检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
作 者:杨诗雨[1] 苏丽丽 侯元伟[1] 郝永乐[1] 李伟平[2] YANG Shi-yu;SU Li-li;HOU Yuan-wei;HAO Yong-le;LI Wei-ping(China Information Technology Security Evaluation Center,Beijing 100085,China;School of Software and Microelectronics,Peking University,Beijing 100871,China)
机构地区:[1]中国信息安全测评中心,北京100085 [2]北京大学软件与微电子学院,北京100871
出 处:《北京理工大学学报》2019年第9期967-973,共7页Transactions of Beijing Institute of Technology
摘 要:随着网络安全漏洞威胁日益加深,网络空间安全形势愈加严峻,掌控漏洞威胁信息、负责漏洞风险管理的漏洞管理机构发挥着越来越重要的作用,对漏洞数据的制度化、规范化、流程化管理是有效开展漏洞威胁消控的重要基石.研究了目前管理机制较为完善的漏洞管理机构,提出了一套普适性的漏洞管理流程,并结合工作流技术进行业务建模和系统实现.实践表明,将工作流技术应用于漏洞管理工作中,可以协助漏洞管理机构提高漏洞管理效率,有效开展漏洞威胁消控工作.With the growing threat of network vulnerability,cyberspace is confronted with numerous dangers and the vulnerability management agencies play an increasingly significant role therefore.Vulnerability management is supposed to be institutionalized,standardized,and streamlined,which is an indispensable cornerstone for effectively reducing vulnerability risk.To improve the efficiency of vulnerability management,general vulnerability management processes were proposed,and a workflow technology was used to model and run these processes.BPMN(business process model and notation)was used to model the management processes and a workflow management system was built to run them.Practices show that,the workflow technology based vulnerability management can improve the efficiency of vulnerability management and effectively remove and control the vulnerability threat.
分 类 号:TP311[自动化与计算机技术—计算机软件与理论]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:216.73.216.222
