检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
名 称:
注 释:
机构地区:[1]华东理工大学,上海200237
出 处:《计算机应用与软件》2012年第10期230-233,共4页Computer Applications and Software
摘 要:CAE模型具有很强的层次性与结构性,被广泛用于复杂的信息安全测评过程中。采用CAE模型对等级测评的过程进行建模,将测评过程的多个层面简化为声明-论据-证据三种层次,并从测评指标的选择和测评结果的融合两个方面具体说明了CAE模型的作用。结果表明等级测评的过程完全可以归纳入CAE模型中,等级测评的过程与CAE模型的分解和推理过程是一致的,进一步验证了信息安全等级保护标准支持下的等级测评的有效性和合理性。CAE model is strongly hierarchical and structured, and has been widely used in the complicated information security testing and evaluation process. In this paper, by modelling the process of classification evaluation with CAE, the multiple levels of evaluation process will be simplified to three levels, i.e. claim-argument-evidence, and the role of CAE is also specified from two aspects : the selection of evaluation indicators and the integration of the evaluation results. Results indicate that the classification evaluation process can be wholly subsumed into CAE model, and the evaluation process is consistent with the decomposing and reasoning process of the CAE model, this provides further evidences of the effectiveness and rationality for the classification evaluation under the support of information security classification protection standards
分 类 号:TP309[自动化与计算机技术—计算机系统结构]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:216.73.216.31