计算机应用研究2017,Vol.34Issue(11):3432-3436,5.DOI:10.3969/j.issn.1001-3695.2017.11.052
基于模糊集和DS证据理论的信息安全风险评估方法
Method for information security risk assessment based on fuzzy set theory and DS evidence theory
摘要
Abstract
There are many uncertain and fuzzy factors in the information security risk assessment process.For the uncertainty and subjectivity of expert evaluation,this paper proposed a risk assessment method on the basis of fuzzy set theory and DS evidence theory.Firstly,according to the processes and elements of the information security risk assessment,it established an index system and confirmed risk factors.Secondly,it calculated the degree of expert evaluation belonging to various levels through Gauss membership function.Thirdly,it made the above results as basic probability assigment of DS theory and adopted a fusion arithmetic based on matrix analysis and weight distribution to synthesize views of some experts.Finally,combining with the Bayesian theory and inference procedure,it calculated the probability of risk of the information system.The results show that the method which is based on the fuzzy set theory and DS evidence theory can improve the objectivity of the evaluation results.关键词
信息安全/风险评估/模糊集/DS证据理论/贝叶斯网络Key words
information security/risk assessment/fuzzy set theory/DS evidence theory/Bayesian network分类
信息技术与安全科学引用本文复制引用
王姣,范科峰,莫玮..基于模糊集和DS证据理论的信息安全风险评估方法[J].计算机应用研究,2017,34(11):3432-3436,5.基金项目
国家智能制造专项资助项目(京财经一指[2015]1170号) (京财经一指[2015]1170号)
工信部工控安全评估专项资助项目(工信软函[2015]366号) (工信软函[2015]366号)
国家科技支撑计划资助项目(2015BAK21B04) (2015BAK21B04)
电子发展基金资助项目(工信部财[2014]425号) (工信部财[2014]425号)
