1. Methods for assessing the efficiency of access control subsystems at informatization facilities of internal affairs bodies and aspects of their improvement
- Author
-
S. V. Efimov, V. V. Konobeevskikh, and A. V. Batskikh
- Subjects
access control subsystem ,Service (systems architecture) ,Technology ,efficiency indicator ,Computer science ,Control (management) ,030508 substance abuse ,Access control ,02 engineering and technology ,efficiency quantification ,03 medical and health sciences ,020204 information systems ,0202 electrical engineering, electronic engineering, information engineering ,Informatization ,Security level ,Disadvantage ,information security system ,business.industry ,Information security ,Risk analysis (engineering) ,Information and Communications Technology ,automated system ,0305 other medical science ,business ,unauthorized access - Abstract
Objective. The purpose of the article is to analyse the existing methodology used to assess the efficiency of automated information security systems by studying open literature sources, international and industry standards of the Russian Federation on information security of automated systems, guidelines and orders of the Federal Service for Technical and Expert Control of Russia, as well as departmental orders, instructions and regulations on information security at informatization facilities of internal affairs bodies. The analysis results in identifying the advantages and disadvantages of the specified methodology, as well as the possibilities of its use when conducting a quantitative assessment of the efficiency of access control subsystems of information security systems at the informatization facilities of internal affairs bodies. Methods. To achieve this goal, the method for system analysis of approaches used to assess the efficiency of information security tools and systems has been applied. Results. The paper presents results of analysing the main approaches used to assess the efficiency of tools and systems for information security of automated systems. The paper determines the relationship between the efficiency indicator of access control subsystems of information security systems and the main disadvantage of their use in protected automated systems of internal affairs bodies. The paper substantiates main directions of improving the existing methodology, proposes methods and indicators for quantifying the efficiency of access control subsystems (including those modified on the basis of using new information and communication technologies) of information security systems in protected automated systems of internal affairs bodies. Conclusion. The results obtained can be used to quantify the security level of existing automated systems and those being developed at informatization facilities of internal affairs bodies.
- Published
- 2021