欢迎来到天天文库
浏览记录
ID:6136754
大小:1.64 MB
页数:30页
时间:2018-01-04
《GBT 20984-2007 信息安全技术 信息安全风险评估规范》由会员上传分享,免费在线阅读,更多相关内容在行业资料-天天文库。
1、ICS35.040180督黔中华人民共和国国家标准GB/T20984一2007信息安全技术信息安全风险评估规范Informationsecuritytcchnology一RiskasscssmentsPecificationfOrinformationsecurity2007一06一14发布2007一11一01实施中华人民共和国国家质量监督检验检疫总局发布中国国家标准化管理委员会GB/T20984一2007目次别舀·········,················,························································
2、······························⋯⋯1引言············,·····································,·······························································⋯⋯n1范围·············································································································⋯⋯12规范性引用文件·················
3、··························,··········.·.............⋯⋯,..............⋯⋯,13术语和定义······················································,·············............·······............⋯⋯14风险评估框架及流程············································..............⋯⋯,.............⋯⋯,⋯⋯34.1风险要素关系············
4、·················,··········,·,···············........................⋯⋯,.⋯⋯,⋯34.2风险分析原理···························,···········,·····················..................................⋯⋯34.3实施流程······4·····································································........······⋯⋯,,...⋯⋯
5、45风险评估实施··········································.............⋯⋯,..........⋯⋯,.⋯⋯,,,......⋯⋯551风险评估准备····························,················,···········.......⋯⋯,.⋯,....................⋯⋯55.2资产识别·································,················,··············‘··············⋯⋯,.......
6、.....⋯⋯65.3威胁识别···········································,··············································⋯⋯,..··⋯⋯85.4脆弱性识别··············································································.··.............⋯⋯,⋯105.5已有安全措施确认······················.............⋯⋯,..............⋯⋯,,..
7、.⋯⋯,.⋯,..........⋯⋯H5.6风险分析·······················,···········································································⋯⋯125.7风险评估文档记录······················,,············⋯⋯,,......................⋯⋯,..............⋯⋯136信息系统生命周期各阶段的风险评估·······
此文档下载收益归作者所有