Typical ophthalmic critical information systems

A. Krasov, N.N. Lansere, I.I. Fadeev, A. Gelfand, M.V. Lesnevskii
{"title":"Typical ophthalmic critical information systems","authors":"A. Krasov, N.N. Lansere, I.I. Fadeev, A. Gelfand, M.V. Lesnevskii","doi":"10.25276/0235-4160-2022-4s-85-91","DOIUrl":null,"url":null,"abstract":"Relevance. According to the law « the security of critical information infrastructure of the Russian Federation» 26.07.2017 No. 187-FZ information systems used in ophthalmology can be classified as significant objects of critical information infrastructure if a targeted computer attack can cause serious damage (assessed by five significance indicators). The study considers common objects of critical information infrastructure in the healthcare sector, analyzes typical ophthalmic automated control systems, assesses actual offenders for these systems and the consequences of the implementation of information security threats by them, based on which refined criteria are developed for classifying objects as significant. Purpose. Analysis of typical processes of information systems in the field of ophthalmology. Justification of the choice of systems belonging to the category of «critical». Material and methods. Common objects of critical information infrastructure in automated control systems is carried out. Results. An assessment of actual violators for information systems in the field of ophthalmology was carried out. The consequences of security breaches are identified, based on which refined criteria are developed for classifying objects as significant. Conclusion. The first step in the categorization process is to determine the list of objects (information systems) that are most critical in terms of the consequences of computer attacks for the functioning of a critical infrastructure subject. Not all enterprise information systems provide critical information processes and have signs of a significance category. Keywords: critical information infrastructure, healthcare sector, ophthalmology, information security threats, intruder model, categorization criteria","PeriodicalId":424200,"journal":{"name":"Fyodorov journal of ophthalmic surgery","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2023-02-17","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Fyodorov journal of ophthalmic surgery","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.25276/0235-4160-2022-4s-85-91","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 0

Abstract

Relevance. According to the law « the security of critical information infrastructure of the Russian Federation» 26.07.2017 No. 187-FZ information systems used in ophthalmology can be classified as significant objects of critical information infrastructure if a targeted computer attack can cause serious damage (assessed by five significance indicators). The study considers common objects of critical information infrastructure in the healthcare sector, analyzes typical ophthalmic automated control systems, assesses actual offenders for these systems and the consequences of the implementation of information security threats by them, based on which refined criteria are developed for classifying objects as significant. Purpose. Analysis of typical processes of information systems in the field of ophthalmology. Justification of the choice of systems belonging to the category of «critical». Material and methods. Common objects of critical information infrastructure in automated control systems is carried out. Results. An assessment of actual violators for information systems in the field of ophthalmology was carried out. The consequences of security breaches are identified, based on which refined criteria are developed for classifying objects as significant. Conclusion. The first step in the categorization process is to determine the list of objects (information systems) that are most critical in terms of the consequences of computer attacks for the functioning of a critical infrastructure subject. Not all enterprise information systems provide critical information processes and have signs of a significance category. Keywords: critical information infrastructure, healthcare sector, ophthalmology, information security threats, intruder model, categorization criteria
典型的眼科关键信息系统
的相关性。根据2017年7月26日第187号“俄罗斯联邦关键信息基础设施安全”法律,如果有针对性的计算机攻击可能造成严重损害,则眼科使用的fz信息系统可被归类为关键信息基础设施的重要对象(由五个重要指标评估)。该研究考虑了医疗保健部门关键信息基础设施的常见对象,分析了典型的眼科自动化控制系统,评估了这些系统的实际违法者及其实施信息安全威胁的后果,并在此基础上制定了将对象分类为重要对象的精细标准。目的。眼科信息系统的典型流程分析。选择属于“关键”范畴的系统的理由。材料和方法。实现了自动化控制系统中关键信息基础设施的共同目标。结果。对眼科信息系统的实际违规者进行了评估。确定了安全漏洞的后果,并在此基础上开发了用于将对象分类为重要对象的精炼标准。结论。分类过程的第一步是确定对象(信息系统)的列表,这些对象(信息系统)在计算机攻击对关键基础设施主体功能的影响方面是最关键的。并非所有的企业信息系统都提供关键的信息处理,并具有重要类别的标志。关键词:关键信息基础设施,医疗保健行业,眼科,信息安全威胁,入侵者模型,分类标准
本文章由计算机程序翻译,如有差异,请以英文原文为准。
求助全文
约1分钟内获得全文 求助全文
来源期刊
自引率
0.00%
发文量
0
×
引用
GB/T 7714-2015
复制
MLA
复制
APA
复制
导出至
BibTeX EndNote RefMan NoteFirst NoteExpress
×
提示
您的信息不完整,为了账户安全,请先补充。
现在去补充
×
提示
您因"违规操作"
具体请查看互助需知
我知道了
×
提示
确定
请完成安全验证×
copy
已复制链接
快去分享给好友吧!
我知道了
右上角分享
点击右上角分享
0
联系我们:info@booksci.cn Book学术提供免费学术资源搜索服务,方便国内外学者检索中英文文献。致力于提供最便捷和优质的服务体验。 Copyright © 2023 布克学术 All rights reserved.
京ICP备2023020795号-1
ghs 京公网安备 11010802042870号
Book学术文献互助
Book学术文献互助群
群 号:481959085
Book学术官方微信