ФУНКЦИОНАЛЬНАЯ БЕЗОПАСНОСТЬ И НЕДОВЕРЕННАЯ ЭЛЕКТРОННАЯ КОМПОНЕНТНАЯ БАЗА

Abstract

In the presence of technological dependence, it is impossible to abandon the use of untrusted electronic component base products, and in some cases it is impractical. Existing technologies allow for structural and technological modifications that may carry hidden threats. It is noted that the terms "functional security" and "information security" are interpreted ambiguously in the regulatory documentation and need to be corrected. The analysis of the existing regulatory framework for the provision of critical facilities in terms of technological dependence on foreign-made untrusted electronic components is carried out. It is established that the existing requirements of the functional security are limited by the requirements for fault tolerance of electronic components. The documents of the international and national level, legislative and regulatory frameworks do not take into account the impact on the functional security of the critical facilities of threats caused by the use of an untrusted electronic components is noted. The lag between the regulatory documentation and the requirements of the documents defining the cybersecurity strategy at the national level and the legislative framework in modern conditions has been revealed. The necessity of presenting requirements for the information security of electron components at the functional level of the critical facilities is noted. Proposals have been developed to improve the regulatory framework in order to take into account the threats caused by the use of untrusted electronic components. Was made a conclusion about the need to consolidate in the regulatory and technical documentation the requirements for the identification of structural and technological modifications in products of untrusted electronic components and to make appropriate changes to the documents defining the national-level cybersecurity strategy, legislative and regulatory frameworks in the field of cybersecurity of the critical facilities.