• 中国计算机学会会刊
  • 中国科技核心期刊
  • 中文核心期刊

J4 ›› 2006, Vol. 28 ›› Issue (9): 4-6.

• 论文 • 上一篇    下一篇

FAHP方法在信息安全风险评估中的研究

王奕[1] 费洪晓[1] 蒋蘋[2]   

  • 出版日期:2006-09-01 发布日期:2010-05-20

  • Online:2006-09-01 Published:2010-05-20

摘要:

本文在分析影响信息安全风险的因素的基础上构建了信息安全风险分析的层次结构模型,提出了采用模糊层次分析法(Fuzzy-AHP)对风险进行量化分析的方法。该方法采用三角模糊数来表示基于群组决策的信息安全风险各因素的判断矩阵,并用层次分析法来对专家判断结果进行处理,为决策提供了更合理的数据。

关键词: 信息安全风险 模糊层次分析法 三角模糊数

Abstract:

Based on the analysis of the factors that affect information security risks,a hierarchical information security assessment model is established. A risk analysis method based on fuzzy AHP is proposed to evaluate risks. This method adopts the triangular fuzzy number to represent the experts' judgment m matrix of risk factors based on group decision, and uses AHP to handle these risk factors, thus provides reasonable data for decision-making.

Key words: -information security risk;fuzzy analytic hierarchy process;triangular fuzzy number