Research On Construction And Application Of Security Evaluation Model Of Maritime Information System

Since the 1950 s,the network technology that emerged in the 1990 s has played an increasingly important role in society,economy,culture,and people 's lives.Especially after China 's Internet entered the international Internet family in 1994,China 's Internet development in the method and scale are outstanding.In particular,with the rapid economic development after the reform and opening up,China has continuously improved the level of Internet infrastructure,the scale of Internet users has increased and the age span has increased,Internet applications are diverse,and new technologies and new functions have profoundly changed the production and lifestyle.While the network has profoundly changed people's lives,it has also brought many hidden security risks.Personal information leakage,online fraud,and other network security incidents have been renovated and prevented.On the one hand,it has damaged personal privacy and business secrets for individuals or institutions,and it has also brought huge losses of economic benefits;on the other hand,it has also affected the smooth operation of the country's politics,economy,and society.General Secretary Xi Jinping once said,"Without cyber security,there is no national security." Therefore,scientific and effective response to network security issues has become a common issue of the international community.As the basic industry of the national economy and the maritime sector of the transportation industry,which is related to the national economy and people's livelihood,its importance is even more important,especially with the proposition of national strategies such as "Marine Power","Belt and Road" and "21st Century Maritime Silk Road" The political and economic competition at sea has become increasingly fierce.At present,most of China's information security risk assessment is model and method research,hierarchical protection is more about the evaluation system and project control research,there is not much research on the combination of security assessment and hierarchical protection.On the basis of summarizing the existing research results and combining the characteristics and safety requirements of the existing maritime information system,this paper proposes a maritime information security risk assessment index system and evaluation model that combines AHP,information entropy and fuzzy comprehensive evaluation method.First,the paper elaborated the research status of information security assessment model and hierarchical protection in detail,and determined the researchdirection of maritime information security risk assessment.Secondly,according to the content and safety characteristics of maritime information system construction,from the safety communication network,safety area boundary,Six aspects of the secure computing environment,safety management system,safety construction management,and safety operation and maintenance management,to build a maritime information security evaluation index system based on equal guarantee 2.0,including 5 criteria layers and 18 indicators;then,combine the maritime information system security needs,And the relevant standards of cybersecurity level protection 2.0,obtain initial data of safety assessment indicators through a questionnaire,AHP method assigns subjective weights,information entropy adjusts objective weights,fuzzy comprehensive evaluation method verifies final weights,and constructs a security risk assessment suitable for the characteristics of maritime information systems Finally,an example of T maritime tide forecasting system is used to verify the index system and evaluation model,analyze the risk value that affects the information system,and guide the construction of security.In summary,this paper combines theoretical research and practical application to construct an information security risk assessment indicator system and model,identify factors that affect the safe operation of information systems,and propose improvement measures to provide theory for the future construction and operation of maritime information system hierarchical protection Basis and method reference.