應用OCTAVE風險評估方法建立資安政策之研究
碩士 === 國防大學理工學院 === 電子工程碩士班 === 97 === The coming of Information Time makes our lives more convenient、but there’s a hazard behind it – Information Security. Sturdy Information Security must be under foundation of Information Security Policy. However、current Information Security Policy generally exis...
| Main Authors: | , |
|---|---|
| Other Authors: | |
| Format: | Others |
| Language: | zh-TW |
| Published: |
2009
|
| Online Access: | http://ndltd.ncl.edu.tw/handle/59351463610563741321 |
| id |
ndltd-TW-097CCIT0428007 |
|---|---|
| record_format |
oai_dc |
| spelling |
ndltd-TW-097CCIT04280072016-05-06T04:10:44Z http://ndltd.ncl.edu.tw/handle/59351463610563741321 應用OCTAVE風險評估方法建立資安政策之研究 Cheng Po-Hsin 鄭博心 碩士 國防大學理工學院 電子工程碩士班 97 The coming of Information Time makes our lives more convenient、but there’s a hazard behind it – Information Security. Sturdy Information Security must be under foundation of Information Security Policy. However、current Information Security Policy generally exists the situation of one size fits all、which usually causes the inconsistency for the demand of organization assignment. Therefore、the Main Scheme of this thesis will be the installation of 「proper」 policy、and also we hope to design an auxiliary tool to establish the Information Security Policy. This thesis utilizes OCTAVE risk assessment method to find out the Information Security risk existing in the organization、and then、as to the impact that Information Security is confronting、it’s expected that we can decrease the risk by the controls of CNS 27001、and also to establish Information Security Policy by this connection. 劉中宇 2009 學位論文 ; thesis 0 zh-TW |
| collection |
NDLTD |
| language |
zh-TW |
| format |
Others
|
| sources |
NDLTD |
| description |
碩士 === 國防大學理工學院 === 電子工程碩士班 === 97 === The coming of Information Time makes our lives more convenient、but there’s a
hazard behind it – Information Security.
Sturdy Information Security must be under foundation of Information Security
Policy. However、current Information Security Policy generally exists the situation of
one size fits all、which usually causes the inconsistency for the demand of
organization assignment. Therefore、the Main Scheme of this thesis will be the
installation of 「proper」 policy、and also we hope to design an auxiliary tool to
establish the Information Security Policy. This thesis utilizes OCTAVE risk
assessment method to find out the Information Security risk existing in the
organization、and then、as to the impact that Information Security is confronting、it’s
expected that we can decrease the risk by the controls of CNS 27001、and also to
establish Information Security Policy by this connection.
|
| author2 |
劉中宇 |
| author_facet |
劉中宇 Cheng Po-Hsin 鄭博心 |
| author |
Cheng Po-Hsin 鄭博心 |
| spellingShingle |
Cheng Po-Hsin 鄭博心 應用OCTAVE風險評估方法建立資安政策之研究 |
| author_sort |
Cheng Po-Hsin |
| title |
應用OCTAVE風險評估方法建立資安政策之研究 |
| title_short |
應用OCTAVE風險評估方法建立資安政策之研究 |
| title_full |
應用OCTAVE風險評估方法建立資安政策之研究 |
| title_fullStr |
應用OCTAVE風險評估方法建立資安政策之研究 |
| title_full_unstemmed |
應用OCTAVE風險評估方法建立資安政策之研究 |
| title_sort |
應用octave風險評估方法建立資安政策之研究 |
| publishDate |
2009 |
| url |
http://ndltd.ncl.edu.tw/handle/59351463610563741321 |
| work_keys_str_mv |
AT chengpohsin yīngyòngoctavefēngxiǎnpínggūfāngfǎjiànlìzīānzhèngcèzhīyánjiū AT zhèngbóxīn yīngyòngoctavefēngxiǎnpínggūfāngfǎjiànlìzīānzhèngcèzhīyánjiū |
| _version_ |
1718260448498810880 |