摘要： 提出对网络安全管理水平进行综合评价的多维度模型，从网络安全管理的制度措施、人力投入、技术效果三方面对组织的网络安全管理水平进行综合评价，并通过可拓关联分析得出各个指标的权重以及各个维度的评价值。应用实践表明，该模型能够综合管理、技术、人力等方面的因素，为管理者从数据中挖掘出有价值的综合评价结果。

关键词: 网络安全管理, 可拓理论, 模糊评价

Abstract: This paper presents a three dimensional model used in comprehensive evaluation for network security management’s level. An organization’s network security management performance can be assessed from measures, technical effectiveness and human efforts according to model. Each indicator’s weight and each dimensional evaluation value can be obtained through extension relation analysis. Practical application cases show that such method is capable of providing valuable results for managers since it is based on management, technical and human considerations.

Key words: network security management, extension theory, fuzzy evaluation

中图分类号: 

• TP393