基于.net的信息系统安全评估系统的设计与实现-计算机科学与技术专业论文.docxVIP

万方数据 万方数据 全评估的时间成本，减少人工操作失误。系统的开发完成提升了安全 评估团队的协作能力、工作效率和风险分析能力，保障了报告质量的 提高和业务数据的安全。 关键词：等级保护；安全评估；.NET；信息系统；量化评估 II Abstract With the recent years of information security incidents blowout, information security issues have gradually been taken seriously, for the security of information systems has become a problem to be solved in all walks of life. The security evaluation of information system is a very important step in the system data and service security protection, only to evaluate the system security situation, can we find the problem in time. So it is very necessary to develop a system to evaluate the security of enterprise information system. At first, this paper analyzes the traditional safety assessment system, automated assessment of the limitations on the information system itself only, and domestic level protection technology development status, in Guizhou Province is put forward for the first time in related technology and principle of information system grading evaluation as a safety assessment based, design and development of a based on B / S structure safety evaluation system. System design process fully considered the quality, efficiency and safety of the balance of the relationship between the three systems, the system evaluation is more objective, comprehensive, rapid and safe. System design to achieve seven big modules, respectively is the module of the user information, the general III situation of the project implementation module, information system module, safety control for on-site verification module, assessment of the overall statistics module, a risk assessment module and automation of the overall assessment module. Refinement level protection assessment process, the collection and analysis of information system data are also realized in the system function, refine the information system related to the physical security, network security, host security and application security, data security and system security in 73 control points in th