An Effective Process of Information Security Risk Assessment
Information security risk assessment is an important assessment method and decision-making mechanism during the course to establish the information security system, and it is also an important part of information security research. This paper reviews the development of information security risk assessment and points out the importance of it in each application field. Furthermore, the problem of information security risk assessment is proposed, and the major methods in the field of information security risk assessment are elaborated, analyzed and studied. Finally, the work processes at present and the development prospects in the future are discussed. To sum up, the work in this paper has the valuable significance both in theory and practice on all aspects of the construction of information and the development of information security.
information security risk assessment asset threat vulnerability safety control measures
Sha Fu Yezhi Xiao
Department of Information Management Hunan University of Finance and Economics Changsha, P.R.China Foreign Language Department Hunan University of Finance and Economics Changsha, P.R.China
国际会议
重庆
英文
124-128
2011-01-21(万方平台首次上网日期,不代表论文的发表时间)