Abstract
Formulation of the problem. The completeness of the characteristics of one of the most serious threats to the security of information today – its leakage through the transient electromagnetic pulse emanation standard (TEMPEST) from computer equipment (CE) is determined not only by the number of detectable signs of leakage but also by several other parameters characterizing the dynamics of the implementation of such a threat. The established patterns in the scenarios of violators’ actions associated with the use of technical reconnaissance equipment (TRQ) to intercept informative TEMPEST signals from computer equipment made it possible to form a model of all possible options for using TRQ to obtain confidential information processed by computer equipment. The proposed model provides the implementation of the methodological principles of the recognition theory for a more complete characterization of threats of information leakage through the channels of spurious electromagnetic radiation and interference from CE in the process of their detection.Objective. Development of methodological grounds for presenting signs of the violator’s implementation of certain functions associated with the use of technical reconnaissance equipment to intercept informative signals of spurious electromagnetic radiation and interference from computer equipment as signs that identify the most significant conditions for the recognition and prevention of such threats.Results. Methodological solutions for the identification of three states significant for the prevention of threats are given based on the structuring of the functional representation of the intruder’s actions to implement such threats. Mathematical models for assessing the predicted amount of information disclosed in the process of intercepting TEMPEST informative signals from computer equipment, and assessing the level of security threats in case of interception of information are also presented.Practical significance. The paper presents the main options for the operation of a complex of programs for recognizing threats of information leakage through TEMPEST channels from computer equipment developed within the framework of the presented methodology.
Highlights
Ключевые слова: побочные электромагнитные излучения и наводки (ПЭМИН), средства вычислительной техники (СВТ), распознавание угроз утечки информации по каналам побочных электромагнитных излучений и наводок (ПЭМИН) от средств вычислительной техники (СВТ)
The completeness of the characteristics of one of the most serious threats to the security of information today – its leakage through the transient electromagnetic pulse emanation standard (TEMPEST) from computer equipment (CE) is determined by the number of detectable signs of leakage and by several other parameters characterizing the dynamics of the implementation of such a threat
The established patterns in the scenarios of violators’ actions associated with the use of technical reconnaissance equipment (TRQ) to intercept informative TEMPEST signals from computer equipment made it possible to form a model of all possible options for using TRQ to obtain confidential information processed by computer equipment
Summary
Баумана», Москва, Россия 2 ФГКОУ ВО «Воронежский институт МВД России», Воронеж, Россия 3 ФГБОУ ВО «Московский государственный технический университет им. Расчет коэффициентов затухания для информативных сигналов ПЭМИН от средств вычислительной техники / Calculation of attenuation coefficients for informative TEMPEST signals from the computer equipment Вычислительной техники на частотах из банка обнаруженных сигналов / Use of equipment of technical means of reconnaissance for visual measurement of the strength of the electrical component of the electromagnetic field of TEMPEST informative signals from the computers at frequencies from the bank of detected signals
Sign-in/Register to view highlights & summary 
Published Version
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call