| 适用于SG-ERP的信息安全风险评估方法的研究 |
| |
| 引用本文: | 崔阿军,范迪龙. 适用于SG-ERP的信息安全风险评估方法的研究[J]. 电力信息化, 2011, 9(3): 97-100 |
| |
| 作者姓名: | 崔阿军 范迪龙 |
| |
| 作者单位: | 甘肃电力科学研究院,甘肃,兰州,730050 |
| |
| 摘 要: | 随着SG-ERP在电力企业的全面应用, 如何有效保障SG-ERP系统的安全是亟待解决的关键问题, 也是安全风险评估需要解决的主要内容。在分析现有信息安全风险评估理论和风险评估模型的基础上,探讨了适用于SG-ERP的风险评估方法,该方法的评估过程紧密结合了SG-ERP应用的组织特征和组织业务等背景信息,风险计算通过对系统的重要性分级,综合考虑了系统的威胁、脆弱点和已有的安全措施, 真实客观地反映了SG-ERP所面临的风险等级, 为等保加固的实施奠定了坚实的基础。
|
| 关 键 词: | SG-ERP 信息安全 风险评估 风险计算 |
Research on Information Security Risk Assessment Method for SG-ERP |
| |
| CUI A-jun,FAN Di-long. Research on Information Security Risk Assessment Method for SG-ERP[J]. Electric Power Information Technology, 2011, 9(3): 97-100 |
| |
| Authors: | CUI A-jun FAN Di-long |
| |
| Affiliation: | CUI A-jun,FAN Di-long(Gansu Electric Power Research Institute,Lanzhou 730050,China) |
| |
| Abstract: | With the full application of SG-ERP in electric power enterprises,how to guarantee the security of the system has become a key problem that need be solved urgently,and it is also the main content to be solved by security risk assessment.Based on the analysis of existing information security risk assessment theory and risk assessment models,this paper discusses a security risk assessment method applied to SG-ERP.The assessment process is connected closely with the background information of organizational cha... |
| |
| Keywords: | SG-ERP |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
