| 等级保护下言息系统的量化综合评估 |
| |
| 引用本文: | 唐立军. 等级保护下言息系统的量化综合评估[J]. 信息网络安全, 2011, 0(9): 110-112. DOI: 10.3969/j.issn.1671-1122.2011.09.034 |
| |
| 作者姓名: | 唐立军 |
| |
| 作者单位: | 北京双洲科技有限公司,北京,100101 |
| |
| 摘 要: | 该文针对目前信息系统评估方法多从财务、管理效能方面进行评价,缺乏安全风险方面的考量这一现状,首次将信息安全风险引入信息系统的评价中,利用层次分析法构建了等级保护的评估模型.并以此评估了在等保三级安全要求下,单机工作模式和集中管控模式的优劣,验证了该评估模型的有效性.
|
| 关 键 词: | 信息系统评估 安全风险 等级保护 层次分析法 |
Comprehensive Measurement for Information System under the Grade Protection |
| |
| TANG Li-jun. Comprehensive Measurement for Information System under the Grade Protection[J]. Netinfo Security, 2011, 0(9): 110-112. DOI: 10.3969/j.issn.1671-1122.2011.09.034 |
| |
| Authors: | TANG Li-jun |
| |
| Affiliation: | TANG Li-jun ( Z2 science Co.,Ltd., Beijing 100101, China ) |
| |
| Abstract: | Most methods in the domain of information system appraisal pay attention to either the financial policy or the administration efficiency, and as a result the security risk element is taken lightly. In this paper, the information security risk element is introduced into the information system appraisal process and the appraisal model under the third level Grade Protection of Information Security is suggested. Finally, through the appraisal single computer system and the centralism control system, have verified the effectiveness of this appraisal model. |
| |
| Keywords: | information system appraisal security risk grade protection of information security analytic hierarchy process |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
