期刊文献+

一种新的等级测评综合得分算法研究 被引量:6

Research on a New Scoring Algorithm of Testing and Evaluation for Classified Cybersecurity Protection
下载PDF
导出
摘要 信息安全等级保护测评报告模版(2015版)给出了信息系统等级测评综合得分算法,但该算法存在计算工作量大、计算结果不影响测评结论的问题。针对2015版等级测评综合得分算法存在的不足,文章提出了一种新的等级测评综合得分算法,该算法缩小了测评项符合程度的得分取值范围,简化了测评项加权得分的计算方法,大幅度降低了等级测评的计算工作量,实现了对信息系统等级测评结论的定量判定。实验结果表明,新的等级测评综合得分算法能够对信息系统进行合理评价,有效提高了等级测评结论的准确性和科学性。 The report template(2015 edition)gives the scoring algorithm of testing and evaluation for classified cybersecurity protection,however,there are some problems in this algorithm,such as the heavy workload of calculation and the result of calculation does not affect the evaluation conclusion.In this paper,aiming at the problem of scoring algorithm in 2015 edition report template,a new scoring algorithm of classified cybersecurity protection evaluation is proposed.The algorithm reduces the score range of coincidence degree of evaluation items,simplifies the calculation method of weighted score of evaluation items,greatly reduces the computational workload,and realizes the quantitative determination of evaluation conclusion.The experimental results show that the new scoring algorithm achieves a reasonable result in quantitative evaluation of information system,and effectively improves the accuracy and scientificity of evaluation conclusion.
作者 黎水林 祝国邦 范春玲 陈广勇 LI Shuilin;ZHU Guobang;FAN Chunling;CHEN Guangyong(The Third Research Institute of Ministry of Public Security,Shanghai 200031,China;Cyber Security Department of the Ministry of Public Security,Beijing 100741,China)
出处 《信息网络安全》 CSCD 北大核心 2020年第2期1-6,共6页 Netinfo Security
基金 国家重点研发计划[2018YFB0803503]。
关键词 网络安全等级保护 等级测评 综合得分算法 classified cybersecurity protection testing and evaluation for classified cybersecurity protection scoring algorithm
  • 相关文献

参考文献5

二级参考文献40

  • 1沈昌祥,张焕国,王怀民,王戟,赵波,严飞,余发江,张立强,徐明迪.可信计算的研究与发展[J].中国科学:信息科学,2010,40(2):139-166. 被引量:253
  • 2张焕国,严飞,傅建明,徐明迪,杨飏,何凡,詹静.可信计算平台测评理论与关键技术研究[J].中国科学:信息科学,2010,40(2):167-188. 被引量:13
  • 3李德毅,刘常昱.论正态云模型的普适性[J].中国工程科学,2004,6(8):28-34. 被引量:897
  • 4孙健,安实,王岩,王健.离散过程风险度量属性研究[J].辽宁工程技术大学学报(自然科学版),2006,25(B06):277-280. 被引量:1
  • 5.GB 17859-1999.计算机信息系统安全保护等级划分准则[S].,1999..
  • 6Fran Nielsen. Approaches to Security Metrics[ R]. Gaithersburg: NIST,2000.
  • 7ACSA and MITRE Corp. Information system security attribution quantification or ordering[ A] .2001 1^st Workshop on Information System Security Scoring and Ranking Proceedings [ C ]. Virginia: ACSA and MITRE Corp, 2001.1 - 70.
  • 8Bennet S Yee. Security metrology and the monty hall problem[EB/OL].http://ww.cs.ucsd.edu/-bsy/pub/metrology.pdt,2001 -04-02.
  • 9DoD 5200.28-STD, Department of Defense Trusted Computer System Evaluation Criteria[S].
  • 10ISO/IEC 15408, Information Technology-Security Techniques-Evaluation Criteria For IT Security[S].

共引文献54

同被引文献46

引证文献6

二级引证文献10

相关作者

内容加载中请稍等...

相关机构

内容加载中请稍等...

相关主题

内容加载中请稍等...

浏览历史

内容加载中请稍等...
;
使用帮助 返回顶部