通信学报 ›› 2012, Vol. 33 ›› Issue (Z1): 210-215.doi: 10.3969/j.issn.1000-436x.2012.z1.027

• 学术论文 • 上一篇    下一篇

基于业务流程的ERP信息安全进化熵的风险评估

宋彪1,2,朱建明1   

  1. 1 中央财经大学 信息学院,北京 100081
    2 内蒙古财经大学 会计学院,内蒙古 呼和浩特 010051
  • 出版日期:2012-09-25 发布日期:2017-08-03
  • 基金资助:
    国家自然科学基金资助项目;教育部科学技术研究重点项目基金资助项目;中央财经大学科研创新团队支持计划基金资助项目;内蒙古自然科学基金资助项目

Evolution entropy risk assessment of ERP information security based on the business process

Biao SONG1,2,Jian-ming ZHU1   

  1. 1 School of Information,Central University of Finance and Economics,Beijing 100081,China
    2 School of Account,Inner Mongolia University of Finance and Economics,Huhhot 010051,China
  • Online:2012-09-25 Published:2017-08-03
  • Supported by:
    The National Natural Science Foundation of China;Ministry of Education Key Project of Science and Technology;Central University of Finance and Economics Research and Innovation Team Supports Project Grant;The Natural Science Foundation of Inner Mongolia

在线阅读

1

PDF下载

475

被引次数

11

摘要:

ERP内部安全漏洞与业务流程紧密结合,与业务流程呈现共生性,使信息资产的价值具有了动态属性并难以确定,因此此类安全问题不易被及时捕捉和评估。通过对ERP系统与其他信息系统在信息安全方面的区别,提出基于业务流程的ERP系统信息安全进化熵的概念,并建立了适应ERP系统特点的风险评估模型,为ERP系统的信息安全风险评估提出了新的思路。

关键词: 业务流程, ERP, 信息安全, 熵, 风险评估

Abstract:

ERP internal security holes often bind with business process closely,make the value of information assets has dynamic properties and difficult to determined,so such security will not be prompt capture and evaluation.Compored the difference of ERP system and other information system in the information security,the risk assessment model which adapt to the characteristics of ERP system was proposed,and gave a new idea for the ERP system information safety risk assessment.

Key words: business process, ERP, information security, entropy, risk assessment

No Suggested Reading articles found!