| 基于场景校验的风险评估算法研究 |
| |
| 引用本文: | 石峰,干露.基于场景校验的风险评估算法研究[J].信息安全与通信保密,2010(9):70-72. |
| |
| 作者姓名: | 石峰 干露 |
| |
| 作者单位: | 1. 杭州市信息中心,浙江,杭州,310026
2. 上海三零卫士信息安全有限公司,上海,200232 |
| |
| 摘 要: | 为了在风险评估过程中更全面地考虑关键资产、威胁、脆弱性和控制措施等要素之间的关系,更贴切地得到最终风险排序结果,根据当前国家信息安全风险评估相关规范标准,提出一种基于场景校验的风险评估算法。算法中,通过在常规的风险评估算法模型中先后引入了两次不同的场景校正因子s1和s2,应对不同项目场景中各要素之间关系复杂多变的特点进行了控制,从而使得到的风险排序结果能够更为准确地展现实际的风险情况。
|
| 关 键 词: | 风险评估 模型 场景校验 |
Study on Risk Assessment Algorithms Based on Scene Check |
| |
| SHI Feng,GAN Lu.Study on Risk Assessment Algorithms Based on Scene Check[J].China Information Security,2010(9):70-72. |
| |
| Authors: | SHI Feng GAN Lu |
| |
| Affiliation: | 1Hangzhou Information Center,Hangzhou Zhejiang 310026,China; 2 Shanghai 30wish Information Security Co.,Ltd.,Shanghai 200232,China) |
| |
| Abstract: | For the full consideration of the relationship among between key assets,threats,vulnerabilities,and control measures,and the acquirement of more appropriate results in the risk assessment process,a risk assessment algorithm based on scene check is proposed in accordance with the at-present state information security assessment standards.This algorithm improves risk ranking results by introducing scene-check factors s1 and s2 into the normal model,thus to control the impact of complex relationship among between all the factors in the scenes of different projects. |
| |
| Keywords: | risk evaluation model scene check |
| 本文献已被 维普 万方数据 等数据库收录! |
|
