МОДЕЛИРОВАНИЕ УГРОЗ БЕЗОПАСНОСТИ ИНФОРМАЦИИ БЕСПРОВОДНОГО СТАНДАРТА IEEE 802.11

Abstract

When building multi-level information protection both in the public and in the private sector, it is necessary to take the measures aimed at preventing threats to information security. Cyberphysical systems, as a means of communication, are actively used for providing information processes. Due to the poor uniformity of such technical solutions, as well as the use of technologies that were developed without taking into account security issues, such systems may be exposed to information security risks from an attacker. These risks, as a rule, lead to a violation of operability, confidentiality, control and other negative consequences for the user or the owner of the information (equipment). The development of a model of information security threats for the wireless networks, the operation of which is based on the protocols of the IEEE 802.11 standard used in the functioning of cyber-physical systems is an urgent problem in the area of information protection. The negative consequences that can lead to the implementation of various threats, and its relevance are analysed. The objects of influence based on the Methodology of assessing threats to the security of information of the FSTEC Russia are summarised. The specific actions of the violator, the levels of danger, the scale of potential damage from the implementation of threats due to the use of vulnerabilities of protocols of the IEEE 802.11 standard are systematized and classified.