摘要
介绍了信息安全风险评估的现状、相关准则以及基于CORAS框架的信息安全风险评估方法,并利用层次分析法对可能存在的风险进行量化,最后利用网上电子银行系统的实例,证明了该方法可以很好地适用于信息安全风险评估。
Information security risk assessment of the status and the correlation criterion were reviewed,then a new information security risk assessment method was put forward based on the CORAS frame,and the risk which possibly existed was quantified.Finally,example of on-line electronic bank system was introduced to improve that the method can be applied to information security risk assessment.
出处
《计算机应用》
CSCD
北大核心
2008年第S2期238-241,301,共5页
journal of Computer Applications
基金
国家自然科学基金资助项目(90718021)
航天CAST创新基金项目(CAST200839)
江苏省普通高校研究生科研创新计划资助项目(CX08S_009Z)
