The Design And Implementation Of Information Security Risk Assessment System For Data Center

The data center is a complex set of facilities,including not only computer systems and other ancillary equipment(such as communications and storage systems),but also contain redundant data communicati ons connections,environmental control equipment,monitoring equipment and various safety devices.The data center information security has become one of the main problems of information security.In order to safeguard the security of the data center must carry out security risk assessment.In order to improve the efficiency of assessment,to shorten the evaluation cycle,and standardize the evaluation process,the urgent need to develop an information security risk assessment supporting software,informati on security risk assessment of the smooth implementation.In order to meet the business needs of data center information security risk assessment,design and information security risk assessment system for the data center,specifically carried out the foll owing:(1)Functional requirements and performance requirements of the data center information security risk assessment system.(2)Design the overall architecture of data center information security risk assessment software,the system functionality is di vided into a number of such sub-function modules,the detailed design of the system core of key modules,and data table design.(3)Using ASP.NET technology and SQL Server 2008 tools based on Visual Studio platform systems development,to achieve the core functionality of the data center software system.(4)The proposed program of system testing,functional testing and performance testing of the data center information security risk assessment system.This paper develops data center information security risk assessment system to the information security risk assessment,asset identification,threat identification,vulnerability based,risk calculation and risk management plans,an important part of the standardized input and to assist assessors data sorting,classification,calculation and statistics,provide a comprehensive and systematic data base for assessing staff more comprehensive,more effective and solve problems,provide better data support.