Information Security Testing Model Based on Variable Weights Fuzzy Comprehensive Evaluation

摘要

Nowadays, clear evaluation models and methods are lacking in classified protection of in-formation system, which our country is making ef-forts to promote. The quantitative evaluation of classified protection of information system security is studied. An indicators system of testing and eval-uation is established. Furthermore, a model of unit testing and evaluation and a model of entirety tes-ting and evaluation are presented respectively. With analytic hierarchy process and two-grade fuzzy comprehensive evaluation, the subjective and un-certain data of evaluation will be quantitatively ana-lyzed by comprehensive evaluation. Particularly, the variable weight method is used to model entire-ty testing and evaluation. It can solve the problem that the weights need to be adjusted because of the relationship role which enhances or reduces securi-ty of information system. Finally, the paper demon-strates that the model testing and evaluation can be validly used to evaluate the information system by an example. The model proposed in this paper provides a new valuable way for classified protection of information system security.