In computer security, a study to determine if controls are available to meet the security objectives, the extent to which they will satisfy the objectives, whether the controls should be recuperative, preventive or detective, and the optimum mix of administrative, physical and technical controls.; 在計算機(jī)安全學(xué)中,研究以確定控制能否滿足安全性目標(biāo),滿足安全性目標(biāo)的程度,控制是 否應(yīng)為可恢復(fù)性、預(yù)防性或檢測性的以及管理、物理和技術(shù)控制的最佳組合。