The Study and Implementation of Survivability Hierarchical Evaluation Method in Website Evaluation
|School||National University of Defense Science and Technology|
|Keywords||Security evaluation Survivability AHP Survivability Hierarchical Evaluation Method (SHEM) Website|
As the development of information security technology, it is crucial to prove the reliability and the safety guarantee of the information system. How to prove the safety and the reliability of the information system,how to decide the proper security configuration has become the key problem for the information security researchers and users. As the necessary part of the security architecture, Security evaluation has become very important in information system protection and safety guarantee.Based on analysis the traditional security evaluation methods, a Improved AHP(IAHP) and Survivability Hierarchical Evaluation Method(SHEM) are presented, which have been implemented in the survivability evaluation of a website. Around the research and implementation of the SHEM in evaluation, the following contents are studied in this thesis.1. Based on analysis of the traditional AHP method, IAHP is designed and implemented. The IAHP can quantify the effect of the evaluation parameters on security evaluation results.2. Based on IAHP, the SHEM is presented. Complicated the characteristic of the SNA method and the hierarchical evaluation method, The SHEM can quantify the survivability evaluation system, and provide the foundation of quantitative system security evaluation.3. The IAHP and SHEM are applied to the survivable evaluation of a news website. The evaluation results show that The IAHP and SHEM are proved to be correct, and they can provide efficient tools for website survivability evaluation.Part of the production in this paper has been applied to a provincial news website and has greatly improved its security defense ability.