摘要
提出了一种基于贝叶斯网络推理的安全风险评估方法。从实际出发建立信息系统的贝叶斯网络模型,根据专家给出的先验信息,结合获得的证据信息,运用Pearl方法完成对模型的评估,给出在特定条件下模型的计算——线性推理算法。最后,以实例分析信息系统安全评估的实现过程,结果表明,该方法可行、有效。
A security risk assessment on Bayesian network was presented. Firstly, Bayesian network model of information system was built based on practice, and according to the apriorltied information given by experts and evidence information obtained, the assessment was finished with Pearl method. Then, the calculation on specific condition modelqinear inference algorithms was proposed. Finally, an instance of the risk assessment approach on the model was analyzed, which demonstrates that the method is rational and feasible.
出处
《海军工程大学学报》
CAS
北大核心
2007年第6期67-70,共4页
Journal of Naval University of Engineering
关键词
见叶斯网络
信息系统
风险评估
证据推理
Bayesian network
information systems
risk assessment
evidence inference