计算机与现代化Issue(4):95-99,126,6.DOI:10.3969/j.issn.1006-2475.2018.04.018
基于改进贝叶斯模型的信息安全风险评估
Information Security Risk Assessment Based on Improved Bayesian Network Model
摘要
Abstract
With the advent of the information age, information security issues become increasingly complex and diverse, so a cost-effective solution should be badly in need.Based on the previous research, this paper further improves the application of Bayesian network model in information security risk assessment.Firstly,it analyzes the types of risk elements of information sys-tem,and puts forward a new method to determine the risk factors,that is,the common relationship between factors.Then,the information system index system is determined according to the factor relation.Combined with the conditional probability of expe-rience accumulation,the Matlab Bayesian network toolbox(BNT)is used to construct a complete Bayesian network risk assess-ment model,which includes the analysis of the assessment process,the use of methods and the determination of risk levels.Fi-nally,by analyzing the improved Bayesian assessment model,the probability of each level of risk is deduced according to experi-mental data.The simulation results are consistent with the actual results,which show that the improved evaluation method is ef-fective and reasonable.关键词
信息安全/风险评估/贝叶斯网络/风险因素/风险等级Key words
information security/risk assessment/Bayesian network/risk factors/risk grades分类
信息技术与安全科学引用本文复制引用
黄玉洁,唐作其..基于改进贝叶斯模型的信息安全风险评估[J].计算机与现代化,2018,(4):95-99,126,6.基金项目
贵州省科技支撑计划项目(黔科合SY字[2011]3111) (黔科合SY字[2011]3111)
贵州大学青年教师科研基金资助项目(贵大自青合字(2013)01号) (贵大自青合字(2013)
贵州大学研究生创新基金资助项目(研理工2017081) (研理工2017081)
