摘要： 在对信息系统风险评价指标体系进行系统分析的基础上，利用未确知测度给出了一种适合信息系统特点的未确知测度风险评估模型。该模型评价结果合理。应用实例表明了该方法的有效性，效率大大高于一些起初的模型，且易于实现。

关键词: 信息系统, 风险评估, 未确知测度

Abstract: An unascertained measure model for evaluating the risks of information system is established on the basis of analyzing the factors affecting the risks of information system by applying the unascertained measure theory. The method is suitable for evaluating the risks of information system. Its evaluating results are reasonable. An example of practical application is given to show the effectiveness of this method. The model is more efficient than former models and can be easily realized in practice.

Key words: Information system, Risk evaluation, Unascertained measure