| SSAM与CEM的研究与比较 |
| |
| 引用本文: | 谭良.SSAM与CEM的研究与比较[J].信息安全与通信保密,2006(10):11-13. |
| |
| 作者姓名: | 谭良 |
| |
| 作者单位: | 四川师范大学四川省软件重点实验室,四川,成都,610066 |
| |
| 基金项目: | 2005年度四川省教育厅项目2005A099 |
| |
| 摘 要: | 信息安全评估标准和评估方法是一个整体,评估标准是评估的依据,评估方法是评估的实施。论文分别介绍了CC标准的评估方法CEM(Common Evaluation Methodology)和SSE-CMM的评估方法SSAM(SSE-CMM Appraisal Method)的评估模型,并对CEM和SSAM进行比较分析后指出:CEM和SSAM评估在针对的问题和具体目的、评估方式和特点以及评估结果反映的实质等方面均存在差异。
|
| 关 键 词: | 安全评估标准 安全评估方法 CEM SSAM |
| 文章编号: | 1009-8054(2006)10-0011-03 |
| 修稿时间: | 2005年12月27 |
Comparing of SSAM and CEM |
| |
| Tan Liang.Comparing of SSAM and CEM[J].China Information Security,2006(10):11-13. |
| |
| Authors: | Tan Liang |
| |
| Abstract: | Information Security Evaluation Criteria, which is evaluating rule, and Appraise Method, which is evaluat- ing implementation, are inseparable. In this paper, the evaluation model of CEM (Common Evaluation Methodology) of CC (Common Criteria) and SSAM (SSE-CMM Appraisal Method) of SSE-CMM are introduced, and compared each other. It is indicated that CEM and SSAM are distinguished in solving problem and actual objective, evaluation model and character, essential about evaluation results and so on. |
| |
| Keywords: | security evaluation criteria security evaluation methodology CEM SSAM |
| 本文献已被 CNKI 万方数据 等数据库收录! |
|
