中文摘要：

【目的/意义】学术信息系统的安全问题是制约其信息服务质量的重要因素,对系统中资源存储与传递也有重大影响,但目前缺乏与之相应的风险识别方法。针对这一问题,本文提出一种基于综合赋权法的学术信息系统风险识别方法。【方法/过程】在全面分析学术信息系统安全风险要素的基础上,确定影响重要资产的威胁要素,融合功能赋权法和差异赋权法对威胁进行重要性识别。【结果/结论】以湖北省某高校数字图书馆为案例进行实证研究,识别方法的结论与该系统的专家认知较为一致,结果表明本文方法适合用于学术信息系统风险识别。

英文摘要：

[Purpose/significance]The security of academic information system is one of the important factors restricting the quality of information service, and has great influence to the resource storage and transfer, but there is a lack of corresponding risk identification methods .In order to solve this problem, this paper proposes a method to identify the risk of academic information system based on the comprehensive weighting method. [Method/process] On the basis of a comprehensive analysis of the security risk factors, the factors that affect the important assets are determined, the function weighting method and the differential weighting method are used to identify the threat. [Result/conclusion] This paper takes a university digital library in Hubei Province as a case for empirical research, the conclusion of identification method is the same as the experts＇ opinion, the results show that this method is suitable for the risk identification of academic information system.