摘要
随着通信网络和信息技术的迅速发展,对网络及其信息系统的安全要求越来越高。文章依据ISO/IEC TR 13335提出的关于IT系统安全的建议以及网管安全协议的服务机制,结合网络管理系统的实际情况,给出了一个进行网络管理系统安全风险评估的方法,包括评估原则和相关的评估内容。
With the rapid development of communication network and information technology, the security requirement on network and information system is becoming higher and higher. According to IT Security Recommendation by ISO/IEC TR 13335 and the service mechanism of network management Security Services protocols , and by combing network management practice, we present a method for security risk assessment of network management system is proposed, including the assessment rules and the contents of the relevant assessment are included.
出处
《信息安全与通信保密》
2009年第8期111-113,共3页
Information Security and Communications Privacy
关键词
网络管理
IT安全
风险评估
network management
IT security
risk assessment