| Certain companies is China's leading enterprises in the energy industry, its information system on national energy strategy part of the data play a crucial role. Its subsidiary units, and distributed in many parts of the world, leading to complex network structure, one point may cause problems with the collapse of the entire network, so once the network security problems, will bring very serious consequences.This paper analyzes the current situation in the oil on the basis of information, in-depth study Familiar evaluation reference to the standard security risk assessment model and network, and proposed a network based in the oil and the national standard assessment Operating used to design based on security events risk assessment model. Model describes the complete process of risk assessment, and evaluation process of each part of the work of the content discussed in detail:a risk assessment process of asset identification, threat identification, vulnerability identification of quantitative methods and the use of phase multiplication calculate the risk of security incidents each calculation, and calculation of weighted average risk value of the entire network. Theoretical model by applying evidence the credibility of this risk assessment model for a scientific argument.On this basis, this model applied to the implementation of the method, the oil can be made concrete floor network information security risk assessment implementation. |
PDF Full Text Request