|
|||||
|
|
| 信息安全风险评估方法研究 | |
| 引用本文: | 任帅,慕德俊,张弢,姚磊. 信息安全风险评估方法研究[J]. 信息安全与通信保密, 2009, 0(2): 54-56 |
| 作者姓名: | 任帅 慕德俊 张弢 姚磊 |
| 作者单位: | 西北工业大学,自动化学院控制与网络安全研究所,陕西,西安,710072 |
| 摘 要: | 信息安全风险评估是建立信息安全保障体系过程中重要的评价方法和决策机制,是信息安全研究的重要组成部分。文章阐述了国内外信息安全风险评估的发展状况,对信息安全风险评估方法进行了分类和总结,通过对典型评估方法的讨论,深入分析了各种分析方法在评估过程中的优劣侧重和综合应用性。最后,就中国信息安全的发展状况,提出了在信息安全评估工作中急需解决的若干问题。 |
| 关 键 词: | 信息安全 风险评估 评估方法 |
Survey of Information Security Risk Assessment Methods |
|
| REN Shuai,MU Do-jun,ZHANG Tao,YAO Lei. Survey of Information Security Risk Assessment Methods[J]. China Information Security, 2009, 0(2): 54-56 | |
| Authors: | REN Shuai MU Do-jun ZHANG Tao YAO Lei |
| Affiliation: | (School of Automation, Northwestern Polytechnical University, Xi'an Shaanxi 710072, China) |
| Abstract: | Information Security Risk Assessment is crucial for the establishment process of information security system, and whether as an evaluation method or as a decision-making mechanism, is also an important part of informa- tion security research. This paper first describes the development of risk evaluation for information security both at home and abroad. Then it provides classification and summary of risk evaluation methods for information security. It also describes the in-depth analysis on the superior and inferior in the process of assessment and integrated application of various methods. Finally, in considering the development of information security in China, some urgent problems in information security evaluation work are given. |
| Keywords: | information security risk assessment evaluation method |
| 本文献已被 维普 万方数据 等数据库收录! | |