| 基于ISO13335的信息安全管理平台 |
| |
| 引用本文: | 杨杉,李云雄,曹波,高飞.基于ISO13335的信息安全管理平台[J].信息安全与通信保密,2010(10):78-79. |
| |
| 作者姓名: | 杨杉 李云雄 曹波 高飞 |
| |
| 作者单位: | 华中电网公司信息中心,湖北武汉430015 |
| |
| 摘 要: | 电力行业新近部署的信息安全集中管理平台安全运营中心(SOC)和边界安全监测系统(SMS),采用了依据IS013335实现的以资产为核心的风险评估模型。结合电力信息安全现状,深入分析了SOC和SMS对IS013335的实现程度,指出了目前SOC和SMS在信息安全风险评估方面仍需要解决的问题,给出了改进相应问题的建议,最后展望了电力信息安全风险评估的发展前景。
|
| 关 键 词: | 信息安全集中管理平台安全运营中心 边界安全监测系统 ISO13335 风险评估 |
Information Security Management Platforms Based on ISO 13335 |
| |
| YANG shan,LI yun-xiong,CAO bo,GAO fei.Information Security Management Platforms Based on ISO 13335[J].China Information Security,2010(10):78-79. |
| |
| Authors: | YANG shan LI yun-xiong CAO bo GAO fei |
| |
| Affiliation: | (Information Center of Central China Grid Company Limited, Wuhan Hubei 430015, China) |
| |
| Abstract: | SOC (Security Operating Center) and SMS (Security Management System) newly deployed in the electric power industry adopt the risk analysis model based on ISO13335. The article, in combination of the electric-power information security situation, analyzes in detail the level of SOC/SMS implementation to ISO13335. It points out the problems of SOC/SMS in risk Assessment, and gives the corresponding solutions. Finally the future of risk assessment is forecasted. |
| |
| Keywords: | SOC SMS ISO13335 risk assessment |
| 本文献已被 维普 万方数据 等数据库收录! |
