The article considers the use and implementation of modern solutions in the field of deception technologies in the information infrastructure of critical industrial facilities. Their advantages and key features of use are analyzed, the principle of operation of the distributed infrastructure of false goals is considered. A comparative analysis of six different DDP class solutions of foreign and domestic manufacturers is carried out according to four criteria: the possibility of agentless placement of baits; types of traps and baits for industrial systems; information security systems with which the solution interacts; FulloS trapping possibilities. The approach to the implementation of DDP class solutions to ensure the information security of critical industrial facilities is substantiated. Within the framework of the considered approach, the implementation is proposed in the form of five major stages of setting up and implementing a distributed structure of false goals. The prospects of using DDP solutions to improve the safety of industrial enterprises are evaluated and an example of the effective use of the DDP class solution for an industrial facility is given. The prospects of using a distributed structure of false targets for critical industrial facilities are proposed to be assessed by the threat modeling, threat risk assessment and determination of the average number of information security incidents.
Read full abstract