摘要
针对当前网络安全应急响应处置过程严重依赖人员,以及决策过程缺乏科学量化的计算依据,导致响应缓慢,处置不及时,缺乏针对性等问题,文章提出了一种基于风险损失量化模型的网络安全应急处置策略,并将其落地在实际产品上。目前,这种设计已经在安徽移动企业现网环境应用,并取得了初步的成效。
Human work and decisions are dependent heavily on most processes of Cyber security emergency response.The decision-making process lacks scientific and quantitative calculation basis,resulting in slow response and untimely disposal.Author of this paper gives a new policy which is based on a quantitative calculation model for risk and loss calculation.
作者
韩志峰
郑瑞刚
许暖
Han Zhifeng;Zheng Ruigang;Xu Nuan(China Mobile Information Techology Co.,Ltd.,Beijing 100033;China Mobile Communications Group Anhui Co.,Ltd.,Anhui Hefei 230000)
出处
《网络空间安全》
2020年第12期119-125,共7页
Cyberspace Security
关键词
网络安全
应急处置
应急响应
风险计算
定性计算
定量计算
cyber security
emergency response
risk calculation
qualitative calculation
quantitative calculation
risk treatment
