| 一种基于FCME模型的信息系统安全评估方法 |
| |
| 引用本文: | 闫强,舒华英,陈钟,段云所.一种基于FCME模型的信息系统安全评估方法[J].计算机工程,2006,32(2):127-128,134. |
| |
| 作者姓名: | 闫强 舒华英 陈钟 段云所 |
| |
| 作者单位: | 1. 北京邮电大学经济管理学院,北京,100876
2. 北京大学计算机科学技术系,北京,100871 |
| |
| 摘 要: | 安全要素评估是信息系统安全评估中的一个关键问题,而国家标准GB 7859对安全要素的定义是纲领性的,不易直接度量。如何建立一种易于理解且可行的安全要素评估方法,已成为信息系统安全评估中的一个紧迫问题。结合安全评估工具的研制工作,该文提出了安全要素评估所采用的要素-准则-度量-证据模型(FCME),并介绍了FCME模型的实现方式。
|
| 关 键 词: | 安全评估 要素-准则-度量-证据模型 安全要素 |
| 文章编号: | 1000-3428(2006)02-0127-02 |
| 收稿时间: | 2004-12-25 |
| 修稿时间: | 2004-12-25 |
An Information System Security Evaluation Method Based on FCME Model |
| |
| YAN Qiang,SHU Huaying,CHEN Zhong,DUAN Yunsuo.An Information System Security Evaluation Method Based on FCME Model[J].Computer Engineering,2006,32(2):127-128,134. |
| |
| Authors: | YAN Qiang SHU Huaying CHEN Zhong DUAN Yunsuo |
| |
| Abstract: | Security elements evaluation is a primary problem of information system security evaluation. However the security elements defined in evaluation standard GB 17859 are abstract and hard to measure directly. It has become an urgent task to establish an understandable and practicable evaluation method for security elements. Based on the research and development process of security evaluation tools, this paper introduces the factor-criteria-metrics-evidence (FCME) model, which is used in security elements evaluation process, and discusses the implementation of the model. |
| |
| Keywords: | Security evaluation Factor-criteria-metrics-evidence model Security element |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
