检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
名 称:
注 释:
作 者:朱爱青[1] ZHU Aiqing(Zibo Vocational Institute,Zibo,Shandong 255000,China)
机构地区:[1]淄博职业学院,山东淄博255000
出 处:《计算机应用文摘》2024年第5期83-85,88,共4页Chinese Journal of Computer Application
摘 要:在信息安全形势日益严峻的今天,寻找一种客观、准确、可靠的风险评估方法变得尤为重要。为降低主观因素的影响,提高评估结果的可靠性和准确性,并实现自动化评估,文章基于扩展攻击树模型与模糊层次分析法,提出了一种新的系统安全风险评估方法。同时,采用多属性效用理论来量化叶子节点的风险值,以实现客观准确的评估。实例验证表明,该风险评估方法简单易行,具有较高的应用价值和通用性。In the increasingly severe situation of information security today,it is particularly important to find an objective,accurate and reliable risk assessment method.In order to reduce the influence of subjective factors,improve the reliability and accuracy of the evaluation results,and realize the automatic evaluation,this paper proposes a new system security risk evaluation method based on the extended attack tree model and fuzzy analytic hierarchy process.At the same time,the multi-attribute utility theory is used to quantify the risk value of leaf nodes to achieve objective and accurate evaluation.The example shows that the risk assessment method is simple and feasible,and has high application value and universality.
分 类 号:TP309[自动化与计算机技术—计算机系统结构]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:216.73.216.7