基于业务流程的ERP信息安全进化熵的风险评估

doi:10.3969/j.issn.1000-436x.2012.z1.027

Abstract

Abstract:

ERP internal security holes often bind with business process closely,make the value of information assets has dynamic properties and difficult to determined,so such security will not be prompt capture and evaluation.Compored the difference of ERP system and other information system in the information security,the risk assessment model which adapt to the characteristics of ERP system was proposed,and gave a new idea for the ERP system information safety risk assessment.

Key words: business process, ERP, information security, entropy, risk assessment

Biao SONG,Jian-ming ZHU. Evolution entropy risk assessment of ERP information security based on the business process[J]. Journal on Communications, 2012, 33(Z1): 210-215.

Figures/Tables 2

References 10

[1]	朱岩 . 一种ERP 风险评估法——企业资源功能展开法EFD[J]. 清华大学学报, 2006,46(S1): 15-19. ZHU Y . EFD—a risk assessment method of enterprise resource planning implementation[J]. Tsinghua Science and Technology, 2006,46(S1): 15-19.
[2]	许振宇 . 基于模糊综合评判的ERP项目风险评估[J]. 情报杂志, 2006,(8): 89-93. XU Z Y . Risk assessment of ERP project based on fuzzy synthesis judgment[J]. Journal of Information, 2006,(8): 89-93.
[3]	王立彦 . ERP系统实施与公司业绩增长之关系——基于中国上市公司数据的实证分析[J]. 管理世界, 2007,(3): 116-121. WANG L Y . Relationship of the ERP system implementation and performance of the company growth-empirical analysis based on the data of China's listed companies[J]. Management World, 2007,(3): 116-121.
[4]	沈沉 . ERP安全现状和解决方案[J]. 网络安全技术与应用, 2005,(5): 16-17. SHEN C . ERP security current situation and solution[J]. Network security technology＆application, 2005,(5): 16-17.
[5]	MICHAEL E , WHITMAN H J . Principles of Information Security[M]. Canada: GEX Publishing ServicesPress, 2003.
[6]	程乃伟 . ERP系统安全风险评估方法研究[A]. 2010(沈阳)国际安全科学与技术学术研讨会论文集沈阳,中国, 2010. 50-53. CHENG N W . Study on the method of security risk assessment for ERP system[A]. Proceedings of 2010(Shenyang) International Colloquium on Safety Science and Technology[C]. Shenyang,China, 2010. 50-53.
[7]	WEI S , THURAISINGHAM B . Security for enterprise resource planning systems[J]. Information Systems Security, 2007,16(3): 152-163.
[8]	IFINEDO P . Relationship among ERP post-implementation success constructs:An analysis at the organizational level[J]. Computers in Human Behavior, 2010,26(5): 1136-1148.
[9]	HAKIM A . A practical model on controlling the ERP implementation risks[J]. Information Systems, 2010,35(2): 204-214.
[10]	叶强 . 组织因素对ERP使用绩效的影响机制[J]. 管理科学学报, 2010,13(11): 77-81. YE Q . Impact of organizational factors on ERP usage and performance[J]. Journal of Management Sciences in China, 2010,13(11): 77-81.

Metrics

Recommended 0

No Suggested Reading articles found!

时栅划分	流程	安全属性	平均信息资产价值
设计阶段	采购	采购5个	A
开发阶段	销售	销售5个
实施阶段	仓储	仓储3个
运营维护阶段	生产	生产4个

流程	P1	P2	P3	P4	P5
	0.250 052	0.196 688	0.108 217	0.158 255	0.286 787
采购组	0.193 929	0.321 049	0.139 709	0.210 965	0.134 348
	0.387 155	0.237 914	0.028 562	0.034 926	0.311 442
	0.245 609	0.055 693	0.280 211	0.179 219	0.239 269
	0.065 007	0.313 882	0.137 697	0.339 315	0.144 099
销售组	0.355 44	0.055 739	0.268 415	0.028 391	0.292 016
	0.055 908	0.157 965	0.273 899	0.259 961	0.252 267
	0.028 647	0.298 682	0.138 905	0.343 35	0.190 415
	0.266 615	0.642 363	0.091 022
仓储组	0.220 413	0.651 043	0.128 544
	0.322 757	0.326 537	0.350 707
	0.146 003	0.284 153	0.569 844
生产组	0.397 186	0.388 863	0.209 785	0.004 167
	0.161 086	0.284 135	0.401 891	0.152 888
	0.245 728	0.427 192	0.036 018	0.291 063
	0.328 882	0.199 842	0.086 082	0.385 194

[1]	Ping ZHANG, Jincheng DAI, Yuming ZHANG, Sixian WANG, Xiaoqi QIN, Kai NIU. Nonlinear transform coding for semantic communications [J]. Journal on Communications, 2023, 44(4): 1-14.
[2]	Xiaobei ZHANG, Quan ZHANG, Ming FANG, Kun QIN, Qi ZHANG. Research on channel-fixed delay error estimation of wideband digital array radar [J]. Journal on Communications, 2023, 44(3): 24-32.
[3]	Guojun LI, Xu HOU, Changrong YE, Yiping LUO. Wide area cooperative resource allocation algorithm for shortwave communication access network [J]. Journal on Communications, 2023, 44(2): 112-121.
[4]	Chengsheng YUAN, Qiang GUO, Zhangjie FU. Copyright protection algorithm based on differential privacy deep fake fingerprint detection model [J]. Journal on Communications, 2022, 43(9): 181-193.
[5]	Weiyu CHEN, Junshan LUO, Fanggang WANG, Haiyang DING, Shilian WANG, Guojiang XIA. Survey of capacity limits and implementation techniques in wireless covert communication [J]. Journal on Communications, 2022, 43(8): 203-218.
[6]	Chuanhong LIU, Caili GUO, Yang YANG, Jiujiu CHEN, Meiyi ZHU, Lu’nan SUN. Intelligent task-oriented semantic communications:theory, technology and challenges [J]. Journal on Communications, 2022, 43(6): 41-57.
[7]	Rong QIAN, Jianting XU, Kejun ZHANG, Hongyu DONG, Fangyuan XING. Research on HMM based link prediction method in heterogeneous network [J]. Journal on Communications, 2022, 43(5): 214-225.
[8]	Zenghua ZHAO, Yuefan TONG, Jiayang CUI. Device-independent Wi-Fi fingerprinting indoor localization model based on domain adaptation [J]. Journal on Communications, 2022, 43(4): 143-153.
[9]	Jianwu LONG, Jiangzhou ZHU. Multi-scale guided filtering integrated with superpixel and patch shift [J]. Journal on Communications, 2022, 43(11): 158-170.
[10]	Dongjin YU, Yijie WEI, Xiaoxiao SUN, Ke NI, Hujun SHEN. Choreography-driven business process management framework based on blockchain [J]. Journal on Communications, 2021, 42(9): 120-132.
[11]	Zhongping ZHANG, Weixiong LIU, Yuting ZHANG, Yu DENG, Mianxin WEI. ERDOF: outlier detection algorithm based on entropy weight distance and relative density outlier factor [J]. Journal on Communications, 2021, 42(9): 133-143.
[12]	Yimin MAO, Qianhu DENG, Zhigang CHEN. Parallel association rules incremental mining algorithm based on information entropy and genetic algorithm [J]. Journal on Communications, 2021, 42(5): 122-136.
[13]	Nianwen SI, Wenlin ZHANG, Dan QU, Heyu CHANG, Shengxiang LI, Tong NIU. Generalized Grad-CAM attacking method based on adversarial patch [J]. Journal on Communications, 2021, 42(3): 23-35.
[14]	Suxia ZHU, Shulun LIU, Guanglu SUN. Shape similarity differential privacy trajectory protection mechanism based on relative entropy and K-means [J]. Journal on Communications, 2021, 42(2): 113-123.
[15]	Jiang’an DAI, Shengyang LUAN, Minglong ZHAO, Zhaojun ZHANG, Tianshuang QIU. Pol-CCES based modulation recognition method under impulsive noise [J]. Journal on Communications, 2021, 42(12): 121-133.

Evolution entropy risk assessment of ERP information security based on the business process

RichHTML

PDF

Knowledge

Abstract

Cite this article

share this article

Figures/Tables 2

References 10

Related Articles 15

Metrics

Recommended 0