Your search keyword '"information protection system"' showing total 23 results

1. Development of the Theoretical Approach Based on Matrix Theory for Analyzing the State of Information Security Systems

Author

Bobok I.I. and Kobozeva A.A.

Subjects

information protection system, singular vector, singular number, sensitivity, active attack., Electrical engineering. Electronics. Nuclear engineering, TK1-9971, Production of electric energy or power. Powerplants. Central stations, TK1001-1841, Renewable energy sources, TJ807-830

Abstract

. The widespread introduction of information technologies into all spheres of society, the crea-tion of a significant amount of confidential and critical data in digital form leads to an increase in the priority of information security tasks everywhere, including in the energy sector, which relates to the critical infrastructure of any state. The purpose of the work is to develop the men-tioned approach to ensure the possibility of increasing the efficiency of information security methods based on it. The goal was achieved through a detailed study of disturbances in the val-ues of formal parameters that uniquely determine the matrix that is assigned to the information security system under conditions of active attacks (disturbances) on the system. Singular num-bers and singular vectors of the matrix are considered as such parameters. The most important result of the work is the substantiation of the existence and establishment of interconnected re-gions of stabilization of disturbances of singular numbers and singular vectors of the system ma-trix, while the region of stabilization of singular numbers corresponds to the region of monoto-nous decrease in their disturbances with increasing numbers, while the stabilization of singular vectors corresponds to the region in which their disturbances are comparable with 90 degrees. It is shown that the stabilization process is determined by the mathematical properties of the pa-rameters under consideration. The significance of the obtained result lies in the possibility of using it to improve various information security systems that were built or studied using a gen-eral approach to analyzing their state, both theoretically and practically. The work provides ex-amples of such use.

Published

2024

2. Complexity Assessment Eliminating the Risk of Transmission of Digital Information in Enterprise Networks

Author

Gruzdeva, Lyudmila M., Kapustina, Nadezhda V., Kobiashvili, Nana A., Lebedev, Igor A., Bogonosov, Konstantin A., Popkova, Elena G., editor, and Sergi, Bruno S., editor

Published

2021

3. An experimental methodology for assessing the probability and danger of network attacks in automated systems

Author

Irina G. Drovnikova, Elena S. Ovchinnikova, Anton D. Popov, Ilya I. Livshitz, Oleg O. Basov, and Evgeniy A. Rogozin

Subjects

experiment, automated system, network attack, information protection system, information conflict, probability of a network attack, danger of a network attack, quantitative assessment, Optics. Light, QC350-467, Electronic computers. Computer science, QA75.5-76.95

Abstract

The paper proposes a new method of conducting an experiment to assess the dynamics of the information conflict “Network attack – Protection system” in automated systems. As a result of the application of the methodology, quantitative values of the initial data necessary for assessing the probability and danger of network attacks in automated systems were obtained. The research method implied an experiment that displayed the dynamics of the information conflict “Network attack – Protection system” in automated systems. The authors developed a methodology to determine the quantitative values of the characteristics, as well as the amount of damage from standard network attacks that affect the elements of automated systems. The use of the results makes it possible to observe the course of the information conflict “Network attack – Protection System” in dynamics, to calculate the probabilistic and temporal characteristics of network attacks and to carry out an accurate quantitative assessment of the danger of their implementation in automated systems in the “CPN Tools” and MathCad software environments. The prospects for using the obtained results deal with the construction of particular models of actual attacks and increase of stability of automated systems.

Published

2021

4. DEVELOPMENT OF A METHOD FOR CALCULATION OF INFORMATION PROTECTION FROM THE CLUSTERING COEFFICIENT AND INFORMATION FLOW IN SOCIAL NETWORKS.

Author

Akhramovych, Volodymyr

Subjects

*FLOW coefficient, *SOCIAL networks, *NONLINEAR equations, *GRAPH theory, *DYNAMICAL systems

Abstract

The object of research is the system of information protection of the social network. The article investigates the dynamic models of the information protection system in social networks taking into account the clustering coefficient, and also analyzes the stability of the protection system. In graph theory, the clustering factor is a measure of the degree to which nodes in a graph tend to group together. The available data suggest that in most real networks, and in particular in social networks, nodes tend to form closely related groups with a relatively high density of connections. It is probability is greater than the average probability of a random connection between two nodes. There are two variants of this term: global and local. The global version was created for a general idea of network clustering, while the local one describes the nesting of individual nodes. There is a practical interest in studying the behavior of the system of protection of social networks from the value of the clustering factor. Dynamic systems of information protection in social networks in the mathematical sense of this term are considered. A dynamic system is understood as any object or process for which the concept of state as a set of some quantities at a given moment of time is unambiguously defined and a given law is described that describes the change (evolution) of the initial state over time. This law allows the initial state to predict the future state of a dynamic system. It is called the law of evolution. The study is based on the nonlinearity of the social network protection system. To solve the system of nonlinear equations used: the method of exceptions, the joint solution of the corresponding homogeneous characteristic equation. Since the differential of the protection function has a positive value in some data domains (the requirement of Lyapunov’s theorem for this domain is not fulfilled), an additional study of the stability of the protection system within the operating parameters is required. Phase portraits of the data protection system in MatLab/Multisim are determined, which indicate the stability of the protection system in the operating range of parameters even at the maximum value of influences. [ABSTRACT FROM AUTHOR]

Published

2022

5. МОДЕЛІ І МЕТОДИ ЗАХИСТУ ІНФОРМАЦІЇ В КІБЕРФІЗІЧНИХ СИСТЕМАХ.

Author

Погасій, Сергій

Subjects

COMPUTER networks, COMPUTER systems, INFRASTRUCTURE (Economics), TELECOMMUNICATION, LOW density parity check codes, WIRELESS Internet, DATA transmission systems, CYBER physical systems

Abstract

The article presents a new approach to ensuring the security of information resources in cyber-physical systems. Today, such systems, as a rule, belong to objects of critical infrastructure. These systems are formed as a result of the integration of various elements of mobile communication technologies, classic computer networks and systems, as well as Internet of Things and Internet technologies. The work proposes consideration of the formation of the security system based on multi-contours, which allows considering two contours of the security system - internal (physical infrastructure of cyberphysical systems) and external (infrastructure of the control system based on cloud technologies). With the help of the developed classifier of threats to critical infrastructure objects, the formation of a classifier of attackers is ensured, in which its financial and computing capabilities are determined, which allows, based on the analysis of threats, to determine in a timely manner the degree of capabilities of attackers, as well as their intentions, and to form preventive protection measures. The use of the proposed protection models based on the Lotka-Volterra model allows considering the trends in the development of modern technologies, as well as the vector of cyber threats directed at critical infrastructure objects, which include modern cyber physical systems. To ensure the security of information transmission through open channels of the cyber-physical systems network, information protection methods are proposed based on post-quantum algorithms – McEliece crypto-code constructions on LDPC codes, which allows to "close" the data transmission channels of the cyber physical systems infrastructure. [ABSTRACT FROM AUTHOR]

Published

2022

6. Optimization of Technical Information Protection System’s Composition

Author

Nikishova, Arina, Umnitsyn, Yuriy, Umnitsyn, Mikhail, Omelchenko, Tatiana, Barbosa, Simone Diniz Junqueira, Editorial Board Member, Filipe, Joaquim, Editorial Board Member, Ghosh, Ashish, Editorial Board Member, Kotenko, Igor, Editorial Board Member, Yuan, Junsong, Editorial Board Member, Zhou, Lizhu, Editorial Board Member, Kravets, Alla G., editor, Groumpos, Peter P., editor, Shcherbakov, Maxim, editor, and Kultsova, Marina, editor

Published

2019

7. COMPUTER SCIENCE, COMPUTER ENGINEERING AND MANAGEMENT METHODICAL APPROACH TO EVALUATING THE PROBABILISTIC TIME PERFORMANCE INDICATOR OF AUTOMATED ADMINISTRATOR OPERATIONS IN INFORMATION PROTECTION SYSTEMS

Author

A. M. Kadnova

Subjects

information protection system, unauthorised access, information protection, automated system, software system, ergotechnical characteristics, Technology

Abstract

Objectives At present, in accordance with the requirements of the guiding documents of the Federal Service for Technical and Export Control (FSTEC) of Russia, as well as international standards in the development and operation of protected automated systems, it is necessary to evaluate the effectiveness (general utility) of information protection systems. The article is devoted to the development of a method for assessing the ergotechnical characteristics of software information security systems for use the assessment of the general utility of such systems. The aim of the work is to develop a methodology for assessing the probabilistic indicator of the timeliness of typical operations for the administration of information security systems.Method To achieve this goal, user groups were created in order to perform typical administrative operations within the information protection system. The operation time for each group, recorded using the IOGraphV1.0.1 tool, was utilised to calculate the probabilities of timely execution of typical operations by the administrator according to a truncated normal distribution formula.Results An assessment of a probabilistic indicator was carried out in order to evaluate the timeliness of operations performed by the administrator of the information protection system.Conclusion The results can be used in a comprehensive assessment of the effectiveness (reliability) of the automated functioning of information security software systems when modelling and analysing the security of special-purpose informatisation facilities.

Published

2019

8. MODEL OF THE PROCESS OF FUNCTIONING OF THE INFORMATION PROTECTION SYSTEM FROM UNAUTHORIZED ACCESS CREATED IN THE SOFTWARE ENVIRONMENT OF IMITATION MODELING 'CPN TOOLS'

Author

O. I. Bokova, I. G. Drovnikov, A. D. Popov, and E. A. Rogozin

Subjects

automated system, information protection system, unauthorized access, simulation model, software environment, probabilistic-temporal characteristics, information protection, Technology

Abstract

Objectives. At present, conducting a computational experiment on a system for protecting information from unauthorized access operated in an automated system is a time consuming process. The greatest difficulty in this area of research is the determination of probabilistic-temporal characteristics and the formation of reports during the operation of the information protection system. In order to analyze, obtain and study the probabilistic-time characteristics of this system, it is necessary to develop a mathematical model of its operation using an imitational modeling tool.Method. One of the methods for solving this problem is a computational experiment, which is based on the construction of a simulation model. The CPN Tools environment was chosen as a software simulation product, the main advantages of which are: a high level of visualization, the ability to generate various reports on the system operation, fast modifiability of models for solving a different class of problems, as well as integration with other software means for the formation of graphical dependencies.Result. A simulation model of the system for protecting information from unauthorized access in the “CPN Tools” software environment was developed. protected performance.Conclusion. The presented im-model model of protecting information from unauthorized access in the software environment “CPN Tools” can be used as a tool in assessing the security of special bodies for the attestation of informatization objects and structural divisions of authorized departments. It can also be used in the design of such systems in order to prevent logical errors, determine their temporal characteristics and compare with the existing ones in accordance with the technical specifications for the system being developed to protect information from unauthorized access.

Published

2019

9. PRIVATE TECHNIQUE OF FORMATION OF REQUIREMENTS TO INFORMATION PROTECTION SYSTEMS FROM UNAUTHORIZED ACCESS TO AUTOMATED BATH SYSTEMS USING GENETIC ALGORITHM

Author

I. G. Drovnikova, A. A. Zmeev, and E. A. Rogozin

Subjects

automated system, information protection system, unauthorized access, genetic algorithm, evaluation network (e-network), markov model, Technology

Abstract

Objectives. Analysis of the existing methodology for the formation of requirements for information protection systems (GIS) from unauthorized access (NSD) to automated systems (AS) revealed a number of significant flaws, the main of which is the following: despite the fact that the considered method undoubtedly has theoretical significance, the same time, it can not claim practical value. This is due to the fact that in this methodology, the studies were carried out not on a specific standard (widely used certified according to the regulations of the Federal Service for Technical and Export Control of Russia) GIS, and the data on threats of unauthorized access given in it do not correspond to reality (morally obsolete), but therefore require a significant upgrade. Accepting the existing methodology as a baseline, the purpose of the article is to develop a private method of forming requirements for GIS from unauthorized access to the AU, which has practical value and allows you to formulate quantitative requirements for a wide class of certified GIS.Method. When writing the article, the methods of system analysis, evolutionary modeling, probability theory and mathematical statistics, mathematical apparatus for modeling dynamic discrete networks (E-networks), and theory of algorithms were used. The methodological basis is a systematic approach.Result. A private methodology has been developed that determines the parameters of the symbolic genetic algorithm (GA) for creating a software package for analysis, evolutionary modeling, and forming quantitative requirements for GIS from un-authorized access to speakers using the Matlab 13 application software to implement GA in the Optimization toolbox programming environment.Conclusion. The proposed private method of forming requirements for GIS from unauthorized access in the AU using GA has a theoretical significance, practical value and allows you to formulate quantitative requirements for a wide class of AS certified in a certain class of security in accordance with the requirements of current regulatory documentation.

Published

2019

10. FUNCTIONAL PERFORMANCE INDICATORS DURING SYSTEMS DEVELOPMENT TO PROTECT INFORMATION FROM UNAUTHORISED ACCESS

Author

G. I. Kachaeva, A. D. Popov, and E. A. Rogozin

Subjects

automated information system, unauthorised access to information, quality indicator criterion, information protection system, efficiency assessment, Technology

Abstract

Objectives. In order to investigate the property of the operational effectiveness of automated systems for protecting information from unauthorised access, it is necessary to analyse the normative documents (both international and Russian) and scientific materials devoted to the evaluation of software quality. The aim of the study consists in the analysis of the existing deficiencies in systems for protecting information from unauthorised access, on the basis of which analysis it is possible to develop performance indicators, substantiate and develop the criteria for assessing the operational effectiveness of the information protection systems from unauthorised access in automated information systems and develop an algorithm for the integrated evaluation of the operational effectiveness of information protection systems on the basis of the established criteria and indicators.Methods. One of the methods for solving the set goals consists in the main provisions of efficiency and systems theories, which in turn became the theoretical basis for solving problems involved in the creation of criteria and assessment of performance indicators of information protection systems.Results. The criteria and performance indicators for the creation of automated information systems are developed on the basis of the analysis of open literature sources and existing shortcomings in the real use of systems for protecting information from unauthorised access. An algorithm for the integrated evaluation of the operational effectiveness of the information protection systems is developed.Conclusion. In the article, based on the analysis of normative documents (both international and Russian), as well as on the scientific materials devoted to the quality (function efficiency) of complex software systems, to which the information protection systems can be related, a system of performance indicators was developed. These can be indicators can be classified as partial (static, practically independent of time, the evaluation of which is based on expert estimates) and integral (dynamic, time-dependent, the evaluation of which is based on mathematical modeling).

Published

2018

11. Development of a method for calculation of information protection from the clustering coefficient and information flow in social networks

Author

Volodymyr Akhramovych

Subjects

information protection system, homogeneous characteristic equation, dynamic models, exception method, system stability

Abstract

The object of research is the system of information protection of the social network.The article investigates the dynamic models of the information protection system in social networks taking into account the clustering coefficient, and also analyzes the stability of the protection system.In graph theory, the clustering factor is a measure of the degree to which nodes in a graph tend to group together. The available data suggest that in most real networks, and in particular in social networks, nodes tend to form closely related groups with a relatively high density of connections.It is probability is greater than the average probability of a random connection between two nodes.There are two variants of this term: global and local. The global version was created for a general idea of network clustering, while the local one describes the nesting of individual nodes.There is a practical interest in studying the behavior of the system of protection of social networks from the value of the clustering factor. Dynamic systems of information protection in social networks in the mathematical sense of this term are considered. A dynamic system is understood as any object or process for which the concept of state as a set of some quantities at a given moment of time is unambiguously defined and a given law is described that describes the change (evolution) of the initial state over time. This law allows the initial state to predict the future state of a dynamic system. It is called the law of evolution. The study is based on the nonlinearity of the social network protection system. To solve the system of nonlinear equations used: the method of exceptions, the joint solution of the corresponding homogeneous characteristic equation.Since the differential of the protection function has a positive value in some data domains (the requirement of Lyapunov's theorem for this domain is not fulfilled), an additional study of the stability of the protection system within the operating parameters is required.Phase portraits of the data protection system in MatLab/Multisim are determined, which indicate the stability of the protection system in the operating range of parameters even at the maximum value of influences.

Published

2022

12. Using preventive measures for the purpose of assuring information security of wireless communication channels

Author

Ilya Lebedev, Viktoria Korzhuk, Irina Krivtsova, Kseniya Salakhutdinova, Mikhail Sukhoparov, and Daniil Tikhonov

Subjects

information security, wireless communication channels, information protection system, information and telecommunication systems, information protection, response to information attacks, Telecommunication, TK5101-6720

Abstract

The task we consider is counteraction to the information security incidents. The special feature of the described solution is an integrated application of the methods ensuring implementation of the preventive measures aimed at increasing the complexity of information security threat implementation on a compact device. It provides tasks required for support of wireless communication channels in an environment exposed to an information influence. A prototype of the compact device based on form-factor PC-104+ relevant to the set objectives is offered and tested, its operation principles are described. There is an assessment of response to information attacks, and the states of the devices are modeled in various modes and during introduction of additional protection elements.

Published

2016

13. МОДЕЛІ І МЕТОДИ ЗАХИСТУ ІНФОРМАЦІЇ В КІБЕРФІЗІЧНИХ СИСТЕМАХ

Subjects

інформаційна безпека, information security, cyber security, моделі безпеки Лотки-Вольтери, information protection system, класифікатор загроз інформації кіберфізичних систем, система забезпечення захисту інформації, безпека інформації, кіберфізичні системи, classifier of cyber-physical systems information threats, Lotka-Volterra security models, кібербезпека, security of information, cyberphysical systems

Abstract

The article presents a new approach to ensuring the security of information resources in cyber-physical systems. Today, such systems, as a rule, belong to objects of critical infrastructure. These systems are formed as a result of the integration of various elements of mobile communication technologies, classic computer networks and systems, as well as Internet of Things and Internet technologies. The work proposes consideration of the formation of the security system based on multi-contours, which allows considering two contours of the security system - internal (physical infrastructure of cyberphysical systems) and external (infrastructure of the control system based on cloud technologies). With the help of the developed classifier of threats to critical infrastructure objects, the formation of a classifier of attackers is ensured, in which its financial and computing capabilities are determined, which allows, based on the analysis of threats, to determine in a timely manner the degree of capabilities of attackers, as well as their intentions, and to form preventive protection measures. The use of the proposed protection models based on the Lotka-Volterra model allows considering the trends in the development of modern technologies, as well as the vector of cyber threats directed at critical infrastructure objects, which include modern cyberphysical systems. To ensure the security of information transmission through open channels of the cyber-physical systems network, information protection methods are proposed based on post-quantum algorithms – McEliece crypto-code constructions on LDPC codes, which allows to "close" the data transmission channels of the cyberphysical systems infrastructure. У статті подано новий підхід забезпечення безпеки інформаційних ресурсів в кіберфізичних системах. Сьогодні таки системи, як правило належать до об'єктів критичної інфраструктури. Як правило таки системи формуються внаслідок комплексування різних елементів технологій мобільного зв’язку, класичних комп’ютерних мереж та систем, а також Інтернет-речей та Інтернет-технологій. В роботі пропонується розгляд формування системи безпеки на основі багатоконтурності, що дозволяє розглядати два контури системи безпеки – внутрішній (фізична інфраструктура кіберфізичних систем) та зовнішній (інфраструктура управляючої системи на основі хмарних технологій). За допомогою розробленого класифікатора загроз на об’єкти критичної інфраструктури забезпечується формування класифікатора зловмисників, у якому визначаються його фінансові та обчислювальні можливості, що дозволяє на основі аналізу загроз своєчасно визначати степеніможливості зловмисників, а також його наміри та формувати превентивні заходи захисту. Використання запропонованих моделей захисту на основі моделі Лотки-Вольтери дозволяє враховувати тенденції розвитку сучасних технологій, а також вектор направленості кіберзагроз на об’єкти кричної інфраструктури до яких відносяться сучасні кіберфізичні системи. Для забезпечення безпеки передачі інформації відкритими каналами мережі кіберфізичних систем запропоновані методи захисту інформації на основі постквантових алгоритмів – крипто-кодових конструкцій Мак-Еліса на LDPC-кодах, що дозволяє “закрити” канали передачі даних інфраструктури кіберфізичних систем.

Published

2022

14. SELECTION OF INFORMATION PROTECTION SYSTEM BY ENSURING THE COMPETITIVENESS OF ENTERPRISES

Author

H. V. Popova

Subjects

competitiveness, information protection system, information security, Optics. Light, QC350-467, Electronic computers. Computer science, QA75.5-76.95

Abstract

One of the problems concerning implementation of information protection systems is the choice of the optimal multi-criteria options, taking into account the stochastic nature of the interaction parameters and the usage of non-numeric, incomplete and inexact information. The application of the modified method of randomized aggregate indicators is considered. A model for the influence of information security on the change of the company competitiveness is proposed. The paper deals with determination of quantitative changes in the company competitiveness after implementation of the optimization variant of information protection system. An example of this model application at the particular enterprise is given. A comparison of planned and actual values is done. The validity of the criterion used in selecting the variants of data protection system is confirmed.

Published

2014

15. Розробка методу розрахунку захисту інформації від коефіцієнта кластеризації та потоку інформації у соціальних мережах

Subjects

однорідне характеристичне рівняння, система захисту інформації, information protection system, метод винятків, динамічні моделі, homogeneous characteristic equation, dynamic models, стійкість системи, exception method, system stability

Abstract

The object of research is the system of information protection of the social network. The article investigates the dynamic models of the information protection system in social networks taking into account the clustering coefficient, and also analyzes the stability of the protection system. In graph theory, the clustering factor is a measure of the degree to which nodes in a graph tend to group together. The available data suggest that in most real networks, and in particular in social networks, nodes tend to form closely related groups with a relatively high density of connections. It is probability is greater than the average probability of a random connection between two nodes. There are two variants of this term: global and local. The global version was created for a general idea of network clustering, while the local one describes the nesting of individual nodes. There is a practical interest in studying the behavior of the system of protection of social networks from the value of the clustering factor. Dynamic systems of information protection in social networks in the mathematical sense of this term are considered. A dynamic system is understood as any object or process for which the concept of state as a set of some quantities at a given moment of time is unambiguously defined and a given law is described that describes the change (evolution) of the initial state over time. This law allows the initial state to predict the future state of a dynamic system. It is called the law of evolution. The study is based on the nonlinearity of the social network protection system. To solve the system of nonlinear equations used: the method of exceptions, the joint solution of the corresponding homogeneous characteristic equation. Since the differential of the protection function has a positive value in some data domains (the requirement of Lyapunov's theorem for this domain is not fulfilled), an additional study of the stability of the protection system within the operating parameters is required. Phase portraits of the data protection system in MatLab/Multisim are determined, which indicate the stability of the protection system in the operating range of parameters even at the maximum value of influences., Об'єктом дослідження є система захисту інформації соціальної мережі. У роботі досліджуються динамічні моделі системи захисту інформації в соціальних мережах з урахуванням коефіцієнта кластеризації, а також аналізується стабільність системи захисту. У теорії графів коефіцієнт кластеризації є мірою того, як вузли в графі мають тенденцію до групування. Наявні дані свідчать про те, що в більшості реальних мереж, і зокрема в соціальних мережах, вузли, як правило, утворюють тісно пов’язані групи з відносно високою щільністю зв’язків. Ця ймовірність більша, ніж середня ймовірність випадкового з’єднання між двома вузлами. Існує два варіанти цього терміна: глобальний і локальний. Глобальна версія створена для загальної ідеї кластеризації мережі, а локальна описує вкладення окремих вузлів. Існує практичний інтерес у вивченні поведінки системи захисту соціальних мереж від значення фактора кластеризації. Розглянуто динамічні системи захисту інформації в соціальних мережах у математичному розумінні цього терміна. Під динамічною системою розуміють будь-який об'єкт або процес, для якого поняття стану як сукупності деяких величин у даний момент часу однозначно визначено та описано заданий закон, що описує зміну (еволюцію) початкового стану в часі. Цей закон дозволяє початковому стану передбачити майбутній стан динамічної системи. Його називають законом еволюції. Дослідження базується на нелінійності системи захисту соціальних мереж. Для розв'язування системи нелінійних рівнянь використовуються: метод винятків, спільний розв'язок відповідного однорідного характеристичного рівняння. Оскільки в деяких областях даних диференціал функції захисту має додатне значення (вимога теореми Ляпунова для цієї області не виконується), необхідне додаткове дослідження стійкості системи захисту в межах робочих параметрів. Визначено фазові портрети системи захисту даних у MatLab/Multisim, які свідчать про стабільність системи захисту в робочому діапазоні параметрів, навіть при максимальному значенні впливів.

Published

2022

16. Information security of data channels based on a multifunctional tailored software and hardware solution.

Author

Sukhoparov, M., Lebedev, I., Korzhuk, V., and Krivtsova, I.

Abstract

A proposed solution lies in using methods to ensure the implementation of preventive measures aimed to increase the complexity of implementation of information security threats using a compact device based on a PC/104+ form factor. A counteraction to information attacks is estimated, the device status conditions in various modes and after the introduction of additional protection components are simulated. [ABSTRACT FROM AUTHOR]

Published

2016

17. СПЕЦИФІКА ТЕХНІЧНОГО ЗАХИСТУ ІНФОРМАЦІЇ: БЕЗПЕКОЗНАВЧІ КОНТЕКСТИ

Subjects

інформаційна безпека, система захисту інформації, information protection system, технічний захист інформації, information security, technical channels, components of information system, складові інформаційної системи, технічні каналами, technical protection of information

Abstract

The article conducts a comprehensive study of specifics the technical protection of information by business entities in order to ensure security conditions. On the basis of which the identification the components of information system at the present stage of development is carried out. У статті проведено комплексне дослідження специфіки технічного захисту інформації суб’єкти господарювання з метою забезпечення безпекознавчих умов. На основі чого проведено ідентифікацію складових інформаційної системи на сучасному етапі розвитку.

Published

2021

18. Целевая адаптация систем защиты информации

Subjects

004.056.53, модели риска, attack, система защиты информации, ущерб, risk models, инциденты, information protection system, incidents, атака, целевая адаптация, рефлексивные риски, reflective risks, targeted adaptation, damage

Abstract

Розглянуто застосування адаптивного підходу до побудови системи захисту інформації організації, суть якого в використанні для управління інформаційною безпекою організації відомостей про особливості і характер поведінки сторін-учасників конфліктної ситуації «атака / захист», що виникає при реалізації атакуючої стороною загроз щодо організації-власника інформаційного ресурсу. Узагальнення і «упаковка» зазначених відомостей реалізується в формі математичних моделей - рефлексивних ризиків, структура і кількість яких визначаються виділеними типових сценаріїв »розвитку ситуації« атака / захист». Аналіз і дослідження моделей дає оціночну інформацію, що дозволяє збалансувавши фінансово-економічні можливості організації з її вимогами і можливостями в сфері захисту інформації, забезпечуючи ефективне і раціональне інвестування в СЗІ організації. The application of an adaptive approach to the construction of an organization’s information security system is examined, the essence of which is to use information on the features and behavior of the parties involved in the “attack / defense” conflict situation to manage the information security of the organization, which occurs when the attacker realizes threats regarding the organization that owns the information resource. Generalization and “packing” of the indicated information is realized in the form of mathematical models - reflective risks, the structure and quantity of which are determined by the selected typical scenarios of the “attack / defense” situation development. Analysis and research of models provides estimated information that allows balancing the financial and economic capabilities of the organization with its requirements and capabilities in the field of information protection, providing an efficient and rational investment in the organization’s information protection system. Рассмотрено применение адаптивного подхода к построению системы защиты информации организации, суть которого в использовании для управления информационной безопасностью организации сведений об особенностях и характере поведения сторон-участников конфликтной ситуации «атака / защита», возникающий при реализации атакующей стороной угроз относительно организации-владельца информационного ресурса. Обобщение и «упаковка» указанных сведений реализуется в форме математических моделей – рефлексивных рисков, структура и количество которых определяются выделенными типовыми сценариями» развития ситуации «атака / защита». Анализ и исследование моделей дает оценочную информацию, позволяющую сбалансировав финансово-экономические возможности организации с ее требованиями и возможностями в сфере защиты информации, обеспечивая эффективное и рациональное инвестирование в СЗИ организации.

Published

2020

19. Target adaptation of information protection systems

Author

Arkhypov, A. E. and Arkhipova, S. A.

Subjects

004.056.53, модели риска, attack, ущерб, система защиты информации, risk models, инциденты, information protection system, incidents, атака, целевая адаптация, рефлексивные риски, reflective risks, targeted adaptation, damage

Abstract

The paper considers the use of an adaptive approach to building an organization's information security system, the essence of which is the use of information about the features and behavior of the parties participating in the "attack / defense" conflict situation, which arises when the attacker implements threats against the organization-owner of the information resource, to manage the organization's information security. Generalization and "packing" of the specified information is realized in the form of mathematical models - reflexive risks, the structure and number of which are determined by the selected typical scenarios "of the development of the" attack / defense "situation. Analysis and research of models provides evaluative information that allows balancing the financial and economic capabilities of the organization with its requirements and capabilities in the field of information protection, ensuring effective and rational investment in the organization's information security. Рассмотрено применение адаптивного подхода к построению системы защиты информации организации, суть которого в использовании для управления информационной безопасностью организации сведений об особенностях и характере поведения сторон-участников конфликтной ситуации «атака / защита», возникающий при реализации атакующей стороной угроз относительно организации-владельца информационного ресурса. Обобщение и «упаковка» указанных сведений реализуется в форме математических моделей – рефлексивных рисков, структура и количество которых определяются выделенными типовыми сценариями» развития ситуации «атака / защита». Анализ и исследование моделей дает оценочную информацию, позволяющую сбалансировав финансово-экономические возможности организации с ее требованиями и возможностями в сфере защиты информации, обеспечивая эффективное и рациональное инвестирование в СЗИ организации.

Published

2020

20. FUNCTIONAL PERFORMANCE INDICATORS DURING SYSTEMS DEVELOPMENT TO PROTECT INFORMATION FROM UNAUTHORISED ACCESS

Author

A. D. Popov, E. A. Rogozin, and G. I. Kachaeva

Subjects

Technology, Computer science, 020209 energy, media_common.quotation_subject, 02 engineering and technology, 010501 environmental sciences, 01 natural sciences, Software quality, Information protection policy, unauthorised access to information, efficiency assessment, information protection system, Risk analysis (engineering), Systems theory, 0202 electrical engineering, electronic engineering, information engineering, Quality (business), Automated information system, Software system, Performance indicator, automated information system, Function (engineering), 0105 earth and related environmental sciences, media_common, quality indicator criterion

Abstract

Objectives. In order to investigate the property of the operational effectiveness of automated systems for protecting information from unauthorised access, it is necessary to analyse the normative documents (both international and Russian) and scientific materials devoted to the evaluation of software quality. The aim of the study consists in the analysis of the existing deficiencies in systems for protecting information from unauthorised access, on the basis of which analysis it is possible to develop performance indicators, substantiate and develop the criteria for assessing the operational effectiveness of the information protection systems from unauthorised access in automated information systems and develop an algorithm for the integrated evaluation of the operational effectiveness of information protection systems on the basis of the established criteria and indicators. Methods . One of the methods for solving the set goals consists in the main provisions of efficiency and systems theories, which in turn became the theoretical basis for solving problems involved in the creation of criteria and assessment of performance indicators of information protection systems. Results. The criteria and performance indicators for the creation of automated information systems are developed on the basis of the analysis of open literature sources and existing shortcomings in the real use of systems for protecting information from unauthorised access. An algorithm for the integrated evaluation of the operational effectiveness of the information protection systems is developed. Conclusion. In the article, based on the analysis of normative documents (both international and Russian), as well as on the scientific materials devoted to the quality (function efficiency) of complex software systems, to which the information protection systems can be related, a system of performance indicators was developed. These can be indicators can be classified as partial (static, practically independent of time, the evaluation of which is based on expert estimates) and integral (dynamic, time-dependent, the evaluation of which is based on mathematical modeling).

Published

2018

21. Нарушения информационной безопасности в информационных системах с учетом распознавания объектов воздействий системами защиты информации в условиях неполноты априорных сведений

Subjects

information security breaches, information system, information protection system, нарушения информационной безопасности, система защиты информации, recognition of objects impact, распознавание объектов воздействия, incomplete a priori information, неполнота априорных сведений, информационная система

Abstract

Оценка рисков нарушения информационной безопасности в информационных системах с учетом распознавания объектов воздействий системами защиты информации зависит от правильного определения порогового значения срабатывания системы на действия объектов в условиях неполноты сведений о них. Сформулировано 10 основных правил логического вывода, используемых в программной реализации систем. Для установления границ нечетких характеристик использован экспертный опрос. Сформированы и показаны графически функции принадлежности, характеризующие поведение системы “надежная”, “почти надежная”, “слабая” и “очень слабая” в условиях неполноты априорных сведений. Понижение влияния объектов на систему выполнено за счет формирования правил нечеткой логики, снижающих неопределенность и повышающих эффективность функционирования систем защиты информации. Разработан механизм снижения неопределенности и формирования политикой безопасности изолированной среды системы., Evaluation of information security risks in information systems with consideration of object recognition impacts information protection systems depends on the correct definition of a threshold system response to the actions of objects in conditions of incomplete information. Formulated 10 basic rules of inference used in software systems. The boundaries of fuzzy characteristics used by expert poll. Membership functions that characterize the behavior of “reliable”, “almost reliable”, “poor” and “very weak” in the face of incomplete a priori information was formed and showing graphically. Lowering the impact of objects on the system solved due to the formation of rules of fuzzy logic, to reduce uncertainty and increase the efficiency of information protection systems. Uncertainty reduction mechanism and formation of isolated system medium by security policy., №10 (2018)

Published

2018

22. Using preventive measures for the purpose of assuring information security of wireless communication channels

Author

Mikhail E. Sukhoparov, Ilya Lebedev, Irina Krivtsova, Viktoria M. Korzhuk, Kseniya Salakhutdinova, and Daniil Tikhonov

Subjects

wireless communication channels, Wi-Fi array, Cloud computing security, information security, Computer science, Covert channel, Information security, Computer security model, Computer security, computer.software_genre, Security information and event management, lcsh:Telecommunication, information protection, information protection system, Wireless Transport Layer Security, response to information attacks, Security service, lcsh:TK5101-6720, information and telecommunication systems, computer

Abstract

The task we consider is counteraction to the information security incidents. The special feature of the described solution is an integrated application of the methods ensuring implementation of the preventive measures aimed at increasing the complexity of information security threat implementation on a compact device. It provides tasks required for support of wireless communication channels in an environment exposed to an information influence. A prototype of the compact device based on form-factor PC-104+ relevant to the set objectives is offered and tested, its operation principles are described. There is an assessment of response to information attacks, and the states of the devices are modeled in various modes and during introduction of additional protection elements.

Published

2016

23. A dynamic access control scheme based upon the knapsack problem

Author

Jinn-Ke Jan and Shiuh-Jeng Wang

Subjects

Scheme (programming language), Theoretical computer science, business.industry, Access control, Privilege (computing), Knapsack problem, Information protection policy, Set (abstract data type), Computational Mathematics, Computational Theory and Mathematics, Simple (abstract algebra), Modeling and Simulation, Modelling and Simulation, Information protection system, business, computer, Cryptosystem, Integer (computer science), Mathematics, computer.programming_language

Abstract

A new dynamic access control scheme for information protection systems is proposed in this paper. The main idea of it is inspired by the concept of the trapdoor knapsack problem proposed by Merkle and Hellman. Since the knapsack problem is an NP-complete problem, the security of access control is achieved henceforth. Our scheme associates each user with some user keys and each file with some file keys. There is a positive integer set of S′; through a simple formula on keys and S′, the corresponding access privilege can be easily revealed in the protection system. Moreover, by employing our scheme, insertion or deletion of the user/file can be processed effectively with only a few previously defined keys and locks required to be modified.

Published

1993