摘要
本文将数据仓库技术引入到网络信息安全风险评估系统中,依据风险评估组件对评估数据的不同要求建立数据仓库。数据仓库系统采用面向主题的数据组织方式,对网络历史事件数据和网络当前状态数据,按照评估方法的不同进行归类和统一管理,以满足风险评估组件中不同评估方法对数据的需求。数据仓库从源数据到ETL过程,为评估系统进行数据分析提供了快速的数据准备,有效提高了评估的准确性和时效性。
Currently, there are common problems in information security assessment products, for example, the efficiency, the uncertainty of assessment. The reason mainly lies in that it is difficult for the assessment system to timely deal with the complicated and changeable risk factors and massive risky information in information network. Most assessment systems are compelled to pick up some important risk factors to reduce the quantities and, whereas to improving the efficiency. But the limited speed greatly reduces the reliability of assessment results. The thesis means to introduce data warehouse technology into security risk assessment of network information system and establish data warehouse based on different data required by risk assessment components. So in a subject-oriented data organization way, data warehouse system can classify and manage the historical net data and current net data to meet the data demand required by different assessment methods in risk assessment components. Therefore in the process from original data to ETL, data warehouse keeps providing efficient data preparation for the assessing system to analyze data, and effectively improve the accuracy and timeliness of assessment.
出处
《井冈山大学学报(自然科学版)》
2012年第5期59-62,共4页
Journal of Jinggangshan University (Natural Science)
基金
江西省科技厅科技支撑项目(2010BGA00900)
江西省教育厅科技计划项目(GJJ10538)
关键词
数据仓库
网络信息安全
风险评估
data warehouse
information security of network
risk assessment