摘要
针对业务专网网络安全防护体系效能评估难的问题,通过参考软件研制能力成熟度模型,提出了网络安全能力指标体系的构建方法,区分实践域、目标项和可度量项3个层级合理设计指标项,通过先分项定量评定,再总体综合评定的方法,确定业务专网网络安全防护体系能力等级。网络防御能力指标体系的构建和应用,为衡量业务专网网络安全防护体系效能提供了方法路径,对后续业务专网网络安全防护体系的规划、建设和运维等具有积极指导意义。
In view of difficulties in evaluating the effectiveness of the security protection system of service private network,a method for establishing a network security capability index system is proposed by using software development capability maturity model for reference.The index items are reasonably designed through distinguishing the three levels of practice domain,target items and measurable items.The capability level of the security protection system of service private network is determined in the way of item quantitative evaluation before overall comprehensive evaluation.Establishment and application of the network defense capability index system offers approaches to measuring the effectiveness of the security protection system of service private network,being a significant guideline to the following planning,building and maintaining of the security protection system.
作者
王泽伟
王莉莉
储光
WANG Zewei;WANG Lili;CHU Guang(Xi’an Satellite Control Center,Xi’an 710004,China;Equipment Management and Unmanned Aerial Vehicle Engineering College,Air Force Engineering University,Xi’an 710051,China)
出处
《计算机与网络》
2024年第6期494-500,共7页
Computer & Network
关键词
网络防御
指标
成熟度
可度量项
评估
体系效能
network defense
index
maturity
measurable item
evaluation
system effectiveness
