| The rise of information technology influences the development of society and its economy profoundly, widely and powerfully, the level of informatization has become an important symbol,which used to measure the modernization scale and overall national strength, as well as a strongpoint of international development. However, the course of informatization is undoubtedly a process which is full of risks. With the informatization infiltrating, security problem, as the other inherent face of informatization, has come into prominence increasingly. Reality told people that security is the precondition of any system's existence. Informatization construction may be come the"soft rib"of the country in the competition if there is no security assurance, therefore countries around the world are exploring and constructing information assurance system positively so as to construct a strong"immunity system". Nevertheless, as an acknowledged open complex and giant system, how to design to make the whole information assurance system work efficiently? How to measure the assurance ability of constructed information assurance system? The answers of these questions are the start point of my research.Aim at information security risk, according to the research on relative literatures and practices in information security domain and based on advices and suggestions from information experts and security technicians, this paper proposes three elements of information assurance system─strategy, management and technology; following the limited-aim principle, and starting with three elements, the paper also outlines the whole frame of an information assurance system. Based upon all above, according to top-design, the author brings forward a set of active-whist combined indicator system to evaluate the information assurance. With theory and practice, then the paper illuminates the application of this indicator system.The whole paper is composed of six chapters:The first chapter is the preface. The research background of this subject is introduced firstly, viz. on the basis of the introduction of informatization status in America, Russia, Japan, India and China, points out that with the appearance of information security problem which accompanied with informatization, all communities of the society have highly recognized the construction of information assurance system. At the same time, developments of relative theories about information security and practices as well as the construction experience of evaluation indicator system in some relative domains make the research on this subject own important strategic meaning, necessity and possibility as well. At the end of this chapter, the author explains the logic frame and research methods of the paper, in favor of readers to hold the integral situation of this subject.
|
PDF Full Text Request