| 基于危险理论的信息安全风险评估模型 |
| |
| 引用本文: | 李晓蓉,庄毅,许斌.基于危险理论的信息安全风险评估模型[J].清华大学学报(自然科学版),2011(10):1231-1235. |
| |
| 作者姓名: | 李晓蓉 庄毅 许斌 |
| |
| 作者单位: | 江苏省烟草专卖局(公司)信息中心;南京航空航天大学信息科学与技术学院; |
| |
| 基金项目: | 国家航空科学基金资助项目(05F2037); 国防工业基础基金资助项目(Q072006C002-1) |
| |
| 摘 要: | 为了解决目前信息安全风险评估系统中存在的主观性强、静态评估等问题,该文提出了一种基于生物免疫学危险理论的信息安全风险评估模型DT-RA,采用危险信号触发机制,能够应对不断变化的信息系统和网络环境,然后给出了一种基于DT-RA模型的安全事件发生可能性风险的计算方法,最后根据国标计算得出整个信息系统的风险值。本文在假设一定...
|
| 关 键 词: | 风险评估 生物免疫 危险理论 信息安全 |
Risk assessment model for information security based on danger theory |
| |
| LI Xiaorong,ZHUANG Yi,XU Bin.Risk assessment model for information security based on danger theory[J].Journal of Tsinghua University(Science and Technology),2011(10):1231-1235. |
| |
| Authors: | LI Xiaorong ZHUANG Yi XU Bin |
| |
| Institution: | LI Xiaorong1,ZHUANG Yi2,XU Bin2(1.Information Department,Jiangsu Tobacco Monopoly Administration,Nanjing 210018,China,2.Department of Information Science and Technology,Nanjing University of Aeronautics and Astronautics,Nanjing 210016,China) |
| |
| Abstract: | Information security risk assessments,such as subjective and static assessments are improved by an information security risk assessment system based on Biological Immunology Danger Theory.The system uses the danger signal trigger mechanism to deal with mutated information systems and networks.This model is used to calculate the possibility of a security incident.The information system risk is then calculated according to the Chinese standard.Simulations with asset scale,attack priorities and changing attack... |
| |
| Keywords: | risk assessment biological immunology danger theory information security |
| 本文献已被 CNKI 等数据库收录! |
|
