Journal of Computer Applications ›› 2012, Vol. 32 ›› Issue (01): 115-118.DOI: 10.3724/SP.J.1087.2012.00115

• Information security • Previous Articles     Next Articles

Security assurance capability assessment based on entropy weight method for cryptographic module

SU Deng-yin,XU Kai-yong,GAO Yang   

  1. Institute of Electronic Technology, Information Engineering University, Zhengzhou Henan 450004, China
  • Received:2011-06-09 Revised:2011-07-31 Online:2012-02-06 Published:2012-01-01
  • Contact: SU Deng-yin



  1. 信息工程大学 电子技术学院,郑州 450004
  • 通讯作者: 粟登银
  • 作者简介:粟登银(1987-),男,湖北建始人,硕士研究生,主要研究方向:密码装备信息安全;徐开勇(1963-),男,河南郑州人,研究员,主要研究方向:信息安全、密码装备工程;高杨(1987-),男,山西太原人,硕士研究生,主要研究方向:密码装备信息安全。

Abstract: To solve the problems that the index value of cryptographic modules is not fixed, the index system is hardly built, and the security assurance ability can not be quantitatively assessed, a security assurance capability assessment for cryptographic module was proposed. The description on indexes by interval number was applied to illustrate the security attribute of cryptographic modules. This paper determined the weight vector of each period point by entropy weight coefficient method combined with expert decision weight method. According to the interval multi-attribute decision methodology, a feasible methodology was adopted to solve the interval Information Assurance (IA) capability evaluation problem of cryptographic modules. Finally, through analyzing two kinds of cryptographic modules, the experimental results show that the proposed method is feasible.

Key words: cryptographic module, entropy weight method, interval number, index system

摘要: 针对密码模块这类信息安全产品指标值不固定、指标系统难以建立、安全保障能力难以定量评估的问题,提出了一种定量描述密码模块安全保障能力的可行方法。方法运用区间数描述密码模块的安全属性,采用熵权法结合主观赋权法确定每个安全属性的权重值,运用区间型多属性决策方法进行综合评价,最后运用所提方法对两种商用密码模块进行了实例分析,计算结果表明所提方法可行。

关键词: 密码模块, 熵权法, 区间数, 指标体系

CLC Number: