University Distributed Computer Network Vulnerability Assessment

Abstract

A methodology for evaluating information security (IS) for a distributed computer network (DCN) of a university (hereinafter referred to as UDCN) has been proposed. A mathematical model for calculating the UDCN vulnerability factor has been presented. The UDCN vulnerability coefficient makes it possible to assess its IS level at the UDCN design stage. The results of simulation modeling and virtualization of IS UDCN components have also been presented. In the course of simulation modeling, a model of a protected UDCN was designed and tested. In the experimental UDCN model, the network devices selected in the course of modeling the vulnerability coefficient were emulated on virtual machines (VMs). UDCN resources were reproduced using the Proxmox VE virtualization system. On the UDCN hosts running PVE, the Suricata Intrusion Detection System (IPS) was used. Splunk was used as SIEM.