基于DRS-CMM的国家信息安全服务资质测评应用

Application of National Information Security Service Qualification Evaluation Based on DRS-CMM

基于灾难恢复服务形式,结合能力成熟度模型理论,构造DRS-CMM模型;围绕模型的域维与能力维架构设置,对灾难恢复服务提供一个二维技术模型。通过域维中灾难恢复服务过程、项目过程和组织过程、资源配置三方面能力要素开展测评,运用模型中能力维公共特征对测评对象进行能力评定。全生命周期的灾难恢复服务覆盖产业既有形式,科学、灵活的可裁剪性更好地指导产业应用,提升产业发展。

Based on the form of disaster recovery service,combining with the theory of capability maturity model,DRS-CMM model is constructed;and a two-dimensional technical model is provided for disaster recovery service around domain dimension and capability dimension architecture of the model.Through the three aspects of disaster recovery service process,project process and organizational process,and resource allocation in the domain dimension,the assessment is carried out,and the common features of the capability dimension in the model are used to assess the ability of the assessment object.The whole life cycle of disaster recovery service covers the existing form of the industry,and the scientific and flexible cutability can better guide the industrial application and enhance the development of the industry.