Research On Risk Management Of Information Security Of Electric Power Industry Based On AHP

The rapid development of the Internet makes information security has become a problem that most people are concerned about in the 21 st century. The government, financial institutions, private enterprises accumulate the confidential information about their customers, products,and financial data. The vast majority of such sensitive information is collected, produced and stored in computers, and transmitted between computers through a weak communication line. The most pressing issue at the moment is how to ensure that the above information is accessed by authorized computers through transmitting correctly rather than is eavesdropped, tampered and forgery. Information security incidents happen frequently nowadays, and that not only threat to people's daily life, but also cause a loss to enterprises operation. Among them, the information security issue in the process of the electric power industry operation has been a threat to the security, stable, economical, high-quality operation of the electric power system, and those reflect on the "digital power system" which the electric power industry has upheld has not been realized. Now important parts of the information work are researching the information security problem in the electric power industry, developing appropriate applications and the information security strategy to prevent the information security from external attack and to recover the system.This paper introduces the analysis hierarchy process(AHP)method which is the one of the method of Information evaluation to build a security risk assessment system for the electric power industry operation.First, the experts in the electric power industry's information industry and electric power department specialists build a safety evaluation index structure, and determine the risk factors of effecting the enterprise information security. Then evaluating each index comprehensively,constructing judgment matrix, and judging the types of index weights by the judgment matrix, and correcting inconsistencies of the judgment matrix. Final, getting the result of information system security level and the corresponding scores. The entire process is realized by using matlab software. As a result, getting the safety evaluation of information security management in the electric power industry, and formulating correspondi--ng management policy.In this paper, we can understand authentication, access control and information encryption in the risk of information itself security and disaster recovery in the risk of software security have large parts in the risk of the information security. This result according to the comprehensi--ve weight ratio got by AHP. The problems researched in this paper are which kinds of technology and method we will use can reduce the probability of risk, and enhancing those four parts of the information risk management in the process of formulating the information security management system pertinently.