信息安全風險評估報告

1、 1111 單位:1111 系統(tǒng)安全項目信息安全風險評估報告 信息安全風險評估報告我們單位名 我們單位名日期目 錄1 概述 概述 ..................................................................................................................................................31.1 項目背景

2、 .................................................................................................................................31.2 工作方法 ................................................................................

3、.................................................31.3 評估范圍 .................................................................................................................................31.4 基本信息 ......................

4、...........................................................................................................32 業(yè)務(wù)系統(tǒng)分析 業(yè)務(wù)系統(tǒng)分析 ................................................................................................

5、..................................42.1 業(yè)務(wù)系統(tǒng)職能 .........................................................................................................................42.2 網(wǎng)絡(luò)拓撲結(jié)構(gòu) .........................................

6、................................................................................42.3 邊界數(shù)據(jù)流向 .........................................................................................................................43 資產(chǎn)分析

7、 資產(chǎn)分析 ..........................................................................................................................................53.1 信息資產(chǎn)分析 ................................................................

8、.........................................................53.1.1 信息資產(chǎn)識別概述.............................................................................................................53.1.2 信息資產(chǎn)識別..........................

9、...........................................................................................54 威脅分析 威脅分析 ....................................................................................................................

10、......................64.1 威脅分析概述 .........................................................................................................................64.2 威脅分類 .......................................................

11、..........................................................................74.3 威脅主體 .................................................................................................................................74.4 威脅

12、識別 .................................................................................................................................75 脆弱性分析 脆弱性分析 .........................................................................

13、.............................................................85.1 脆弱性分析概述 .....................................................................................................................85.2 技術(shù)脆弱性分析 ................

14、.....................................................................................................95.2.1 網(wǎng)絡(luò)平臺脆弱性分析.......................................................................................................

15、..95.2.2 操作系統(tǒng)脆弱性分析.........................................................................................................95.2.3 脆弱性掃描結(jié)果分析.................................................................................

16、........................95.2.3.1 掃描資產(chǎn)列表............................................................................................................95.2.3.2 高危漏洞分析..........................................................

17、................................................105.2.3.3 系統(tǒng)帳戶分析..........................................................................................................105.2.3.4 應(yīng)用帳戶分析..................................