Computer Engineering and Applications ›› 2007, Vol. 43 ›› Issue (9): 95-99.
• 产品、研发、测试 • Previous Articles Next Articles
Received:
Revised:
Online:
Published:
孙鹏鹏 张玉清 韩臻
通讯作者:
Abstract: This paper studies on the sort method and developing trend of the information security risk assessment tool, then designs and implements a risk assessment tool based on referring to the domestic and foreign assessment methods and tools. This tool is an expert assessment system. It makes dynamic questionnaire based on the policy and baseline, and it also introduces into the quantitative and qualitative method, which improves the efficiency of risk assessment and ensures the results are more scientific.
摘要: 本文研究了信息安全风险评估工具的分类方法与发展趋势,在参考国内外评估方法和评估工具的基础上,对风险评估工具进行了设计与实现。本工具是专家评估系统,根据自定义的安全策略和安全基线动态生成调查问卷表,运用定量和定性相结合的方法进行风险评估,为提高风险评估效率、确保评估结果的科学性提供了有力支持。
孙鹏鹏 张玉清 韩臻. 信息安全风险评估工具的设计与实现[J]. 计算机工程与应用, 2007, 43(9): 95-99.
0 / Recommend
Add to citation manager EndNote|Ris|BibTeX
URL: http://cea.ceaj.org/EN/
http://cea.ceaj.org/EN/Y2007/V43/I9/95