基于可拓集的软件工程安全监理的研究

Research on Software Project Security Surveillance based on Extensible Set

针对软件工程的信息安全监理中各风险因子间的关联性及评价因素难以精确度量的问题,将可拓集方法与软件工程中信息风险因子结合,建立风险评估模型并实现基于可拓集的安全监理方法。基于该监理模型,可拓集方法将评价因素的定性表达区间化并利用区间关联函数实现定性定量的转化,从而实现风险的定性与定量相结合的评估,达到更好的监理效果。

In the process of information security surveillance for software project,there are complex relationships between risk elements and it is also difficult to accurately measure risk evaluation factors.By means of combining extensible set method with risk factors in software project,this paper proposed a risk assessment model and a security surveillance method based on extensible set.Based on this model,the extensible set method translated qualitative determination into quantitative result by mapping qualitative expression to interval and using interval dependent function,and therefore,could combine quantitative and qualitative methods to evaluate risk,then achieve better results of surveillance.