摘要
信息安全成为人们关注的热点问题,如何定性地构建信息安全风险评估体系以及定量地分析出众多风险因素中的关键部分是关注的首要问题。通过故障树分析法构建了信息安全风险评估模型,然后通过定性分析和定量分析,寻找出导致安全风险爆发的主要因素。初步试验结果标明,该评估模型具有一定的实用性和扩展性。
Information Security(IS) becomes the focus question that people pay attention to,how to build a qualitative model of Information Security Risk Assessment(ISRA) and how to quantitatively analyze the key parts in a number of risk factors are the primary questions that we concerned.We built the ISRA model using Fault Tree Analysis(FAT),and then by qualitative and quantitative analysis,we analyzed the relationship between risk factors and IS,finding out the main factors that result in Information Security Risk exposure.The result shows the practicability and expandability of this assessment model.
出处
《计算机科学》
CSCD
北大核心
2011年第B10期106-108,118,共4页
Computer Science
