风险评估指南-国标.doc

中华人民共和国国家标准 ICS 35. 040 L 80 GB/T ××××—×××× 信息安全技术信息安全风险评估指南 Information security technology Risk assessment guidelines for information security (送审稿) ×××× - ×× - ×× 发布×××× - ×× - ×× 实施国家质量监督检验检疫总局发布 GB/T ××××—×××× I 目次目次......................................................................................................................................................................... I 前言....................................................................................................................................................................... II 引言....................................................................................................................................................................... II 1 范围..................................................................................................................................................................... 2 2 规范性引用文件................................................................................................................................................. 2 3 术语和定义......................................................................................................................................................... 2 4 风险评估框架及流程......................................................................................................................................... 2 风险要素关系................................................................................................................................................. 2 风险分析原理................................................................................................................................................. 2 实施流程......................................................................................................................................................... 2 5 风险评估实施..................................................................................................................................