With the scale of computer information system (CIS) expanding and the security technology developing, a systematic and normalized computer information system security architecture (CISSA) is needed to strengthen the design, development, implementation, evaluation and management of CISSA. In order to normalize the build of CISSA, and construct the security defense architecture in our country, a uniform CISSA model and the implementary standard must be built.

随着计算机信息系统规模的不断扩大和信息安全技术的不断发展，为了加强计算机信息系统安全体系的设计、开发、使用、评估和管理，需要对计算机信息系统安全体系进行系统化的认识和规范化的建设，因此必须建立统一的计算机信息系统安全体系模型和实施标准，规范计算机信息系统的安全体系建设，构筑我国计算机信息系统安全防范体系。