The predecessor of ISO/IEC 27001 for information security management requirements was the British standard BS7799, which was proposed by the British Standards Institution (BSI) in February 1995 and revised in May 1995. BSI revised the standard in 1999. BS7799 is divided into two parts: BS7799-1, Implementation Rules for Information Security Management; BS7799-2， Information Security Management System Specification. The first part provides recommendations for information security management for personnel responsible for initiating, implementing, or maintaining security within their organization; The second part explains the requirements for establishing, implementing, and documenting an Information Security Management System (ISMS), and specifies the requirements for implementing security controls based on the needs of independent organizations