| 基于等级保护的信息安全评估算法研究 |
| |
| 引用本文: | 查红泽.基于等级保护的信息安全评估算法研究[J].电子科技,2019,32(11):78-82. |
| |
| 作者姓名: | 查红泽 |
| |
| 作者单位: | 云南南天电子信息产业股份有限公司 信息安全测评中心,云南 昆明 650000 |
| |
| 基金项目: | 云南省科技厅科技项目(2017KJF35762) |
| |
| 摘 要: | 对信息安全系统要进行安全评估,首先要考虑的问题为如何建立模型进行风险评估分析。针对这一问题,文中基于等级保护提出一种信息安全风险评估方法,并建立信息系统安全评估模型。以GBT 20984-2007作为评估依据,针对主机安全与网络安全建立层次结构,并利用权重计算方法RISK-Weight 算法完成对模型的计算与分析。实例测试结果表明,该评估方法降低人为主观因素的影响,实现对信息系统安全科学的量化评估。
|
| 关 键 词: | 信息安全 安全评估 层次分析法 等级保护 |
| 收稿时间: | 2018-11-09 |
Research on Information Security Evaluation Algorithm Based on Hierarchical Protection |
| |
| ZHA Hongze.Research on Information Security Evaluation Algorithm Based on Hierarchical Protection[J].Electronic Science and Technology,2019,32(11):78-82. |
| |
| Authors: | ZHA Hongze |
| |
| Affiliation: | Information Security Evaluation Center,Yunnan NantianElectronic Information Industry Co. Ltd.,Kunming 650000,China |
| |
| Abstract: | The key issue for evaluating information security systems is the establishment and analysis of risk assessment indicators. Aiming at this problem, this paper proposed an information security risk assessment method based on hierarchical protection and establishes an information system security assessment model. Based on GBT 20984-2007, a hierarchical structure was established for host security and network security, and the calculation and analysis of the model were completed by using the weight calculation method RISK-Weight algorithm. The example's results showed that the evaluation method reduced the influence of human subjective factors and achieved a quantitative assessment of the security science of information systems. |
| |
| Keywords: | information security security assessment AHP method classified protection |
| 本文献已被 万方数据 等数据库收录! |
| 点击此处可从《电子科技》浏览原始摘要信息 |
|
点击此处可从《电子科技》下载全文 |
|
