基于CAPE的数据安全能力框架设计
Design of Data Security Capability Framework Based on CAPE
唐雯炜 1李东风1
作者信息
- 1. 浙江中医药大学信息技术中心,浙江杭州 310053
- 折叠
摘要
数据作为生产要素,通常采用采集、传输、存储、处理、交换、销毁6个过程来描述其生命周期,在每个生命周期结合具体业务场景进行安全需求分析.在数据生命周期中存在各种威胁和风险,随着数据参与生产的场景增多,数据开放的程度不断加深,迫切需要建立覆盖数据全生命周期的安全监测和防护能力框架.
Abstract
As a production element,data usually uses six processes of collection,transmission,storage,processing,exchange,and destruction to describe its life cycle.In each life cycle,security requirements are analyzed based on specific business scenarios.There are various threats and risks in the data life cycle.As the number of scenarios in which data participates in production increases and the degree of data openness continues to deepen,there is an urgent need to establish a framework for security monitoring and protection capabilities.
关键词
数据安全/CAPE/生命周期Key words
data security/CAPE/life cycle引用本文复制引用
基金项目
浙江中医药大学校级科研项目(2023)(2023JKSKTS14)
中国高校产学研创新基金(2022HS021)
出版年
2024
NETL
NSTL
万方数据