摘要
分析了当前主流的信息安全评估标准以及评估方法,介绍了信息安全管理的手段与措施,并分析了其现有信息安全管理的不足,从而设计了一个信息安全控制管理中心的模型,给出了SOC系统自学习方法,从而有效地解决了信息安全等级评估下的周期过长所导致出现不可操作性、非实时性结果的非有效性等问题。
This paper introduced the mainstream criteria and methods for information security assessment and the measures for information security management, analyzed the deficiencies in existing information security management measures, and designed a model of information security control center based on SOC systematic self-learning method. The proposed method solves the problems of non-interoperability, non-real-time and non-validity of the results caused by long period of information security assessment effectively.
出处
《天津大学学报(社会科学版)》
CSSCI
2009年第4期311-314,共4页
Journal of Tianjin University:Social Sciences