摘要
本文在论述了上述信息安全理论和模型之后,阐述了如何运用信息安全理论和模型进行安全需求分析,从而得出一个层次清晰、定位准确、关系明了的安全需求集。这种方法可以避免安全需求分析时容易产生的盲目性和片面性,能够全面和综合地把握整体安全需求,有助于选择适度和足够的安全措施,防止设计上的安全漏洞,以保证整体安全。
This paper applies information security theory and models to analyze security requirements in order to give aclearly layered, precisely oriented and well defined set of security requirements. In this way, driftlessness and unilateralismcan be avoided and the whole security requirements of an information system can be grasped, so that the proper counter-measures can be selected, the design leaks can be a voided and the integral security can be guaranteed.
出处
《网络安全技术与应用》
2004年第11期58-60,52,共4页
Network Security Technology & Application
