| 信息安全风险评估策略研究 |
| |
| 引用本文: | 王涛,陈金仕.信息安全风险评估策略研究[J].现代电子技术,2012,35(9):73-76. |
| |
| 作者姓名: | 王涛 陈金仕 |
| |
| 作者单位: | 南京电子设备研究所,江苏南京,210007 |
| |
| 摘 要: | 风险评估是当前企事业单位信息化工作的迫切需要和客观的需求,在此结合当前风险评估发展的现状,通过构造风险评估模型,提出了一种以定量方式为主的结构化的风险评估分析方法。该方法通过分析信息资产价值、威胁值、弱点值,合理地计算出风险值后构造出一种结构化的风险评估体系,提高了信息系统的安全防护能力。
|
| 关 键 词: | 风险评估 信息安全 信息资产价值 威胁值 弱点值 |
Research on strategy of information security risk assessment |
| |
| WANG Tao
,
CHEN Jin-shi.Research on strategy of information security risk assessment[J].Modern Electronic Technique,2012,35(9):73-76. |
| |
| Authors: | WANG Tao CHEN Jin-shi |
| |
| Affiliation: | (Nanjing Institute of Electronic Equipment,Nanjing 210007,China) |
| |
| Abstract: | Risk assessment is the current urgent need and objective requirement of the informational work in the information technology enterprises.With the current status of the development of risk assessment,a structured risk assessment analysis method based on the quantify is presented by constructing a risk assessment model.The method constructed a structured risk assessment system and improved the ability of information systems′ security by analyzing the value of information asset,threat and vulnerability after calculating risk value. |
| |
| Keywords: | risk assessment information security information net worth threat factor vulnerability |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
