摘要
为了评估网络信息系统的安全风险,提出了一个由风险网络和风险传播算法构成的风险传播模型,并以一个具有代表性的实例阐明了该模型在网络风险评估中的应用,验证了传播算法的正确性.实例分析表明,应用风险传播模型的评估方法较传统方法在评估结论的准确性和制定符合最优成本效应的安全建议等方面更具优势.
To assess the security risk of network information systems, this paper proposes a risk propagation model including a risk network and a risk propagation algorithm. A representative example is given to illustrate the application of this model to network risk assessment and validate the correctness of the propagation algorithm. The analysis of the example indicates that the evaluating method using the risk propagation model is superior to the traditional methods in the accuracy of evaluating conclusions and making cost-effective security adviees.
出处
《软件学报》
EI
CSCD
北大核心
2007年第1期137-145,共9页
Journal of Software
基金
国家自然科学基金
国家"十五"国防预研基金~~
关键词
网络安全
网络风险评估
风险传播
风险分析
network security
network risk assessment
risk propagation
risk analysis