EXPERIMENTAL STUDY OF THE MODEL FOR CALCULATING THE QUANTITATIVE CRITERIA FOR ASSESSING THE SECURITY LEVEL OF INFORMATION AND TELECOMMUNICATION SYSTEMS IN CRITICAL INFRASTRUCTURE OF THE STATE

Cybersecurity: Education, Science, Technique Pub Date : 1900-01-01 DOI:10.28925/2663-4023.2022.16.618

S. Gnatyuk, Oleksiy Yudin, V. Sydorenko, T. Smirnova, Dauriya Zhaksigulova

{"title":"EXPERIMENTAL STUDY OF THE MODEL FOR CALCULATING THE QUANTITATIVE CRITERIA FOR ASSESSING THE SECURITY LEVEL OF INFORMATION AND TELECOMMUNICATION SYSTEMS IN CRITICAL INFRASTRUCTURE OF THE STATE","authors":"S. Gnatyuk, Oleksiy Yudin, V. Sydorenko, T. Smirnova, Dauriya Zhaksigulova","doi":"10.28925/2663-4023.2022.16.618","DOIUrl":null,"url":null,"abstract":"Global trends in the number and complexity of cyber-attacks have led to the information and telecommunications systems (ITS) protection, in particular, industry, which are critical to society, socio-economic development and information component of national security. Given the needs of national security and the need to introduce a systematic approach to solving the problem of critical infrastructure protection, at the national level, creating a system of protection of such infrastructure is one of the priorities in reforming the defense and security sector of Ukraine. Thus, there is a need to develop methods and models for classifying ITS as a critical infrastructure to ensure Ukraine's national security. The paper studies the model of calculating the quantitative criterion for assessing the security of ITS based on the method of hierarchy analysis, which allowed the processing of expert assessments to obtain a quantitative indicator of ITS security. This made it possible to simplify the procedure for selecting experts, to avoid the specifics of processing expert data, as well as to assess ITS in a limited amount of statistics. The developed model allows to move from qualitative assessment in the form of an ordered series of alphanumeric combinations denoting the levels of implemented services, to quantitative assessment in the form of the ratio of functional security profiles. In addition, specialized software has been developed that implements the studied model, which allowed to conduct experimental research and verification of this model on the example of ITS of the National Confidential Communications System. In further research, the authors plan to investigate the model for calculating the quantitative criterion for assessing the security of ITS in other areas of critical infrastructure (energy, transport etc.).","PeriodicalId":198390,"journal":{"name":"Cybersecurity: Education, Science, Technique","volume":null,"pages":null},"PeriodicalIF":0.0000,"publicationDate":"1900-01-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Cybersecurity: Education, Science, Technique","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.28925/2663-4023.2022.16.618","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

Global trends in the number and complexity of cyber-attacks have led to the information and telecommunications systems (ITS) protection, in particular, industry, which are critical to society, socio-economic development and information component of national security. Given the needs of national security and the need to introduce a systematic approach to solving the problem of critical infrastructure protection, at the national level, creating a system of protection of such infrastructure is one of the priorities in reforming the defense and security sector of Ukraine. Thus, there is a need to develop methods and models for classifying ITS as a critical infrastructure to ensure Ukraine's national security. The paper studies the model of calculating the quantitative criterion for assessing the security of ITS based on the method of hierarchy analysis, which allowed the processing of expert assessments to obtain a quantitative indicator of ITS security. This made it possible to simplify the procedure for selecting experts, to avoid the specifics of processing expert data, as well as to assess ITS in a limited amount of statistics. The developed model allows to move from qualitative assessment in the form of an ordered series of alphanumeric combinations denoting the levels of implemented services, to quantitative assessment in the form of the ratio of functional security profiles. In addition, specialized software has been developed that implements the studied model, which allowed to conduct experimental research and verification of this model on the example of ITS of the National Confidential Communications System. In further research, the authors plan to investigate the model for calculating the quantitative criterion for assessing the security of ITS in other areas of critical infrastructure (energy, transport etc.).

查看原文本刊更多论文

国家关键基础设施信息通信系统安全水平评估定量标准计算模型的实验研究

网络攻击数量和复杂性的全球趋势导致了对信息和电信系统(ITS)的保护，特别是对社会、社会经济发展和国家安全的信息组成部分至关重要的工业。鉴于国家安全的需要和在国家一级采取系统办法解决保护关键基础设施问题的需要，建立保护这种基础设施的制度是改革乌克兰国防和安全部门的优先事项之一。因此，有必要制定方法和模型，将ITS分类为确保乌克兰国家安全的关键基础设施。本文研究了基于层次分析法的智能交通系统安全评价定量指标的计算模型，使专家评价的处理能够得到智能交通系统安全的定量指标。这样就有可能简化选择专家的程序，避免处理专家数据的具体问题，并在有限的统计数字中评估ITS。所开发的模型允许从表示已实现服务级别的有序字母数字组合形式的定性评估转变为功能安全配置文件比例形式的定量评估。此外，还开发了实现所研究模型的专用软件，并以国家机密通信系统ITS为例对该模型进行了实验研究和验证。在进一步的研究中，作者计划研究计算其他关键基础设施领域(能源、交通等)ITS安全性定量标准的模型。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Cybersecurity: Education, Science, Technique

自引率

0.00%

发文量