计算机技术与发展2018,Vol.28Issue(4):141-143,147,4.DOI:10.3969/j.issn.1673-629X.2018.04.029
基于CIA属性的网络安全评估方法研究
Research on Network Security Assessment Method Based on CIA
摘要
Abstract
With the development of network technology,security events continually emerge,so how to achieve the overall security protec-tion is an important issue.As an effective protection method to information system,the security assessment can provide the comprehensive support of security technology for information system compared with traditional security protection methods.By analyzing the impacts on the system's asset vulnerability to its confidentiality,integrity and availability,the scores are assigned by CVSS (common vulnerability scoring system),and then the assessment of network information system is achieved with the weight of the attributes.A simple network information system is constructed in the experiment and the scanner is used in the system equipment to find the vulnerability information of assets.The basic score data is obtained from the NVD for the calculation of risk assets value which is transformed for qualitative assess-ment.The experiment verifies the feasibility and the effectiveness of the proposed method.关键词
网络安全/安全评估/漏洞/资产Key words
network security/security assessment/vulnerability/asset分类
信息技术与安全科学引用本文复制引用
刘意先,慕德俊..基于CIA属性的网络安全评估方法研究[J].计算机技术与发展,2018,28(4):141-143,147,4.基金项目
国家自然科学基金(61672433) (61672433)
