CN116389171B - 一种信息安全评估检测方法、系统、装置及介质 - Google Patents
一种信息安全评估检测方法、系统、装置及介质 Download PDFInfo
- Publication number
- CN116389171B CN116389171B CN202310651171.XA CN202310651171A CN116389171B CN 116389171 B CN116389171 B CN 116389171B CN 202310651171 A CN202310651171 A CN 202310651171A CN 116389171 B CN116389171 B CN 116389171B
- Authority
- CN
- China
- Prior art keywords
- risk value
- personnel
- network system
- value
- subtraction
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000001514 detection method Methods 0.000 title claims abstract description 35
- 230000035515 penetration Effects 0.000 claims abstract description 42
- 238000004364 calculation method Methods 0.000 claims abstract description 30
- 230000000903 blocking effect Effects 0.000 claims description 67
- 230000009467 reduction Effects 0.000 claims description 55
- 238000012423 maintenance Methods 0.000 claims description 37
- 238000005457 optimization Methods 0.000 claims description 30
- 238000000034 method Methods 0.000 claims description 28
- 238000012360 testing method Methods 0.000 claims description 14
- 238000004590 computer program Methods 0.000 claims description 10
- 230000003203 everyday effect Effects 0.000 claims description 9
- 230000004044 response Effects 0.000 claims description 8
- 230000007123 defense Effects 0.000 claims description 4
- 238000004088 simulation Methods 0.000 claims description 3
- 238000011156 evaluation Methods 0.000 abstract description 16
- 238000012502 risk assessment Methods 0.000 abstract description 3
- 230000002354 daily effect Effects 0.000 description 2
- 238000010586 diagram Methods 0.000 description 2
- 238000005516 engineering process Methods 0.000 description 2
- 238000004422 calculation algorithm Methods 0.000 description 1
- 238000004891 communication Methods 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 230000008569 process Effects 0.000 description 1
- 238000012545 processing Methods 0.000 description 1
- 239000007787 solid Substances 0.000 description 1
- 230000009466 transformation Effects 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/20—Network architectures or network communication protocols for network security for managing network security; network security policies in general
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/14—Network analysis or design
- H04L41/142—Network analysis or design using statistical or mathematical methods
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/14—Network analysis or design
- H04L41/145—Network analysis or design involving simulating, designing, planning or modelling of a network
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/40—Network security protocols
-
- Y—GENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
- Y04—INFORMATION OR COMMUNICATION TECHNOLOGIES HAVING AN IMPACT ON OTHER TECHNOLOGY AREAS
- Y04S—SYSTEMS INTEGRATING TECHNOLOGIES RELATED TO POWER NETWORK OPERATION, COMMUNICATION OR INFORMATION TECHNOLOGIES FOR IMPROVING THE ELECTRICAL POWER GENERATION, TRANSMISSION, DISTRIBUTION, MANAGEMENT OR USAGE, i.e. SMART GRIDS
- Y04S10/00—Systems supporting electrical power generation, transmission or distribution
- Y04S10/50—Systems or methods supporting the power network operation or management, involving a certain degree of interaction with the load-side end user applications
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Computer Security & Cryptography (AREA)
- Signal Processing (AREA)
- Algebra (AREA)
- General Engineering & Computer Science (AREA)
- Computing Systems (AREA)
- Physics & Mathematics (AREA)
- Computer Hardware Design (AREA)
- General Physics & Mathematics (AREA)
- Mathematical Analysis (AREA)
- Mathematical Optimization (AREA)
- Mathematical Physics (AREA)
- Probability & Statistics with Applications (AREA)
- Pure & Applied Mathematics (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
- Storage Device Security (AREA)
Abstract
Description
Claims (7)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202310651171.XA CN116389171B (zh) | 2023-06-05 | 2023-06-05 | 一种信息安全评估检测方法、系统、装置及介质 |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202310651171.XA CN116389171B (zh) | 2023-06-05 | 2023-06-05 | 一种信息安全评估检测方法、系统、装置及介质 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN116389171A CN116389171A (zh) | 2023-07-04 |
CN116389171B true CN116389171B (zh) | 2023-08-11 |
Family
ID=86969759
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN202310651171.XA Active CN116389171B (zh) | 2023-06-05 | 2023-06-05 | 一种信息安全评估检测方法、系统、装置及介质 |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN116389171B (zh) |
Citations (18)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US7552480B1 (en) * | 2002-04-23 | 2009-06-23 | Citibank, N.A. | Method and system of assessing risk using a one-dimensional risk assessment model |
CN102468985A (zh) * | 2010-11-01 | 2012-05-23 | 北京神州绿盟信息安全科技股份有限公司 | 针对网络安全设备进行渗透测试的方法和系统 |
CN103400027A (zh) * | 2013-07-09 | 2013-11-20 | 贵州大学 | 信息系统的风险评估算法 |
KR20160004791A (ko) * | 2014-07-04 | 2016-01-13 | (주)비트러스트 | 정보자산의 위험평가시스템 및 그 방법 |
CN106713333A (zh) * | 2016-12-30 | 2017-05-24 | 北京神州绿盟信息安全科技股份有限公司 | 一种信息系统风险评估方法及装置 |
CN109146240A (zh) * | 2018-07-03 | 2019-01-04 | 北京航空航天大学 | 一种面向智能网联车辆的信息安全风险评估方法及系统 |
CN110750795A (zh) * | 2019-10-25 | 2020-02-04 | 华夏银行股份有限公司 | 一种信息安全风险的处理方法及装置 |
CN111083126A (zh) * | 2019-12-05 | 2020-04-28 | 国网浙江省电力有限公司电力科学研究院 | 一种基于专家知识库的渗透测试风险评估方法以及模型 |
CN112511512A (zh) * | 2020-11-19 | 2021-03-16 | 北京凌云信安科技有限公司 | 漏洞扫描引擎和威胁检测引擎的风险管理系统 |
CN112532631A (zh) * | 2020-11-30 | 2021-03-19 | 深信服科技股份有限公司 | 一种设备安全风险评估方法、装置、设备及介质 |
CN113344238A (zh) * | 2021-03-29 | 2021-09-03 | 广西电网有限责任公司电力科学研究院 | 一种配电网安全风险评估和消减方法、装置及存储介质 |
CN113542279A (zh) * | 2021-07-16 | 2021-10-22 | 北京源堡科技有限公司 | 一种网络安全风险评估方法、系统及装置 |
CN114003920A (zh) * | 2021-11-09 | 2022-02-01 | 中国工商银行股份有限公司 | 系统数据的安全评估方法及装置、存储介质和电子设备 |
CN114997607A (zh) * | 2022-05-17 | 2022-09-02 | 保利长大工程有限公司 | 一种基于工程检测数据的异常评估预警方法及系统 |
CN115499840A (zh) * | 2022-08-12 | 2022-12-20 | 深圳聚果科技有限公司 | 一种移动互联网用安全评估系统及方法 |
CN115860471A (zh) * | 2022-12-01 | 2023-03-28 | 贵州电网有限责任公司 | 一种网络安全风险评估方法 |
CN116050840A (zh) * | 2023-01-28 | 2023-05-02 | 国家信息中心 | 信息安全风险管理方法及管理系统 |
CN116050841A (zh) * | 2023-01-28 | 2023-05-02 | 国家信息中心 | 信息安全风险评估方法、装置、终端设备及存储介质 |
Family Cites Families (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR100955281B1 (ko) * | 2007-10-18 | 2010-04-30 | 한국정보보호진흥원 | 위협 관리를 위한 보안 위험도 평가 방법 |
US9521160B2 (en) * | 2014-12-29 | 2016-12-13 | Cyence Inc. | Inferential analysis using feedback for extracting and combining cyber risk information |
JP7149219B2 (ja) * | 2019-03-29 | 2022-10-06 | 株式会社日立製作所 | リスク評価対策立案システム及びリスク評価対策立案方法 |
US20220278993A1 (en) * | 2019-09-05 | 2022-09-01 | Cytwist Ltd. | An organizational cyber security system and method |
-
2023
- 2023-06-05 CN CN202310651171.XA patent/CN116389171B/zh active Active
Patent Citations (18)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US7552480B1 (en) * | 2002-04-23 | 2009-06-23 | Citibank, N.A. | Method and system of assessing risk using a one-dimensional risk assessment model |
CN102468985A (zh) * | 2010-11-01 | 2012-05-23 | 北京神州绿盟信息安全科技股份有限公司 | 针对网络安全设备进行渗透测试的方法和系统 |
CN103400027A (zh) * | 2013-07-09 | 2013-11-20 | 贵州大学 | 信息系统的风险评估算法 |
KR20160004791A (ko) * | 2014-07-04 | 2016-01-13 | (주)비트러스트 | 정보자산의 위험평가시스템 및 그 방법 |
CN106713333A (zh) * | 2016-12-30 | 2017-05-24 | 北京神州绿盟信息安全科技股份有限公司 | 一种信息系统风险评估方法及装置 |
CN109146240A (zh) * | 2018-07-03 | 2019-01-04 | 北京航空航天大学 | 一种面向智能网联车辆的信息安全风险评估方法及系统 |
CN110750795A (zh) * | 2019-10-25 | 2020-02-04 | 华夏银行股份有限公司 | 一种信息安全风险的处理方法及装置 |
CN111083126A (zh) * | 2019-12-05 | 2020-04-28 | 国网浙江省电力有限公司电力科学研究院 | 一种基于专家知识库的渗透测试风险评估方法以及模型 |
CN112511512A (zh) * | 2020-11-19 | 2021-03-16 | 北京凌云信安科技有限公司 | 漏洞扫描引擎和威胁检测引擎的风险管理系统 |
CN112532631A (zh) * | 2020-11-30 | 2021-03-19 | 深信服科技股份有限公司 | 一种设备安全风险评估方法、装置、设备及介质 |
CN113344238A (zh) * | 2021-03-29 | 2021-09-03 | 广西电网有限责任公司电力科学研究院 | 一种配电网安全风险评估和消减方法、装置及存储介质 |
CN113542279A (zh) * | 2021-07-16 | 2021-10-22 | 北京源堡科技有限公司 | 一种网络安全风险评估方法、系统及装置 |
CN114003920A (zh) * | 2021-11-09 | 2022-02-01 | 中国工商银行股份有限公司 | 系统数据的安全评估方法及装置、存储介质和电子设备 |
CN114997607A (zh) * | 2022-05-17 | 2022-09-02 | 保利长大工程有限公司 | 一种基于工程检测数据的异常评估预警方法及系统 |
CN115499840A (zh) * | 2022-08-12 | 2022-12-20 | 深圳聚果科技有限公司 | 一种移动互联网用安全评估系统及方法 |
CN115860471A (zh) * | 2022-12-01 | 2023-03-28 | 贵州电网有限责任公司 | 一种网络安全风险评估方法 |
CN116050840A (zh) * | 2023-01-28 | 2023-05-02 | 国家信息中心 | 信息安全风险管理方法及管理系统 |
CN116050841A (zh) * | 2023-01-28 | 2023-05-02 | 国家信息中心 | 信息安全风险评估方法、装置、终端设备及存储介质 |
Non-Patent Citations (1)
Title |
---|
网络恐怖主义防范视角下的城市安全系统去脆弱性;程聪慧;郭俊华;;情报杂志(第08期);全文 * |
Also Published As
Publication number | Publication date |
---|---|
CN116389171A (zh) | 2023-07-04 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN108959934A (zh) | 安全风险评估方法、装置、计算机设备和存储介质 | |
Ahmed et al. | Model-based attack detection scheme for smart water distribution networks | |
CN110929648A (zh) | 监控数据处理方法、装置、计算机设备以及存储介质 | |
CN110633893B (zh) | 一种策略效能监控方法、装置以及计算机设备 | |
CN112016929B (zh) | 线上支付的方法及装置、电子设备、计算机存储介质 | |
CN116319099A (zh) | 一种多终端的财务数据管理方法和系统 | |
CN110213236B (zh) | 确定业务安全风险的方法、电子设备及计算机存储介质 | |
CN109063969A (zh) | 一种账户风险评估的方法及装置 | |
CN116502897B (zh) | 一种基于图像识别的基建安全监控方法及系统 | |
CN107705126B (zh) | 一种交易指令的处理方法及装置 | |
KR20190075495A (ko) | 블록체인상에서 발생하는 디도스 공격 방지 방법 및 디도스 공격 방지 가능한 블록체인 시스템 | |
CN116389171B (zh) | 一种信息安全评估检测方法、系统、装置及介质 | |
CN116090605A (zh) | 一种管网预警方法、装置、电子设备及存储介质 | |
CN106656917A (zh) | 一种账户权限的管理方法及设备 | |
RU2642374C1 (ru) | Способ построения системы защиты от компьютерных атак для автоматизированных систем управления | |
CN109753792B (zh) | 一种攻击检测方法、装置及电子设备 | |
CN112036238A (zh) | 人脸数据处理方法、装置、电子设备及存储介质 | |
CN111105113B (zh) | 一种核电厂灾害概率安全分析方法及装置 | |
CN115130577A (zh) | 一种欺诈号码识别方法、装置及电子设备 | |
CN112000578B (zh) | 人工智能系统的测试方法和装置 | |
CN112686567B (zh) | 异常运维操作处理方法、装置、计算机设备和存储介质 | |
RU2742179C1 (ru) | Способ построения системы обнаружения инцидентов информационной безопасности в автоматизированных системах управления | |
CN114461293B (zh) | 配置文件式开放数据获取方法、装置及电子设备 | |
CN110020933B (zh) | 应用于财务业务系统的自动退出方法、装置和计算机设备 | |
CN116861364B (zh) | 基于erp系统的数据处理方法与系统 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant | ||
CB03 | Change of inventor or designer information | ||
CB03 | Change of inventor or designer information |
Inventor after: Hong Zhixu Inventor after: Zhang Kejia Inventor after: Liu Jianchao Inventor after: Zhang Xiaojian Inventor after: Hong Yuxuan Inventor after: Qian Yahui Inventor after: Wang Yang Inventor after: Liu Jinlong Inventor after: Zhou Zhangbao Inventor before: Hong Zhixu Inventor before: Zhang Kejia Inventor before: Liu Jianchao Inventor before: Zhang Xiaojian Inventor before: Hong Yuxuan Inventor before: Qian Yahui Inventor before: Wang Yang Inventor before: Liu Jinlong Inventor before: Zhou Zhangbao |