对信息安全风险评估和系统风险的整体评价进行了理论归纳。
The risk evaluation of information security and system risk synthetical assessment method was also theoretically concluded.
第三部分,论文着重研究了一种基于资产、威胁和弱点的信息安全风险评估量化模型。
In the third part, the paper emphasizes the study of information security risk quantification assessment model based on assets, threats and weaknesses.
信息安全风险评估是信息系统安全工程的重要组成部分,也是建立信息安全保障体系的基础。
Information security risk assessment is not only the most component of the information system security engineering, but also the basis to construct the information safety guarantee system.
信息安全风险评估是保证信息系统安全保密的重要手段,是涉密信息系统风险管理的重要内容。
Information security risk assessment is an effective way to protect the security of secret-involved information system.
首先从信息安全风险评估的流程入手,着重叙述了信息安全风险评估过程中风险计算的原理和步骤。
At first, start with from procedure of information security risk assessment, describe the principle and step that risk calculate in the evaluation process especially.
传统的信息安全风险评估往往是一次性的,一般在项目实施之初进行安全风险的评估,用来指导安全设备的配备。
Traditional risk assessment is often once and for all, commonly performed at the beginning of a project to direct the configuration of security equipments.
阐述了信息安全风险评估所要解决的问题,介绍了目前在信息安全风险评估领域的主要方法,并对这些方法进行了分析和评价。
The information security risk evaluation question is elaborated, the major methods in information security risk evaluation fields are introduced, and the methods are analyzed and studied.
建立的信息安全风险评估体系采用BP神经网络方法,是一种非线性方法,不带有明显的主观成分和人为因素,使评价结果更有效、更客观。
BP neural network, the method is nonlinear method, is applied to risk assessment model of information security. The subjectivity and man-made is overcome. It's an effective method.
本文将基于风险评估技术的主动防御策略引入电力信息网络的安全防护中。
This paper introduces the active defense policy based on risk assessment technology into safe protection of electric power information network.
传统信息系统安全风险评估从系统运行维护环境出发,分析其漏洞和威胁。
Traditional risk assessment of information system security goes from the environment of system operating and preservation, analyzing its loopholes and threats.
正在考虑创建一所新的大学校园,你们的任务是对这所大学的信息技术(IT)安全性的风险评估建立模型。
The creation of a new university campus is being considered. Your requirement is to model the risk assessment of information technology (it) security for this proposed university.
为了保障移动通信信息系统的安全,制定有效的、操作性的、学的安全风险评估体系是当务之急。
To safeguard the information system of mobile communication, it is urgent to make effective, maneuverable and scientific security risk evaluation system.
而风险评估作为信息安全管理的一个重要环节,对保障企事业的基础信息系统安全有着非常重要的作用。
As an essential part of information security Management, information Risk Assessment takes a very important role in securing the safety and security of fundamental information systems.
通过对调研所得数据进行收集、归纳、比较和分析,本文提出了基于ISO 27000的针对复合图书馆信息安全的风险评估实施模型。
According to research data collected, summarized, comparison and analysis, it present implement model of information security risk assessment of hybrid library based on the ISO27000.
本文论述了开放系统互联安全体系结构下的重钢信息网络安全现状分析和风险评估;
The article deals with the current analysis and risk evaluation of CISC (Chongqing Iron and Steel Company)'s information internet security under the opening systematic co-action secure structure.
最后,利用安全信息关联和融合的结果进行量化的实时安全风险评估。
Finally, a real-time risk evaluation method is introduced utilizing the result of information correlation and information fusion.
风险评估必须用到评估工具来完成对信息保护的工作,从而建立信息安全的管理体系。
Assessment tools are the guard for the information security on the risk assessment, and then we can establish the information security management system.
传统的风险评估中,大粒度的评估结果不能给安全管理员提供切实有用的信息。
For the conventional security risk assessment, the results by large granularity assessment can't provide security administrators with much effective and applicable information.
负责公司的信息系统安全:评估和控制风险、制定安全政策、制定灾难恢复计划、确保政策与计划执行。
Information security management includes security risk assessment, security policy formulation, disaster recovery planning and to ensure the effectiveness of these policies.
本文提出一种基于信息系统安全性分析来定量计算信息安全风险的度量尺度,差距分析方法及相应的评估流程。
This paper propose a quantitative information security risk metric based on information system security analysis, gap analysis method and its assessment procedure.
介绍了对一个灾难中指挥系统地震信息安全计划的 自我风险 评估。
Self-risk evaluation of the seismic information safety plan of the command system during a disastrous event is also discussed.
论文选择层次分析方法来确定各评估指标的权重,利用灰色系统评价法对我国商业银行信息安全的风险进行综合评估。
The paper selected Analytic Hierarchy Process to determine the weight of each assessment index, and then used Grey Appraisal Process to assess risk value.
实例分析表明,该方法合理有效,可为信息系统安全风险评估提供新思路。
Finally, an illustrative instance is given to demonstrate its rationality and feasibility. Thus it may provide a new way for assessing information systems security.
对信息系统进行有效的风险评估,选择有效的防范措施,主动防御信息威胁是解决信息系统安全问题的关键所在。
Therefore, evaluating risk effectively, selecting effective defence measures and defending information threats actively are the key points of resolving security problems of information system.
而信息安全管理是其中的关键环节之一,风险评估作为信息安全管理的重要内容,在信息安全管理体系建设的各个阶段发挥着重要的作用。
It is the most important task of security construct to build E-government Information security guarantee system. Information security Management is one of key link in the guarantee system.
因此,本文在研究风险管理与风险评估的基础上,提出了一种基于成本的安全措施选择方法,此方法同时也是一种最优化信息保障的方式。
So based on the research of risk management, this paper give an approach of security measures selection based on costs which also can optimization IA model.
因此,本文在研究风险管理与风险评估的基础上,提出了一种基于成本的安全措施选择方法,此方法同时也是一种最优化信息保障的方式。
So based on the research of risk management, this paper give an approach of security measures selection based on costs which also can optimization IA model.
应用推荐