摘要
在海洋网络建设初期进行信息安全风险评估是一项必要的工作。根据海洋资产的密级属性对资产进行分类和赋值,并结合改进的德尔菲法和关联矩阵法,设计了一套适用于海洋网络建设初期的信息安全风险评估方法。该方法能有效地收集专家对各个资产的安全等级打分,明确重点保护的资产,采用适当的安全措施来保障整个网络的安全,从而指导和检验总体系统安全设计的准确性和完善性。
Risk assessment of information security is a necessary process in preliminary stage of the ocean network construction. In this pa- per we classify and assign the value on the assets according to the secret grade attributes of ocean assets, and design a risk assessment ap- proach for information security that is suitable for the ocean network construction in preliminary stage in combination with the improved Delphi method and the association matrix method. The approach can effectively collect the security grade of each asset assessed by the experts, clear- ly defines the assets requiring special protection and greatly ensures the safety of the whole network by using proper safety measures, thus guides and inspects the accuracy and perfection of the overall system safety designed.
出处
《计算机应用与软件》
CSCD
北大核心
2013年第10期77-80,共4页
Computer Applications and Software
基金
国家科技部海洋专项(200905030-3)
关键词
“数字”海洋网络
海洋数据分类
密级属性
威胁后果
评价尺度
关联矩阵
"Digital" ocean network Ocean data classification Attribute of secret grade Threaten consequence Evaluation scale Association matrix
