of Digital Library has been held for 18 times, conducting continuous insightful discussions on the key factors and frontier issues on the construction and service of China’s digital libraries. With a series of partnerships, the conference yielded much fruit over the past years, including the publication of Manual on the Service Policy of Digital Library and Manual on the Resource Construction of Digital Library, playing an important role in promoting the construction and service of digital libraries, and exerting positive influence in China’s library industry.
The Manual on Security Management of Digital Libraries sums up the information security management in the construction and service of digital libraries, providing basic guideline on implementing information security management based on the simplified version of ISO 27000 standards. The Manual clarifies the definitions related to the security of digital libraries, stipulating that securing the confidentiality, integrity and availability of information resources is the key point in the security management of digital libraries. It systematically describes the entire framework of the security management of digital libraries, covering all the factors related to information security management including security policy, visit control, information resources security, environmental security, backup and disaster recovery, emergency response and security statement.