| 信息系统风险的多级模糊综合评判模型 |
| |
| 引用本文: | 肖龙,戴宗坤. 信息系统风险的多级模糊综合评判模型[J]. 四川大学学报(工程科学版), 2004, 36(5): 98-102 |
| |
| 作者姓名: | 肖龙 戴宗坤 |
| |
| 作者单位: | 四川大学,信息安全研究所,四川,成都610064 |
| |
| 基金项目: | 国家863高技术研究发展计划资助项目(2001AA142171) |
| |
| 摘 要: | 在信息系统的风险分析中,由于诸多风险影响因素具有较强的模糊性,很难通过有效的数据累计计算系统风险,实现风险决策的量化分析。通过分析信息系统的风险,构建风险事件发生概率及其造成损失的层次化结构,运用层次分析法确定层次结构中风险影响因素的权重系数,同时采用模糊综合评判的方法实现了系统风险的量化,并改进了评判方法和评价准则,最后通过应用实例说明算法的应用。通过这种方法,不但量化了系统风险,而且将其运用于评估可行性方案集的风险估计上,还能有效地实现风险控制策略的选择,实现系统风险的有效控制。
|
| 关 键 词: | 信息系统 风险评估 模糊综合评判 层次分析 权重系数 |
| 文章编号: | 1009-3087(2004)05-0098-05 |
Model of Multilevel Fuzzy Comprehensive Risk Evaluation of Information System |
| |
| XIAO Long,DAI Zong-kun. Model of Multilevel Fuzzy Comprehensive Risk Evaluation of Information System[J]. Journal of Sichuan University (Engineering Science Edition), 2004, 36(5): 98-102 |
| |
| Authors: | XIAO Long DAI Zong-kun |
| |
| Abstract: | In the risk analysis of information system, it's very difficult to effectively quantify the risk with only collecting and counting data because lots of risk factors are very fuzzy. This article attempts to set up a comprehensive model to quantify the risk. At first, the hierarchy model for the probability of risk events and the severity of adverse effects are constructed. And then the Analytic Hierarchy Process (AHP) and Fuzzy Comprehensive Evaluation (FCE) method are applied to measure the weight coefficients and quantify the risk factors in the hierarchy model.The FCE method and its quantification of evaluation criteria are discussed in this paper. At last a calculation example is illustrated. It is believed that the method put forward by this paper can not only quantify the risk of information system, but also can effectively choose the strategy for risk management. |
| |
| Keywords: | information system risk analysis Fuzzy Comprehensive Evaluation Analytic Hierarchy Process weight coefficient |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
