| With the rapid development of information technology and cyberspace, economy, science, culture, education, and management are equipped with new vitality. However, on the other hand, information security also stands out and draw a lot special attentions. Thus, information security evaluation plays a key factor in the construction of information infrastructure. In today’s information age, as a main operation model for government and citizens, risk assessment is playing a critical role.By studying the risk assessment, not only can reduce the cost of research and development, but also can improve the reliability and security.In this paper, an introduction of one office software project is addressed in the beginning. The project is one part of the whole e-government system, which illuminates the e-government system security threat, assessment requirements and importance, etc. Then, a detailed explanation of ISO117799 standards is elaborated, followed by an introduction of one of the most important components in the authentication of the measurement- the model, factors, and steps of risk assessment. Later, a brand new risk assessment and calculation model is discussed. With some complementary addition, it forms a new set of measurement certification system in line with international standards of risk assessment. By using the above method, in front of the electronic government affairs system development, can use risk assessment process and numerical model intuitive display. They model has also been applied to one of the government offices and achieved good result, which provides a practical verification example. |
PDF Full Text Request