摘要
当前,信息系统安全审计问题受到社会广泛关注。文章在阐述相关理论的基础上,首先,以国家电子政务"十三五"规划为背景,分析电子政务云安全审计相关规范与指南的借鉴方法,设计与规划电子政务云安全审计的支撑体系及过程模式;其次,以"过程挖掘"为关键技术,深层次研究电子政务云安全审计过程平台的运行机制;最后,结合前两步,提出电子政务云安全审计模式在构建中所应注意的问题,旨在基于"过程"视角丰富电子政务云安全审计理论,力求促进电子政务在功能实施中更为安全与高效。
At present, the audit of information system security is drawing wide attention. Against the background of the National E- Government"13th Five- Year Plan", this paper analyzed the methods the relevant regulations and guidelines referred to in drafting the audit of E- government cloud security, and designed the supporting system and the process mode for the E-government cloud security audit. Secondly, it made an in-depth analysis of the operating mechanism of the audit platform of E- government cloud security by applying the key technology of "process mining". Finally, it further pointed out the issues that should be handled in building the audit model of the E-government cloud security, in the hope of promoting a more secure and efficient E-government in its implementation with an enriched process-based theory of cloud security audit.
出处
《新疆大学学报(哲学社会科学版)》
CSSCI
2016年第1期28-35,共8页
Journal of Xinjiang University(Philosophy and Social Sciences)
基金
江苏省金融工程重点实验室开放课题资助"基于内部威胁的互联网金融审计预警体系的建立与运行"(NSK2015-07)
江苏省高校自然科学研究面上项目"内部威胁下基于熵权与数据挖掘的金融信息系统审计预警"(15KJB120006)
教育部人文社会科学研究规划基金"面向内部威胁的中观信息系统内控管理体系的建立与运行"(14YJA790032)
关键词
电子政务云
安全审计
审计模式
过程
过程挖掘
安全威胁
E-government Cloud
Security Audit
Audit Mode
Process
Process Mining
Security Threat
