| 基于ISO 7001的电力信息安全风险评估模型 |
| |
| 引用本文: | 王甜,徐晖,魏理豪,崔磊.基于ISO 7001的电力信息安全风险评估模型[J].电力信息化,2011,9(7):89-93. |
| |
| 作者姓名: | 王甜 徐晖 魏理豪 崔磊 |
| |
| 作者单位: | 广东电网公司信息中心,广东,广州,510600;广东电网公司信息化评测实验室,广东,广州,510600 |
| |
| 摘 要: | 目前,电力信息安全风险评估逐步受到重视。文章结合广东电网公司实施信息安全风险评估的经验,提出基于ISO27001的信息安全风险评估模型。该模型依据国际通用的信息安全管理体系ISO27001,引入信息安全三元理论,能够从管理、运行、技术3个层面全面评估信息安全风险。
|
| 关 键 词: | 电力信息安全 风险评估 安全管理体系 |
A Model of Information Security Risk Assessment in Power System Based on ISO 27001 |
| |
| WANG Tian,XU Hui,WEI Li-hao,CUI Lei.A Model of Information Security Risk Assessment in Power System Based on ISO 27001[J].Electric Power Information Technology,2011,9(7):89-93. |
| |
| Authors: | WANG Tian XU Hui WEI Li-hao CUI Lei |
| |
| Affiliation: | 1.Information Center of Guangdong Power Grid Corporation, Guangzhou 510600, China; 2. Software Tesing Lab, Guangdong Power Grid Corporation, Guangzhou 510600, China) |
| |
| Abstract: | Information security risk assessment in power system gained more attention gradually. This paper proposed an information security risk assessment model based on ISO 27001 combine with experience of information security risk assessment work in Guangdong Power Grid of CSG. This new model basis on the information security management system ISO 27001, draws trialism of information security into practice. This model could comprehensively assess the information security risk in aspect of management, operation and technology. |
| |
| Keywords: | Information Security of Power System Rick Assessment Information Security Management System |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
