摘要
该文首先介绍了信息系统的风险和风险管理,讨论了两个典型的安全风险模型,分析了它们的不足,然后以风险管理为基础,从风险时间变化的宏观角度出发建立了风险模型-RC模型。该模型对信息系统安全风险进行了直观和清晰的描述,对于强化信息系统的健壮性,降低信息系统的安全风险有重要的指导作用。
The paper firstly makes an introduction to risk and risk management of information system and a discussion of two typical security risk modules and their disadvantages,followed by a presentation of the risk cycle module,on the basis of risk management,from the point of view of the variation of risk time.This module makes a direct and clear description of the risk of information system.It is an important guidance of strengthening information system and reducing risk of information system.
出处
《计算机工程与应用》
CSCD
北大核心
2005年第7期122-124,148,共4页
Computer Engineering and Applications
基金
国家863高技术研究发展计划(编号:2002AA142151)
关键词
信息系统
风险
风险管理
风险周期模型
information system,risk,risk management,risk cycle module
