摘要
在简要回顾信息系统安全体系结构(ISSA)发展历程的基础上重点分析了ISSA的定义、研究意义、研究主题和思路、ISSA学科性质及方法论等基本问题,探讨了未来进一步发展ISSA在理论、技术、实施、应用4个领域所面临的挑战和未来走向。最后在结论部分简要分析了ISSA的局限,并提出了"信息安全学科与系统科学在认识和理论(即基础科学)层次的融合是从根本上解决信息系统安全问题的主要趋势和有效途径"的观点。
Information Systems Security Architecture (ISSA) has become a crucial branch and research focus of Information Security Science, and one of the key technologies in guiding the R&D of large - scale secure system ( or security products) in the past ten years. The conceptual connotation of "Architecture" and the significance of Security Architecture have been proposed. The variety definition of ISSA is introduced, and its development trace is systematically overviewed. Based on the above, two different research methods and train of thoughts have been revealed. Then, the idea that "ISSA is the positive result of practicing systematic thinking in the Information Security field of investigation" has been clearly proposed. The disciplinary nature, the methodology of ISSA, and the challenges in the development of ISSA in theory, technology, education, practice and application are briefly discussed. Finally, the notion that Each Unification, of the Subjects like Information Security and Science of Systems, started from the basic science, should be the major trend and effective approach to radically solving the problems in Infor- mation Security is proposed.
出处
《空军工程大学学报(自然科学版)》
CSCD
北大核心
2010年第5期75-80,共6页
Journal of Air Force Engineering University(Natural Science Edition)
基金
陕西省自然科学基金资助项目(2007F45)
西安市科技计划资助项目(N7SF019)
关键词
信息系统安全体系结构
信息安全体系结构
系统科学
系统思考
Information System Security Architecture
information security architecture
science of systems
sys- tematic thinking
