计算机工程与应用
計算機工程與應用
계산궤공정여응용
COMPUTER ENGINEERING AND APPLICATIONS
2010年
5期
93-95
,共3页
张弢%慕德俊%任帅%姚磊
張弢%慕德俊%任帥%姚磊
장도%모덕준%임수%요뢰
信息安全风险评估%风险矩阵%Borda序值%层次分析法
信息安全風險評估%風險矩陣%Borda序值%層次分析法
신식안전풍험평고%풍험구진%Borda서치%층차분석법
information security assessment%risk-matrix%Borda count%analytical hierarchy process
信息安全风险等级的评定在信息安全风险管理中至关重要,量化风险数值依旧是当前评估领域的热点.将风险矩阵法引入信息安全风险评估,构建了以专家二维矩阵、Borda排序和层次分析法为评估流程的风险评估模型,将定性的过程定量化,提高了评估的客观性.最后以校控制与网络实验室为评估对象进行实例计算.
信息安全風險等級的評定在信息安全風險管理中至關重要,量化風險數值依舊是噹前評估領域的熱點.將風險矩陣法引入信息安全風險評估,構建瞭以專傢二維矩陣、Borda排序和層次分析法為評估流程的風險評估模型,將定性的過程定量化,提高瞭評估的客觀性.最後以校控製與網絡實驗室為評估對象進行實例計算.
신식안전풍험등급적평정재신식안전풍험관리중지관중요,양화풍험수치의구시당전평고영역적열점.장풍험구진법인입신식안전풍험평고,구건료이전가이유구진、Borda배서화층차분석법위평고류정적풍험평고모형,장정성적과정정양화,제고료평고적객관성.최후이교공제여망락실험실위평고대상진행실례계산.
The assessment of information security risk rank is vital in information security risk management.Quantities risk rank is still a hot spot in assessment field.The risk matrix method is brought into assessment.It conceives an assessment model processed by expert 2-dimension matrix.Borda sequence and gray analytical hierarchy process.The qualitative process is quantized.It increases the objectivity of the result.Last,the control and network lab in the school is used as a study case,and its risk rank is calculated.