|
|||||
|
|
| 基于信息安全理论和模型的安全需求分析 | |
| 引用本文: | 闵京华,马卫国,胡道元. 基于信息安全理论和模型的安全需求分析[J]. 网络安全技术与应用, 2004, 0(11): 58-60 |
| 作者姓名: | 闵京华 马卫国 胡道元 |
| 作者单位: | 1. 北京清华得实科技股份有限公司,北京,100085 2. 中国北方工业公司,北京,100053 3. 清华大学,北京,100085 |
| 摘 要: | 本文在论述了上述信息安全理论和模型之后,阐述了如何运用信息安全理论和模型进行安全需求分析,从而得出一个层次清晰、定位准确、关系明了的安全需求集。这种方法可以避免安全需求分析时容易产生的盲目性和片面性,能够全面和综合地把握整体安全需求,有助于选择适度和足够的安全措施,防止设计上的安全漏洞,以保证整体安全。 |
| 关 键 词: | 信息安全保障体系 PPDRR模型 安全风险 安全需求 安全措施 |
The Analysis of Security RequirementsBased on Information Security Theory and Models |
|
| Min Jinghua Ma Weiguo Hu Daoyuan Beijing Tsinghua DASCOM Scie-Tech Co.,Ltd.,Beijing, China North Industries Corp.,Beijing Tsinghua University,Beijing. The Analysis of Security RequirementsBased on Information Security Theory and Models[J]. Net Security Technologies and Application, 2004, 0(11): 58-60 | |
| Authors: | Min Jinghua Ma Weiguo Hu Daoyuan Beijing Tsinghua DASCOM Scie-Tech Co. Ltd. Beijing China North Industries Corp. Beijing Tsinghua University Beijing |
| Affiliation: | Min Jinghua1 Ma Weiguo2 Hu Daoyuan31 Beijing Tsinghua DASCOM Scie-Tech Co.,Ltd.,Beijing,1000852 China North Industries Corp.,Beijing 1000533 Tsinghua University,Beijing,100085 |
| Abstract: | This paper applies information security theory and models to analyze security requirements in order to give aclearly layered, precisely oriented and well defined set of security requirements. In this way, driftlessness and unilateralismcan be avoided and the whole security requirements of an information system can be grasped, so that the proper counter-measures can be selected, the design leaks can be a voided and the integral security can be guaranteed. |
| Keywords: | Information Security System PPDRR Model Security Risk Security Requirements ountermeasure |
| 本文献已被 CNKI 万方数据 等数据库收录! | |