摘要 |
<p><P>PROBLEM TO BE SOLVED: To solve the problem that a countermeasure against information leakage in an organization is taken without objectively assessing a risk of information leakage or effectiveness of the risk reduction countermeasure of information leakage, so that although a more effective risk reduction countermeasure exists, other countermeasures are often taken. <P>SOLUTION: The system comprises: a means for determining a risk value for every information leakage pattern in a checking organization from check results by a check list of a risk of information leakage and a risk factor DB of information leakage; a means for determining risk reduction situations of information leakage with respect to the checking organization from the check results by the check list of risk of information leakage and a risk reduction countermeasure DB of information leakage; and a means for extracting a candidate of risk reduction countermeasures of information leakage to be additionally taken by the checking organization and risk reduction effects of information leakage. <P>COPYRIGHT: (C)2009,JPO&INPIT</p> |