MODEL AND QUANTITATIVE ASSESSMENT OF THE EFFECTIVENESS OF EXISTING METHODS OF PROTECTION AGAINST MALWARE.

The main ways that are used to solve problems and create mechanisms for protecting information are generally considered to be: technical devices, the whole set of which is divided into: physical and hardware - and software - programs designed to perform actions aimed at ensuring the protection of information. As a result of the development of computer security and information technologies, experts have concluded that the use of any one of the above methods will not provide reliable information protection. The complex use and development of all methods and means of information security is necessary. Further, the following information security methods were implemented: We obtain a quantitative estimate of their effectiveness. Consider the effectiveness of antivirus software that uses signature databases, heuristics, or malware behavior. To quantify the existing methods of protection, we construct a mathematical model. Imagine the detection of a new malware as a queuing system, where the device is an analyst, the application is a new malware. As a result, we obtain a multi-channel queuing system with an unlimited queue M / M / S. A mathematical and simulation model is proposed for calculating efficiency, which can be reconfigured depending on the tasks to be solved. [ABSTRACT FROM AUTHOR]