| With the development of internet and the continuous progress of informationization, the construction of China's electronic government system roared and it's security issues have also been mentioned on strategic height. In the face of network attacks, virus attacks and malicious threats , how to make the electronic information network systems can not be the illegally invasioned , keep the data secure and protect the safe operation of network equipment, has become an issue in hand. In such circumstances, the author proposed a new OHF approach through a variety of analysis on risk methods existing. The method is a comprehensive integration of OCTAVE, failure analysis techniques and AHP. using it the author analyze and evaluate the e-government system risks from quantitative to the qualitative. Finally, the author chose the government's internal OA System as target to analysis with the new theory.The first chapter introduces background, meaning, and current research and development of the selection of the topic.Chapter 2 is mainly on the content and features of the e-government system ,theory of e-government system security risks, and e-government system security management process in particular on the importance of risk analysis process; Chapter 3 introduces the theoretical methods for risk analysis, including electronic information systems risk analysis methods and the capacity requirements,and the existing major security risk analysis methods analyze the two aspects;on the basis of the analysis above, in chapter 4 the author integrated Octave, fault tree and AHP methods and proposed the OHF risk analysis method; chapter 5 is a comprehensive case study. Using the theory the author proposed ahead the author selected a typical government OA system into security risk analysis ; Chapter 6 is summarizing and the study in the future. |