信息安全研究2024,Vol.10Issue(4):368-376,9.DOI:10.12379/j.issn.2096-1057.2024.04.12
证券网络安全事件应急响应评价研究
Research on the Evaluation of Emergency Response to Cybersecurity Events in the Securities Industry
摘要
Abstract
The emergency response to cyber security events,spanning multiple departments,covering various levels and scopes,has become a crucial link in routine security operations,serving as a key pillar for ensuring the stable and secure operation of the securities industry.Addressing the issue of inconsistent and overly subjective traditional emergency response capability evaluation indicators in the securities industry,this paper proposes a cyber security incident emergency response process.This process includes detection response,loss prevention and blockage,source analysis,recovery,and reinforcement.The proposed evaluation model covers three tiers,encompassing tools utilization,log coverage,personnel skills,task distribution,notification handling,and publicity education.The fuzzy hierarchical analysis method is employed to determine the weight of each level indicator,while the expert judgment method is used to establish the evaluation indicator set.The fuzzy grey comprehensive evaluation method is introduced to assess the capability of emergency response to cyber security incidents in the securities industry.Through case validation and data analysis summary,the paper achieves quantitative demonstration of the evaluation indicators.关键词
网络安全事件应急响应/专家判断方法/模糊层次分析方法/模糊灰色综合评价方法/证券业Key words
cybersecurity events emergency response/expert judgment method/hierarchical analysis method/fuzzy grey comprehensive evaluation method/securities industry分类
信息技术与安全科学引用本文复制引用
朱嶷东,薛质,王洪涛,刘宏,吴晨炜,胡广跃..证券网络安全事件应急响应评价研究[J].信息安全研究,2024,10(4):368-376,9.基金项目
国家重点研发计划项目(2021YFB3102000) (2021YFB3102000)
智慧广电网络安全生态创新研究国家广播电视总局实验室项目(TXX20200001ZSB001) (TXX20200001ZSB001)
上海交大奇安信"信息系统安全"联合实验室项目 ()
