摘要
提出了一种基于灰色层次分析法的信息安全评估模型。首先,以国际信息安全标准ISO/IEC 17799和国内信息系统安全的相关评估准则为基础,建立了三层信息安全层次结构模型。之后,使用层次分析法与灰色系统理论对该模型进行求解,使结果更为客观。最后以证券交易网为评估对象进行实例计算,结果得到对方的认可,证明了该模型是合理的、有效的。
An information security evaluation model was proposed based on Gray Analytical Hierarchy Process. First, an information security hierarchy model with three-hierarchy was estabhshed according to ISO/IEC 17 799 and some domestic information security evaluation criteria. Second, the model was explained by AHP and gray systems theory, thus the result could be more objective. Finally, a case study was carried out to a stock exchange net and the result was acknowledged by the company. Therefore, this model is proved to be feasible and effective.
出处
《计算机应用》
CSCD
北大核心
2006年第9期2111-2113,共3页
journal of Computer Applications
基金
西北工业大学研究生创业种子基金资助项目(Z200633)
