信息网络安全

信息网络安全 ›› 2015, Vol. 15 ›› Issue (8): 67-75.doi: 10.3969/j.issn.1671-1122.2015.08.011

• 理论研究 • 上一篇    下一篇

信息系统可控性评价研究

高君丰1,3, 崔玉华2, 罗森林1(), 焦龙龙1   

  1. 1.北京理工大学信息系统及安全对抗实验中心,北京 100081
    2.国家信息中心,北京 100045
    3.中国人民解放军92785部队,河北秦皇岛 066200
  • 收稿日期:2015-05-15 出版日期:2015-08-01 发布日期:2015-08-21
  • 作者简介:

    高君丰(1987-),男,河北,硕士研究生,主要研究方向:信息安全;崔玉华(1972-),男,重庆,副研究员,博士,主要研究方向:信息安全与政务信息化;罗森林(1968-)男,河北,教授,博士,主要研究方向:信息安全、数据挖掘、文本安全、媒体安全;焦龙龙(1990-),男,河南,博士研究生,主要研究方向:信息安全。

  • 基金资助:
    国家242信息安全计划[2005C48]

Research on Information System Controllability Evaluation

GAO Jun-feng1,3, CUI Yu-hua2, LUO Sen-lin1(), JIAO Long-long1   

  1. 1.Information System and Security & Countermeasures Experimental Center, Beijing Institute of Technology, Beijing 100081, China
    2. State Information Center, Beijing 100045, China
    3.Unit 92785 of PLA, Qinhuangdao Hebei 066200, China
  • Received:2015-05-15 Online:2015-08-01 Published:2015-08-21

RichHTML

7

PDF (PC)

273

摘要:

信息系统可控性是评价利益主体对信息系统控制程度的重要指标。随着国家信息化脚步日益加快,研究信息系统可控性不仅有助于实现信息系统的国产化与自主化,对于国家信息系统安全保障也有着重要意义。文章构建一种信息系统可控性全生命周期模型。该模型分别从静态和动态两个方面,结合系统的防御、发现、应急和对抗四种能力对系统可控性进行评价,并从硬件类、软件类、管理类分析影响系统可控性的基本要素,提出了51个系统可控性评价指标。研究表明,系统可控性贯穿整个系统生命周期,是一个持续推进、动态反馈的过程,根据每个阶段的评价结果对系统进行优化调整,有助于实现信息系统的完全自主可控。同时,系统可控性评价指标体系的建立不仅为信息系统可控性评价提供了技术指标和参考,还能促进国家信息安全保障体系的建设和持续发展。

关键词: 信息系统, 可控性, 评价指标

Abstract:

Information system controllability is an important indicator of the information system stakeholders evaluates the degree of control. As the accelerating pace of national information technology, research on information system controllability not only helps to achieve localization and autonomous of information systems, information systems for national security are also of great significance. In this paper, build a life cycle model of information system controllability. The model were from both static and dynamic, combined the ability of system’s defense, discovery, emergency and confrontation of these four controllable system evaluation. Then separately from the hardware, software, management and other types of analysis of the basic elements affecting the system controllability and made 51 evaluation indexes system controllability. Studies have shown that the system controllability throughout the system life cycle is to promote a continuous process of dynamic feedback, according to the results of the evaluation of each phase to optimize the system to adjust, help to achieve complete self-control information systems. At the same time, the establishment of the system controllability evaluation system not only provides technical indicators and reference information system controllability evaluation, but also to promote the national information security system construction and sustainable development.

Key words: information system, controllability, evaluation index

中图分类号: