| Ten years more,E-government as an important part in the process of national information technology,has played a significant role to improve government efficiency & increase administrative efficiency and so on,at the same time,such as E-government infrastructure utilization is lower,information systems repeat development,information is scattered,isolated applications etc.,these serious problems still in existence.At present,the development of our E-government is in the transformation of development mode,the critical period of deepening business applications and highlight the effectiveness of E-government from the previous focus on the goal of building positive business processes electronically,steering-government efficiency and effective solution to improve people's livelihood;shift from fragmented to synergistic interaction and resource sharing;turning intensive and holistic sustainable development from extensive now.In this process of change Cloud-computing as a new computing model and service model,is having a major impact on the development of E-government,its important role include to strengthen E-government construction & strengthen the service functions of government,however,the birth of new things always accompanied by many problems,Cloud-computing's security incidents increasingly frequent in recent years,let us deeply understand the importance & urgency of Cloudcomputing security.According to Cloud-computing's unique openness,multitenant,virtualization,data ownership,management of the separation,the huge amount of data,etc.,it has brought new challenges to E-government information security from all aspects of technology,standards,legal.Information security risk assessment is the basis work and an important part of information security,and by conducting risk assessments can be found in major information security problems and contradictions in existence,providing the basis data for the development of security policies.This article describes the development trend of Cloud-computing in domestic & abroad firstly,then state Cloud-computing role in E-government and some problems,meanwhile,research & analysis about risk assessment criteria and methods,and on the basis of risk assessment for E-government Cloud elements,assessments research methods,risk assessment implementation system.Specific tasks include:1.According to the E-government Cloud characteristics,given the asset classification model & classification list under the Cloud pattern based on multi-service applications.From the perspective of the threat of action process occurs,try to have the refinement for the threat classification attributes,given the threat of an improved classification method.At the same time using the "multiplication",establishing a risk assessment calculation and analysis system.2.This thesis focuses on building a implementation system of risk assessment based on E-government Cloud,elaborated the risk assessment implementation principles,implementation processes,work content and output files,and meanwhile,put emphasis on the Cloud-service providers and Egovernment applications evaluation index & services,what's more,provide effective guidance for E-government Cloud risk assessment.This thesis comes from the issue of "Cloud-computing security risks and countermeasures",established by Shanghai Economic and Information Technology Commission in 2013,(Item No.: RX-RJJC-16-13-1371).This theory highlights and results: the establishment of E-government Cloud classification method of risk assessment and evaluation of computing elements based on the "multiplication" of the risk analysis system;the establishment of E-government implementation of Cloud risk assessment system,focusing on build the evaluation index of Cloud-service providers,meanwhile,analyze the benefits of E-government adoption of Cloud-computing,so that E-government information and services are classified easily,to determine the priority level about E-government applications using Cloud-computing. |
PDF Full Text Request