Research on Information Security Risk Analysis Model Using Information Entropy

doi:10.13190/jbupt.200802.50.094

JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM ›› 2008, Vol. 31 ›› Issue (2): 50-53.doi: 10.13190/jbupt.200802.50.094

• Papers • Previous Articles Next Articles

Research on Information Security Risk Analysis Model Using Information Entropy

TANG Yong-li1,2, XU Guo-ai1, NIU Xin-xin1, YANG Yi-xian1

1. Information Security Center, State Key Laboratory of Networking and Switching Technology, Beijing University of Posts and Telecommunications, Beijing 100876, China；
2. College of Computer Science and Technology，Henan Polytechnic University，Jiaozuo 410003，China

Received:2007-11-21 Revised:1900-01-01 Online:2008-04-28 Published:2008-04-28
Contact: TANG Yong-li

Abstract

Abstract:

According to the characteristic of uncertainty information in the information system risk analysis process, and information system risk measure using entropy theory, a risk analysis algorithm using entropy-weight coefficient is presented. When combining qualitative analysis and quantitative calculation, a model of information system risk analysis is constructed. Finally, an instance of the risk analysis approach based on the model is analyzed and validated, which demonstrates the rationality and feasibility of the model. So it provides a new method for information system risk analysis.

Key words: information security, risk analysis, entropy-weight coefficient, fault tree analysis

CLC Number:

TP393

TANG Yong-li1,2, XU Guo-ai1, NIU Xin-xin1, YANG Yi-xian1. Research on Information Security Risk Analysis Model Using Information Entropy[J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2008, 31(2): 50-53.

[1]	LEI Wei-jia, SHENG Jie, XIE Xian-zhong. Encoding and Decoding Scheme of Security-Enhanced LT Codes [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2016, 39(4): 108-113.
[2]	YANG Hong-yu, CHENG Xiang. Information System Risk Control Method Based on Work-Flow [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2016, 39(3): 105-109.
[3]	GE Hai-hui, ZHENG Shi-hui, CHEN Tian-ping, YANG Yi-xian. Fuzzy Risk Assessment of Information Security Threat Scenario [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2013, 36(6): 89-92,107.
[4]	QIN Hua-wang;DAI Yue-wei;WANG Zhi-quan. Threshold Signature Scheme Based on the General Access Structure [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2009, 32(6): 102-104.
[5]	LuZhenbang,ZHOU Bo. Hierarchical Risk Assessment Based on Shapley Entropies and Choquet Integrals [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2009, 32(6): 83-87.
[6]	LEI Xin-Feng. Implement of Chinese-Wall Model Based on an Open Synthetical Security Model [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2009, 32(3): 73-76.
[7]	XU Guo-ai1, ZHANG Miao1, CHEN Ai-guo1, LI Zhong-xian2 . An Integer Overflow Detection Method Based on Integer Variable Unification [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2008, 31(6): 90-93.
[8]	LI Da-lin, LIN Xue-hong, LIN Jia-ru, WU Wei-ling. A Necessary Condition for Secure Network Coding [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2008, 31(5): 9-12.
[9]	LEI Xin-feng1, LIANG Ming-xiao2, LIU Jun1, XIAO Jun-mo1 . An Open Synthetical Security Model [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2008, 31(1): 18-21.
[10]	ZHAO He-ping. Application of Message Extension to Spacecraft Telecommand Data Protection [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2006, 29(6): 5-8.
[11]	DONG Wei, YANG YI-xian, NIU XIN-xin. Security Technology Research of GlobalPlatform Based on JavaSIM Card [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2006, 29(3): 91-94.
[12]	PENG Jun-hao，XU Guo-ai，YANG Yi-xian，TANG Yong-li. Measure Model of Security Risk Based on Utility [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2006, 29(2): 59-61.
[13]	XIA Guang-sheng, YUAN Zhong-lan, YANG Yi-xian, HU Zheng-ming. A New Visual Cryptography Algorithm to Hide a Two-ColorImagein a Single Shared Image [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2002, 25(3): 12-16.
[14]	YAO Hui-ming, SUI Ai-fen, YANG Yi-xian. The Designs for the 3GPP Authentication and Key Generation Functions [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2002, 25(3): 98-103.

Research on Information Security Risk Analysis Model Using Information Entropy

PDF

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 14

Recommended Articles

Metrics

Comments