黄镇
基于信息资产的风险评估方法的研究与实现
Research and Implementation of Risk Assessment Method Based on
Information Assets
摘 要 介绍了基于信息资产的信息安全风险评估方法,并设计了风险评估工具。通过使用该工具,可以完成对系统的资产、威胁、脆弱点等风险识别以及后续处置措施的跟踪,并能输出风险评估报表和统计风险发生趋势。该方法可以保证风险评估的全面性和完整性,能够有效发现、评估信息风险并加以处置。
关键词 信息安全 信息资产 风险评估 弱点 威胁
Abstract: This article introduced the risk assessment method based on information assets
and designed the risk assessment tool. By using the tool,we can implement the assessment
of information assets, threat and vulnerabilities. Also, the risk assessment report can be
presented and the risk trend can be counted and forecasted. This method can guarantee the
integrity and comprehensiveness of the risk assessment, and it can find out the risk to deal
with effectively.
Keywords: information security; information assets; risk assessment; vulnerability; threat
本期目录
- 标准化快讯
- 云安全联盟安全信任和保证注册项...
- 基于信息资产的风险评估方法的研...
- ICT 供应链风险管...
- IT 服务管理在神朔...
- 区域医疗领域大数据应用系统测试...
- 基于龙芯CPU 的服...
- 信息系统研制过程中的技术状态管...
- “网络学习空间人人通”技术标准...
- 立体电视图像质量测量关键指标及...
- 公众对讲机国际市场准入要求及检...
- 计算机辅助标准化审查方法研究 ...
- 基于简易存储服务的对象存储服务...
- ISO/IEC 20...
- XMPP 协议在移动...
-
视频会议的高可靠性研究
- 基于puppet 工...
- PCB 制造业的设备...
- 基于Linux 系统...