GB/T 20984-2007 Translated English of Chinese Standard. (GBT 20984-2007, GB/T20984-2007, GBT20984-2007): Information security technology - Risk assessment specification for information security

Front Cover
https://www.chinesestandard.net, Jan 13, 2019 - Computers - 55 pages
This standard proposes the basic concepts, element relationships, analysis principles, implementation processes, assessment methods of risk assessment, as well as the implementation key-points and working forms of risk assessment at different stages of the life cycle of information system. This standard applies to normalizing the risk assessment work carried out by the organization.
 

Selected pages

Contents

Foreword
4
Framework and process for risk assessment
10
Risk assessment at each phase of the life cycle of information system
31
Working form of risk assessment
37
Appendix B Informative Risk assessment tool
50

Common terms and phrases

according application software assessment and management assessment results asset A1 asset identification asset value Assigned value business strategy Calculate the loss calculate the risk calculation method Calculation of risk damage database design plan electromagnetic interference element value environment existing security measures exploited by threat frequency of occurrence frequency of threats GB/T hardware hierarchical treatment Identification of asset impact important assets information security information system Inspection-assessment intrusion detection system likelihood of occurrence loss caused loss of security management tools management vulnerability matrix method multiplication method obsolete occurrence of security operating system organization organization’s personnel principle of risk relevant residual risk risk analysis risk assessment process risk assessment tool risk calculation risk elements risk management plan risk matrix security attributes security incident loss security requirements security risk self-assessment severity of vulnerability specific standard technical technical vulnerability threat T1 value-assignment Very-low vulnerability identification vulnerability scanner vulnerability scanning tools vulnerability V1

About the author (2019)

https://www.chinesestandard.net specializes in providing translation services of all Chinese Standards.

Bibliographic information

QR code for GB/T 20984-2007 Translated English of Chinese Standard. (GBT 20984-2007, GB/T20984-2007, GBT20984-2007)
TitleGB/T 20984-2007 Translated English of Chinese Standard. (GBT 20984-2007, GB/T20984-2007, GBT20984-2007): Information security technology - Risk assessment specification for information security
Authorhttps://www.chinesestandard.net
Publisherhttps://www.chinesestandard.net, 2019
Length55 pages
Subjects ›  ›  › 

Business & Economics / Industries / Media & Communications
Computers / Hardware / Cell Phones & Devices
Games & Activities / Video & Mobile
Law / Administrative Law & Regulatory Practice
Performing Arts / Radio / General
Technology & Engineering / Electrical
Technology & Engineering / Electronics / Circuits / General
Technology & Engineering / Electronics / Circuits / Integrated
Technology & Engineering / Electronics / Digital
Technology & Engineering / Electronics / General
Technology & Engineering / Electronics / Microelectronics
Technology & Engineering / Measurement
Technology & Engineering / Mobile & Wireless Communications
Technology & Engineering / Radio
Technology & Engineering / Telecommunications
  
Export CitationBiBTeX EndNote RefMan