摘要
信息系统安全等级保护工作已经成为保护国家重要IT系统的有力手段。但现有定级手段存在着缺乏可行的准则,定级结果主观成分大,定量不足的缺点。论文提出一种定性与定量分析结合的定级方法,提高信息系统的安全保护等级的定级准确性。
Classified protection of information system has been a strong way to protect the important IT system. The current determination of level exist some flaws, such as lack of feasible method to judge the level and quantity analysis. This paper proposes a scheme which composed of both qualitative and quantitative analysis. By taking this scheme, the accuracy of classified protection of information system could be promoted.
基金
广东省战略性新型产业发展专项资金(高端新型电子信息产业)项目资助(项目编号:2012556028)
关键词
信息安全
等级保护
定性分析
定量分析
information security
classified protection
qualitative analysis
quantitative analysis