| 涉密信息系统风险评估与安全测评实施 |
| |
| 引用本文: | 刘玉林,王建新,谢永志.涉密信息系统风险评估与安全测评实施[J].信息安全与通信保密,2007(1):142-144. |
| |
| 作者姓名: | 刘玉林 王建新 谢永志 |
| |
| 作者单位: | 1. 中南大学信息科学与工程学院,湖南,长沙,410082
2. 中国信息安全产品测评认证中心华中测评中心,湖南,长沙,410001 |
| |
| 摘 要: | 风险评估与安全测评是两种不同的安全评估活动,在信息安全建设中占有重要地位。论文通过介绍风险评估与安全测评的基本概念及相互关系,针对涉密信息系统的特殊性要求,深入探讨了涉密信息系统风险评估与安全测评的具体可操作的实施方法。
|
| 关 键 词: | 风险评估 安全测评 涉密信息系统 |
| 文章编号: | 1009-8054(2007)01-0142-03 |
| 修稿时间: | 2006年7月12日 |
A Study about Secret-involved Information System Risk Evaluation and Security Testing Evaluation |
| |
| Liu Yulin,Wang Jianxin,Xie Yongzhi.A Study about Secret-involved Information System Risk Evaluation and Security Testing Evaluation[J].China Information Security,2007(1):142-144. |
| |
| Authors: | Liu Yulin Wang Jianxin Xie Yongzhi |
| |
| Abstract: | Risk evaluation and security testing evaluation, which are different kinds of security evaluation activities, are important to information security. In this article, we analyze the concept and relationship of risk evaluation and security testing evaluation in detail. Considering the difference of secret-involved information system, we explore the way to carry out risk evaluation and security testing evaluation of secret-involved information system. |
| |
| Keywords: | risk evaluation security testing evaluation secret-involved information system |
| 本文献已被 CNKI 万方数据 等数据库收录! |
|
