{"title":"自动化系统信息安全系统选型项目","authors":"E. Vitenburg, A. Nikishova","doi":"10.1109/EASTСONF.2019.8725345","DOIUrl":null,"url":null,"abstract":"Automation of production processes of enterprise today has enormous scales. The spread of automated control systems of technological processes (ACSTP) and their integration with corporate information systems have led to increase in proportion of successfully implemented malicious impacts on ACSTP. Occurrence of new types of attacks and increase in number of successfully implemented attacks cause the need to form protection systems of industrial systems. Designing protection system of ACSTP is multi-stage process, starting with collection of data on object of protection, its main components, information assets, links with other systems, and identification of relevant information security threats to the system. In this article analysis of structure of typical automated control system of technological process is carried out. The most important components of ACSTP from the point of view of information security are identified. The article defines the need to form project of protection system of ACSTP on the basis of monitoring data of events that occur in ACSTP. Main classes of system events from the point of view of information security are defined. The most typical information security threats for this type of automated systems are considered. Neutralization of groups of threats relevant to ACSTP is carried out by means of forming effective protection system. The typical composition of data protection system of ACSTP is defined. According to results of analysis, the correspondence between security events of ACSTP, current threat groups and typical means of information protection is determined. Choosing the composition of information security tools is complex task that requires a lot of time. To achieve greater efficiency in its solving, it is proposed to use decision support system and system of artificial intelligence. Authors developed functional model of selection of protection system's project using intelligent method of decision support with neural network in it.","PeriodicalId":261560,"journal":{"name":"2019 International Science and Technology Conference \"EastСonf\"","volume":"2013 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2019-03-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Project of Automated System's Information Security System Selection\",\"authors\":\"E. Vitenburg, A. Nikishova\",\"doi\":\"10.1109/EASTСONF.2019.8725345\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Automation of production processes of enterprise today has enormous scales. The spread of automated control systems of technological processes (ACSTP) and their integration with corporate information systems have led to increase in proportion of successfully implemented malicious impacts on ACSTP. Occurrence of new types of attacks and increase in number of successfully implemented attacks cause the need to form protection systems of industrial systems. Designing protection system of ACSTP is multi-stage process, starting with collection of data on object of protection, its main components, information assets, links with other systems, and identification of relevant information security threats to the system. In this article analysis of structure of typical automated control system of technological process is carried out. The most important components of ACSTP from the point of view of information security are identified. The article defines the need to form project of protection system of ACSTP on the basis of monitoring data of events that occur in ACSTP. Main classes of system events from the point of view of information security are defined. The most typical information security threats for this type of automated systems are considered. Neutralization of groups of threats relevant to ACSTP is carried out by means of forming effective protection system. The typical composition of data protection system of ACSTP is defined. According to results of analysis, the correspondence between security events of ACSTP, current threat groups and typical means of information protection is determined. Choosing the composition of information security tools is complex task that requires a lot of time. To achieve greater efficiency in its solving, it is proposed to use decision support system and system of artificial intelligence. Authors developed functional model of selection of protection system's project using intelligent method of decision support with neural network in it.\",\"PeriodicalId\":261560,\"journal\":{\"name\":\"2019 International Science and Technology Conference \\\"EastСonf\\\"\",\"volume\":\"2013 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2019-03-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2019 International Science and Technology Conference \\\"EastСonf\\\"\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/EASTСONF.2019.8725345\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2019 International Science and Technology Conference \"EastСonf\"","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/EASTСONF.2019.8725345","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Project of Automated System's Information Security System Selection
Automation of production processes of enterprise today has enormous scales. The spread of automated control systems of technological processes (ACSTP) and their integration with corporate information systems have led to increase in proportion of successfully implemented malicious impacts on ACSTP. Occurrence of new types of attacks and increase in number of successfully implemented attacks cause the need to form protection systems of industrial systems. Designing protection system of ACSTP is multi-stage process, starting with collection of data on object of protection, its main components, information assets, links with other systems, and identification of relevant information security threats to the system. In this article analysis of structure of typical automated control system of technological process is carried out. The most important components of ACSTP from the point of view of information security are identified. The article defines the need to form project of protection system of ACSTP on the basis of monitoring data of events that occur in ACSTP. Main classes of system events from the point of view of information security are defined. The most typical information security threats for this type of automated systems are considered. Neutralization of groups of threats relevant to ACSTP is carried out by means of forming effective protection system. The typical composition of data protection system of ACSTP is defined. According to results of analysis, the correspondence between security events of ACSTP, current threat groups and typical means of information protection is determined. Choosing the composition of information security tools is complex task that requires a lot of time. To achieve greater efficiency in its solving, it is proposed to use decision support system and system of artificial intelligence. Authors developed functional model of selection of protection system's project using intelligent method of decision support with neural network in it.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
