Baseline Evaluation of Financial Data Security Based on  Combined WeightingTOPSIS Method

Journal of Information Security Reserach ›› 2024, Vol. 10 ›› Issue (7): 634-.

Previous Articles Next Articles

Baseline Evaluation of Financial Data Security Based on Combined WeightingTOPSIS Method

Chen Cong, Hou Jian, Zhang Yanjun, and Wang Yijun

(Research and Development Center, Beijing Unionpay Card Technology Co., Ltd., Beijing 100141)
(Bank Card Test Center, Beijing 100141)

Online:2024-07-14 Published:2024-07-18

基于组合赋权-TOPSIS方法的金融数据安全基线评价

陈聪侯建张艳君王逸君

(北京银联金卡科技有限公司研发中心北京100141)
(银行卡检测中心北京100141)

通讯作者: 侯建硕士，研究员.主要研究方向为密码学、金融数据安全、数据治理. 1743069423@qq.com
作者简介:陈聪博士，研究员.主要研究方向为数据安全、数据治理、金融科技安全应用. chencong253@126.com 侯建硕士，研究员.主要研究方向为密码学、金融数据安全、数据治理. 1743069423@qq.com 张艳君硕士，研究员.主要研究方向为数据安全、金融数据安全治理. zhangyanjunbuaa@163.com 王逸君研究员.主要研究方向为大数据安全、数据治理. 1369908990@qq.com

Abstract

Abstract: The precise identification and verification of the data security baseline are fundamental prerequisites for the implementation of protective measures for financial data security. This process is a foundational reference for the subsequent systematic development of data security and the judicious utilization of data value. Therefore, this paper introduces a model for identifying and verifying the financial data security baseline based on the Combined WeightingTOPSIS method. Initially, based on national laws and regulations, national and industry technical standards, this paper establishes a data security baseline system by analyzing and identifying the main factors and key indicators that affect financial data security. Subsequently, the Analytic Hierarchy Process (AHP) and the Criteria Importance Though Intercrieria Correlation (CRITIC) are comprehensively used to calculate the subjective and objective comprehensive weights of each indicator. Finally, through the application of the Technique for Order of Preference by Similarity to Ideal Solution (TOPSIS), a comprehensive analysis of the efficacy of the financial data security baseline is conducted, coupled with a judicious verification process. Validation through practical instances attests to the rational construction of the indicator system. Moreover, the financial data security baseline identification and verification model, grounded in the Combined WeightingTOPSIS method and operating within a multidimensional indicator system, demonstrates superior scientific efficacy and adaptability to realworld industry applications. Comparative experiments with alternative models further underscore the accuracy and effectiveness of the proposed indicator system and verification method in this paper.

Key words: data security protection, financial data, data security baseline, identification and verification of security baseline, AHP, TOPSIS

摘要： 清晰准确地识别和验证数据安全基线是开展金融数据安全保护的前提和基础，也是后续有序开展数据安全建设、数据价值利用的基准参照.因此，提出了一种基于组合赋权TOPSIS方法的金融数据安全基线评价模型.首先，依据国家法律法规、国家及行业技术标准，分析并识别影响金融数据安全的主要因素和关键指标，建立数据安全基线体系；其次，综合运用层次分析法(AHP)与客观赋权法(CRITIC)，计算出各项指标的主客观综合权重；最后，利用理想解逼近方法(TOPSIS)，实现对金融数据安全基线应用效果的综合分析和合理验证.实例验证证明，该指标体系构建合理，且多维指标体系下基于组合赋权TOPSIS方法的金融数据安全基线识别与验证模型更加科学有效，更易适配行业应用的实际情况.同时，通过与其他模型进行对比实验，进一步证明该指标体系与验证方法的正确性和有效性.

关键词: 数据安全保护, 金融数据, 数据安全基线, 安全基线识别与验证, AHP法, TOPSIS法

CLC Number:

TP309.2

陈聪, 侯建, 张艳君, 王逸君, . 基于组合赋权-TOPSIS方法的金融数据安全基线评价[J]. 信息安全研究, 2024, 10(7): 634-.

References

［1］张昊星, 赵景欣, 岳星辉, 等. 全生命周期数据安全管理和人工智能技术的融合研究［J］. 信息安全研究, 2023, 9(6): 543550［2］马鑫越. 大数据背景下医院计算机网络信息安全技术的应用实践研究［J］. 科技资讯, 2023, 21(20): 3033［3］梁文涵. 基于隐私计算的金融数据分级共享方案研究［D］. 哈尔滨: 哈尔滨工业大学, 2022: 2932［4］姚卓. 金融数据治理体系建设［J］. 金融科技时代, 2020 (9): 3335［5］安鹏, 武国宁, 高铭, 等. 运营商供应链管理中的数据安全防护技术研究与实践［C］ 第38次全国计算机安全学术交流会论文集. 北京: 中国计算机学会, 2023［6］程元堃, 彭艳兵. 融合基线模型和TOPSIS法的驾驶人考场评价［J］. 计算机与数字工程, 2023, 51(2): 296300, 307［7］赵乐冰, 王蕾, 万灿, 等. 基于数据包络分析法的城市综合能源系统分环节能效评价［J］. 电力系统自动化, 2022, 46(17): 132141［8］孟晓华, 许军. 基于熵权灰色关联度分析的中国数字服务贸易综合竞争力影响因素实证研究［J］. 价格月刊, 2023 (11): 7786［9］翟运开, 郭瑞芳, 王宇, 等. 数据生命周期视角下的医疗健康大数据质量评价研究［J］. 现代情报, 2024, 44(1): 116129［10］Guo Sen, Qi Ze. A fuzzy bestworst multicriteria group decisionmaking method［J］. IEEE Access, 2021, 9: 118941118952［11］Guo Sen, Zhao Huiru. Fuzzy bestworst multicriteria decisionmaking method and its applications［J］. KnowledgeBased Systems, 2017, 121: 2331［12］蔡娟. 基于民生应用的大数据安全评价体系构建［J］. 网络安全和信息化, 2023 (9): 125127［13］高倩. 基于大数据的电子政务云安全审计体系构建［J］. 技术经济与管理研究, 2022 (2): 814［14］Jalil H D, Seyed H R H, Shima F, et al. A novel dynamic credit risk evaluation method using data envelopment analysis with common weights and combination of multiattribute decisionmaking methods［J］. Computers & Operations Research, 2021, 129: 105223［15］Wang Lanjing, Yasir A, Shah N, et al. ISA evaluation framework for security of Internet of health things system using AHPTOPSIS methods［J］. IEEE Access, 2020, 8: 152316152332［16］Li Jimei, Chen Yangyang, Yao Xiaohui, et al. Risk management priority assessment of heritage sites in China based on entropy weight and TOPSIS［J］. Journal of Cultural Heritage, 2021, 49: 1018［17］全国金融标准化技术委员会. JRT 0197—2020 金融数据安全数据安全分级指南［S］. 北京: 中国人民银行, 2020: 110［18］全国金融标准化技术委员会. JRT 0223—2021 金融数据安全数据生命周期安全规范［S］. 北京: 中国人民银行, 2021: 121［19］中国人民银行. 中国人民银行业务领域数据安全管理办法(征求意见稿)［R］. 北京: 中国人民银行, 2023: 214

[1]	. Information Security Risk Assessment Based on TOPSIS and GRA [J]. Journal of Information Security Reserach, 2024, 10(5): 474-.
[2]	. Evaluation Method of Power Terminal Security Based on Fuzzy AHPDEMATELVIKOR [J]. Journal of Information Security Reserach, 2023, 9(4): 382-.
[3]	. Construction and Simplification Method of Power System Vulnerability Index System [J]. Journal of Information Security Reserach, 2023, 9(3): 244-.
[4]	. SWOT-AHP Analysis and Countermeasure Research on Information Security of Public Security Organs [J]. Journal of Information Security Research, 2021, 7(2): 190-196.
[5]	. Research on Security Technologies in Data Security Governance [J]. Journal of Information Security Reserach, 2021, 7(10): 907-.
[6]	. Research on Mobile Phone Recycling Model from the Perspective of Information Security [J]. Journal of Information Security Research, 2020, 6(1): 67-78.
[7]	. Research on SSL/TLS Protocol Configuration Security Assessment Model Based on Fuzzy Comprehensive Analysis [J]. Journal of Information Security Research, 2017, 3(6): 538-547.

Baseline Evaluation of Financial Data Security Based on Combined WeightingTOPSIS Method

基于组合赋权-TOPSIS方法的金融数据安全基线评价

PDF

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 7

Recommended Articles

Metrics