摘要: 为克服传统信息安全风险评估模型在人为权重分配中的主观性,提出一种基于小波神经网络(WNN)和熵权-灰色关联(EGA)的信息安全风险定量评估模型。该模型利用WNN得到风险事件的风险值以及各个实体的风险统计状况,通过EGA得到该风险状况排序,并计算平均风险水平,从而有效评估信息系统的安全风险。
关键词:
信息安全风险评估,
小波神经网络,
BP神经网络,
熵权-灰色关联
Abstract: This paper presents an information security risk assessment model based on Wavelet Neural Network(WNN) and Entropy-weighted Grey Association(EGA), in order to overcome subjectivity in man-made distributing weight for traditional information security risk assessment. Using WNN can get the value of risk events and the statistical risk profile of each entity, using EGA can gain the sort of risk profile of each entity and can calculate the average risk level of the overall system to achieve the purpose of evaluating effectively information system security risk.
Key words:
information security risk assessment,
Wavelet Neural Network(WNN),
BP neural network,
Entropy-weighted Grey Association(EGA)
中图分类号:
刘明生, 孙树静. 基于WNN和EGA的信息安全风险评估[J]. 计算机工程, 2010, 36(22): 125-128.
LIU Meng-Sheng, SUN Shu-Jing. Information Security Risk Assessment Based on WNN and EGA[J]. Computer Engineering, 2010, 36(22): 125-128.