民航网络信息安全风险:分类、识别与防范策略

DEStech Transactions on Environment, Energy and Earth Science Pub Date : 2021-03-20 DOI:10.12783/DTEEES/PEEES2020/35463

Li Ran

{"title":"民航网络信息安全风险:分类、识别与防范策略","authors":"Li Ran","doi":"10.12783/DTEEES/PEEES2020/35463","DOIUrl":null,"url":null,"abstract":"Information security of civil aviation network is an important issue in national cyberspace security governance. Based on the ISO27001 information security management system, the main contribution of this paper is build a classification and identification framework to identify key sources and specific factors of information security risks in civil aviation network through generalization and summary approaches. The detected risk sources mainly include management subject, management process, technology, laws and regulations, and infrastructure. In accordance with the attributes of different risk sources, systematic preventive strategies are proposed in this paper to serve as references for preventing and resolving information security risks in civil aviation network.","PeriodicalId":11369,"journal":{"name":"DEStech Transactions on Environment, Energy and Earth Science","volume":"84 1","pages":""},"PeriodicalIF":0.0000,"publicationDate":"2021-03-20","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":"{\"title\":\"Information Security Risks in Civil Aviation Network: Classification, Identification and Preventive Strategies\",\"authors\":\"Li Ran\",\"doi\":\"10.12783/DTEEES/PEEES2020/35463\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Information security of civil aviation network is an important issue in national cyberspace security governance. Based on the ISO27001 information security management system, the main contribution of this paper is build a classification and identification framework to identify key sources and specific factors of information security risks in civil aviation network through generalization and summary approaches. The detected risk sources mainly include management subject, management process, technology, laws and regulations, and infrastructure. In accordance with the attributes of different risk sources, systematic preventive strategies are proposed in this paper to serve as references for preventing and resolving information security risks in civil aviation network.\",\"PeriodicalId\":11369,\"journal\":{\"name\":\"DEStech Transactions on Environment, Energy and Earth Science\",\"volume\":\"84 1\",\"pages\":\"\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2021-03-20\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"1\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"DEStech Transactions on Environment, Energy and Earth Science\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.12783/DTEEES/PEEES2020/35463\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"DEStech Transactions on Environment, Energy and Earth Science","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.12783/DTEEES/PEEES2020/35463","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 1

摘要

民航网络信息安全是国家网络空间安全治理的重要问题。本文的主要贡献是在ISO27001信息安全管理体系的基础上，通过归纳总结的方法，构建了民航网络信息安全风险的分类识别框架，识别出民航网络信息安全风险的关键来源和具体因素。检测到的风险源主要包括管理主体、管理流程、技术、法律法规、基础设施等。针对不同风险源的属性，本文提出了系统的防范策略，为民航网络信息安全风险的防范和化解提供参考。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

Information Security Risks in Civil Aviation Network: Classification, Identification and Preventive Strategies

Information security of civil aviation network is an important issue in national cyberspace security governance. Based on the ISO27001 information security management system, the main contribution of this paper is build a classification and identification framework to identify key sources and specific factors of information security risks in civil aviation network through generalization and summary approaches. The detected risk sources mainly include management subject, management process, technology, laws and regulations, and infrastructure. In accordance with the attributes of different risk sources, systematic preventive strategies are proposed in this paper to serve as references for preventing and resolving information security risks in civil aviation network.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

DEStech Transactions on Environment, Energy and Earth Science

自引率

0.00%

发文量