| 基于贝叶斯网络的信息安全风险评估方法 |
| |
| 引用本文: | 付钰,吴晓平,严承华.基于贝叶斯网络的信息安全风险评估方法[J].武汉大学学报(理学版),2006,52(5):631-634. |
| |
| 作者姓名: | 付钰 吴晓平 严承华 |
| |
| 作者单位: | 海军工程大学,信息安全系,湖北,武汉,430033 |
| |
| 摘 要: | 在系统分析信息安全风险要素及评估过程的基础上,针对评估过程中的不确定性信息难以量化处理的问题,引入贝叶斯网络推理算法,并结合专家知识给出贝叶斯网络下的推理规则条件概率矩阵,从而构建了信息安全风险评估模型.最后以实例分析了基于此模型的风险评估方法.仿真结果表明该方法是一种有效的评估算法,较为准确地了反映了信息安全的风险等级,为信息安全风险评估提供了一种新的思路.
|
| 关 键 词: | 贝叶斯网络 风险评估 信息安全 |
| 文章编号: | 1671-8836(2006)05-0631-04 |
| 修稿时间: | 2006年4月30日 |
The Method of Information Security Risk Assessment Using Bayesian Networks |
| |
| FU Yu,WU Xiaoping,YAN Chenghua.The Method of Information Security Risk Assessment Using Bayesian Networks[J].JOurnal of Wuhan University:Natural Science Edition,2006,52(5):631-634. |
| |
| Authors: | FU Yu WU Xiaoping YAN Chenghua |
| |
| Abstract: | The risk factors for information security and its assessment process are analyzed completely.According to the characteristic of uncertainty information in the assessment process,the reasoning algorithm on Bayesian Networks is presented,and the conditional probability matrix of the reasoning rule is given base on the expert knowledge.Thus,the model of information security risk assessment is constructed.Finally,an instance of the risk assessment approach on the model is analyzed,which demonstrates the rationality and feasibility of this method.So it provides a new method for information security assessment. |
| |
| Keywords: | Bayesian network risk assessment information security |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
