| Information security plays an important role in the modern society, thus the importance of information security risk assessment work is also on the agenda.This paper explores and researches the design and development of information system security risk assessment system based on fuzzy logic, the main work is as follows:First, study seriously on information security risk assessment related knowledge;be familiar with relevant standard of domestic and international information system security risk assessment. Study on Several kinds of risk evaluation methods, we found that there exists some uncertainty in information system safety assessment; there is an important significance for effective risk assessment to control of these uncertainties [1].Fuzzy logic principle happens to effectively deal with these uncertainties and solve the problem of expert assessment process of language. Therefore, this paper proposed the information security risk assessment system based on the fuzzy logic theory.Secondly, this paper is based on GB/T 20984(Information Security Technology Risk Assessment Specification for Information Security) improving and optimizing the implementation of the risk assessment process. Given a set of treatment scheme about the design and implementation of the information system security risk assessment.Finally, based on the Microsoft Visual Studio 2010 platform, C# programming language is used to develop the information security risk assessment system based on fuzzy logic tool, this tool aims to identify and confirm the various elements of information security risk assessment process, each risk factor value will be given by assessment experts, the accuracy of the fuzzy logic will be further improved by using the calculation principle; in addition, to improve the calculation accuracy based on the evaluation results, also proved the evaluation method proposed in this paper has the characteristics of easy operation and high efficiency. |
PDF Full Text Request