GB/T 20984-2022 Translated English of Chinese Standard (GB/T20984-2022, GBT 20984-2022): Information security technology -- Risk assessment method for information security [Buy--download True-PDF in 3-second: https://play.google.com/books > Sign in > This BOOK > "3-dots" > Export > Save as "*.pdf"]https://www.chinesestandard.net, 21/08/2022 - 49 من الصفحات This document describes the basic concepts of information security risk assessment, relationship between risk factors, principles of risk analysis, implementation process and assessment method of risk assessment, as well as the implementation points and work forms of risk assessment at different stages of information system lifecycle. This document applies to all types of organizations conducting information security risk assessments. |
عبارات ومصطلحات مألوفة
According analyze application software assessment and management Asset identification asset value assets is required attribute is destroyed availability of assets behavioral capabilities business bearing Business identification business importance cloud computing Code auditing components and unit comprehensive evaluation level confidentiality of assets damage degree of difficulty degree of impact design plan difficulty of vulnerability document environment equipment room existing security control exploited by threat frequency statistics GB/T High Medium Low impact on assets impact on business impact on system information security information system Inspection assessment Level Identification Low Very low Man-made and accident management tools operation organization penetration testing platform possibility of risk relevant risk analysis risk assessment process risk calculation risk evaluation criteria risk occurrence security attribute security incident security requirement self-assessment system asset risk system components system lifecycle threat behavior threat identification threat sources threat types Type Physical unit assets vulnerability assessment vulnerability being exploited vulnerability identification