| 信息安全风险评估中的风险计算 |
| |
| 引用本文: | 李智勇,牛旭明,锁延锋,耿振国,桂坚勇.信息安全风险评估中的风险计算[J].无线电通信技术,2006,32(2):44-47. |
| |
| 作者姓名: | 李智勇 牛旭明 锁延锋 耿振国 桂坚勇 |
| |
| 作者单位: | 解放军信息安全测评认证中心,北京,100016 |
| |
| 摘 要: | 首先从信息安全风险评估的流程入手,着重叙述了信息安全风险评估过程中风险计算的原理和步骤。针对目前风险计算缺乏统一的标准和具体计算方法的问题,结合实际的风险评估工作,探索性地给出一种改进的风险计算方法。在深入研究常用的几种风险计算方法后,对改进算法的客观性和准确性做了进一步的阐述。
|
| 关 键 词: | 信息安全 风险评估 风险计算 量化分析 |
| 文章编号: | 1003-3114(2006)02-44-4 |
| 收稿时间: | 2005-10-12 |
| 修稿时间: | 2005-10-12 |
Risk calculation in information security risk assessment |
| |
| LI Zhi-yong,NIU Xu-ming,SUO Yan-feng,GENG Zhen-guo,GUI Jian-yong.Risk calculation in information security risk assessment[J].Radio Communications Technology,2006,32(2):44-47. |
| |
| Authors: | LI Zhi-yong NIU Xu-ming SUO Yan-feng GENG Zhen-guo GUI Jian-yong |
| |
| Affiliation: | People Liberation Army Information Security Test Evaluation Center , Beijing 100016, China |
| |
| Abstract: | At first, start with from procedure of information security risk assessment, describe the principle and step that risk calculate in the evaluation process especially. At present, the risk calculating lacks unity standard and the concrete computational method, combining with practice of risk assessment, a kind of improved algorithm is proposed in this paper. The improved method is further explained from objectivity and accuracy of the risk calculation, after investigating several kinds of extant risk calculating method. |
| |
| Keywords: | information security risk assessment risk calculation quantization analysis |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
