Information Security Products Research Articles

Cyber Security and Compliance Management through a Single Integrated Platform

Abstract: These days, any information security product or service used in an organization is a stand-alone solution. Examples include information risk management, data security, auditing, and incident management. Since different organizations use different services from different providers, there is currently no single platform or architecture that can address all of an organization's fundamental information security procedures in one easy step. Because of this, businesses must spend a significant amount of money on separate services in order to meet the information security standards that are necessary for their businesses. These dispersed services lead to an increase in physical and manual labor, disorganized processes, and a lack of clarity regarding all information security-related business issues. To solve these issues, the approach covered in this article combines information security as a service with end-to-end platform/framework to give organizations a single framework for all information security-related organizational aspects. A single service that can handle every information security-related work for the company, including risk assessment, mitigation, vulnerability assessment, incident management, threat analytics, risk response management, and auditing. This will assist the company in spending less money on a wider range of security-related services.

ВЫБОР НАИБОЛЕЕ ОПАСНЫХ УЯЗВИМОСТЕЙ ДЛЯ ПЕРСПЕКТИВНЫХ ИНФОРМАЦИОННЫХ СИСТЕМ КРИТИЧЕСКОГО ПРИМЕНЕНИЯ

Abstract The development of information systems of critical application is ahead of changes in regulatory documents of regulators and educational programs of universities. Purpose of work: to determine the most dangerous vulnerabilities for promising information systems of critical application (IS CA). Research method: application of the analysis hierarcihes method to compile a hierarchy of alternatives, including the type of platform for a promising IS CA, aspects of information security, types of vulnerabilities. Conducting a survey of experts using a point assessment. Converting results to a matrix of pairwise comparisons. Getting local and global priorities of alternatives. Result of the study: 25 experts of different ages and with different work experience were interviewed. From the point of view of the interviewed specialists, the best type of platform for a prospective distributed information system of critical application is edge computing. Availability, authenticity and integrity are highlighted as the most important aspects of information security. The most dangerous are the vulnerabilities associated with: 1) incomplete verification of input (input) data, buffer overflow, the possibility of injections, injection of arbitrary code, cross-site scripting, injection of operating system commands, etc.; 2) identification, authentication, granting access and privilege escalation; 3) incorrect configuration of software parameters, management of system resources, access to service information. Less dangerous are vulnerabilities that use the health of hardware and reduce its resistance to the actions of technical means of reconnaissance and electronic warfare. The results can be used to prioritize the procurement of information security products, to update the regulatory framework of regulators and training programs for training information security specialists.

АДАПТИВНАЯ СИСТЕМА КОМПЛЕКСНОГО ОБЕСПЕЧЕНИЯ БЕЗОПАСНОСТИ КАК ЭЛЕМЕНТ ИНФРАСТРУКТУРЫ СИТУАЦИОННОГО ЦЕНТРА

The article deals with the analysis and modeling of an adaptive system for integrated security provision as an element of the infrastructure of the situation center. The constantly changing conditions of the information environment and the global information space dictate the possibility of automated or automatic "adaptation" of security systems to the requirements of modern software systems. The main tasks for organizing the integration of an integrated security system into the situation center system and determining the rules for interaction with functional blocks is the analysis and implementation of various formalized procedures for ensuring integrated security. An adaptive integrated security system is considered as an object that implements the ability to manage and quickly build a security model for a situation center, depending on the problem being solved, or preventing or eliminating an incident. The proposed approach is dictated not only by an increase in the functionality of modern technologies, but also by the requirements for the creation of adaptive integrated solutions that are scalable within the architecture to protect against various types of threats. The use of an integrated security system within the framework of the proposed approach will make it possible to promptly respond to incidents of both external and internal nature, which will allow timely neutralization of the consequences of their influence. An adaptive integrated security system as a common platform will provide timely monitoring, context and control capabilities in various situations. The development of such an integration platform will improve automation and improve the quality of information provided by information security products.

Testing and Evaluation System for Cloud Computing Information Security Products

Abstract Due to the lack of professional testing and evaluation system for cloud computing information security products, the basic security of cloud computing information security products cannot be guaranteed. The establishment of a test and evaluation system of cloud computing information security products is provided, and the system is used in the actual product testing, to further promote the development of cloud computing and information security.

A Novel Research on Real-Time Intrusion Detection Technology Based on Data Mining

With the wide application of network technology and the continuous development of network economy, network security issues are also increasingly prominent, it gives the network itself and the information system based on network has brought great threat. Adaptive detection based on data mining is the development trend of intrusion detection system, it can adapt to different network environment, and does not depend on expert training data. Based on the reference on the basis of predecessors, this paper proposes a real-time intrusion detection system based on data mining framework structure. Research based on data mining technology, with adaptability and real-time detection function and the structure of the distributed intrusion detection system, to promote the network information security technology and products to develop in the direction of the omni-directional three-dimensional testing and national information safety inspection work is meaningful.

Применение средств защиты информации от несанкционированного доступа для защиты ПЭВМ, функционирующих под управлением операционной системы Linux

Применение средств защиты информации от несанкционированного доступа для защиты ПЭВМ, функционирующих под управлением операционной системы Linux

ANALISIS FAKTOR-FAKTOR YANG MEMPENGARUHI KEPUTUSAN KONSUMEN DALAM PEMBELIAN PRODUK MAKANAN DAN MINUMAN HALAL DI JAKARTA

This study aims to determine the effect of variables attitude, subjective norm, perceived behavioral control, and intentions of the decision to buy cosmetic products are safe and lawful to the Moslem in University Tarumanagara. The analysis used the two-track analysis using SPSS program. The analysis is divided into two: first the decision to buy cosmetic products are safe and the decision to buy a halal cosmetics. The results of this study is expected to be beneficial for consumers to pay more attention to safety and halal cosmetic products to be purchased. The government is expected to explicitly require the employer to provide information security and halal cosmetic products, due to the legality and certification of halal products will provide protection and ease of purchasing products cosmetic. For Moslem businessman in the presence of security guarantees and halal products, it is hoped will be improve competitiveness and sales.

Application of Taguchi model to valuation of information security technology considering security quality failure

As interests in intangible assets in a digital economy have been growing, technology valuation is becoming increasingly more important in information technology management. Most existing valuation methods do not reflect the unique characteristics of technology. Thus, this paper aims to suggest an approach for technology valuation that considers the nature of information security technology. First, technological value is evaluated by scoring value factors that are used to analyse the intrinsic characteristics and application of technology. Second, to evaluate the market value, the expected profit of the technology will be deduced by using an income approach, reflecting on the characteristics of information security products and services. The weighted sum of factors from the previous scoring process plays a role in adjusting the expected profit. Third, the Taguchi loss function is applied to calculate the amount of social loss incurred due to the lower quality level of security. The final result of technology valuation is presented by integrating the expected profit and social loss. The proposed approach is illustrated with a case of safe symmetric key algorithm, one of information security technologies in Korea. The results of technology valuation will provide objective information for technology transfer and the selection of R&D projects.

METHODOLOGY FOR INVESTIGATING THE PROBABILITY-TIME CHARACTERISTICS OF NETWORK ATTACKS IN THE SIMULATION MODELLING SOFTWARE ENVIRONMENT

Objectives An analysis of open access literature sources and normative documents on the problem of information protection in automated systems was carried out. This showed the absence in these documents of quantitative parameters of the probability-time characteristics of network attacks carried out on information resource of automated systems. To such parameters one can attribute the average time of a network attack in one of its states, realising destructive impacts, in order to develop an effective model for countering threats implemented in systems and information security products. Methods One of the methods for solving this problem is a full-scale experiment; however, in practice many difficulties arise during its implementation, namely the determination of the probabilitytime characteristics of network attacks (if the time is much less than a second). To solve this complex problem, it is necessary to use new information technologies, which include the CPNTools simulation modelling software environment. Results The methodology for determining the probability-time characteristics of network attacks carried out on the information resource of automated systems (the quantitative values of the times of the network attack at all states of the formal model of their operation) is developed. A classification of network threats comprising unauthorised access in automated systems based on the data bank of the Federal Service for Technical and Export Control of Russian Federation is proposed. Conclusion The output data of the methodology developed in the article are the probability-time characteristics of network attacks carried out on the information resource of automated systems. This data was obtained during the simulation using CPNTools software environment in the form of the residence time (realisation) in one of the realisation states of these destructive effects in automated systems. The main aspects of the obtained results are analysed and prospects for their future use, connected with the increase of real security of existing, as well as developed, automated systems, are outlined.

ANALYSIS OF THE IMPACT OF INFORMATION SECURITY TOOLS ON NETWORK BANDWIDTH

The paper considers the construction of secure communication networks and their elements. The analysis of simulation modeling of the communication network segment under attack conditions, the influence of information security tools on network traffic, and examples of calculations are given. The analysis of the method of network traffic optimization is performed taking into account the use of various information security products, as well as options for developing a security policy. The results of experiments under various conditions of information security are given: in the absence of an attack without the use of information security products; in the absence of an attack using information security products; under a DoS attack without the use of information security products; under a DoS-attack with the use of information security products. Several methods for optimizing traffic using information security products are considered. A security policy is considered to achieve a given level of information security in a computer system with a minimum reduction in the network traffic and the cost of information security products.

정보보호 산업 해외 거점 인프라 생성 연구

The information security industry is technology-intensive, high value-added industries. South Korea`s response has excellent ICT skills and experience and skills in a variety of cyber attacks, has become a benchmark in the world. However, the small size of the domestic information security company, supporting infrastructure is lacking. Domestic information security industry is the primary condition to activate the export. For the export of high value-added enterprise information security products and services, it is necessary the establishment of the domestic IT information security infrastructure of the industrial promotion is based overseas. Come to analyze the domestic information security industry, capital of this small, market reclamation of overseas expansion, information, manpower shortage was a problem. This fact, combined losses caused by cost-free period AS. Therefore, the study on information security in the infrastructure industry overseas bases is necessary. How to select and analyze the causes of infrastructure in selected overseas offices. By utilizing the infrastructure of overseas bases, can raise the added value of the products and services of the Information Security company, we can enable the export of small and medium Information Security company from overseas offices.

The Key Factors Influencing Internet Finances Services Satisfaction: An Empirical Study in Taiwan

The global innovation of information technology fundamentally reshaped the finance technology and the flourishing development over the past decade. The high coverage of both the internet network and the mobile phone has facilitated Taiwan to become one of the most potential internet finance regions. This study aims to empirically validate the technology acceptance model (TAM 3) for exploring the key factors that influence the internet finance development. SEM was adopted to investigate both the hypothesis and the path coefficient associations among the constructs and their significance. Confirmed factor analysis for the instrument validity and reliability assessment was made. Hierarchy regression was performed to test the moderator effect of experience and voluntariness. This study result found that Taiwan finance customers had high expectations of information security and preferred high technology products with complex functions. The result demonstrated that customer’s Use Behavior was influenced by Perceived of Usefulness, not Perceived of Ease of Use. The moderator effect result in Experience had a positive moderator effect on Objective Usability to Perceived Ease of Use. This research extracted the key factors that influenced the internet finance development in Taiwan for providing both local government and internet finance developing countries guidelines while concurrently developing an internet finance development strategy.

개인정보보호 관련 법령의 내용과 보안제품 분포간의 연관성 분석

ABSTRACT For the past few years, personal information breach incidents, great and small, occurred constantly. Accordingly, the Personal Information Protection related Ordinances are enacted and amend ed persistently, and the information security products also kee p advancing and developing in the same way. There are the certifi cation systems such as Common Criteria Evaluation and Validatio n(CC) and Korea Cryptographic Module Validation Program(KCMVP) for th e information security products. These are also strictly carrie d out. This paper analyzes and categorizes the 5 Personal Informa tion Protection related Ordinances in the aspects of technical protection measures by using key words. Here are the 5 related ordinances; ‘the Personal Information Protection Act’, ‘the Act on Promoti on of Information and Communications Network Utilization and Infor mation Protection, etc’, ‘the Act on the Protection, Use, Etc, of Location Information’, ‘the Use and Protection of Credit Inform ation Act’, and ‘the Electronic Financial Transactions Act.’ Mo reover, this study analyzes the association between the technical prote ction measures in the 5 relevant laws and the information secur ity products that are obtaining the CC Evaluation & Validation(CC) and the products that are now produced at KISIA’s member compan ies. Keywords: Personal Information Protection, CC, KCMVP, KISIA

BSIMM을 활용한 정보보호시스템 보안 설계 방안

In the recent IT industry, security has established itself as the factor to be considered the most in the software development. It goes without saying that security is the critical factor for the development of information security products. In the evaluation of the information security products, the security is assured by the security architecture requirement (ADV_ARC). However, the Absence of the systematic software security architecture process makes it difficult to guarantee the security quality consistently even though they are evaluated based on common criteria. In this paper, we propose a way to ensure a consistent security quality applying the software security framework in BSIMM.

Integrity monitoring implementation for the operating system image loaded through a network to the thin clients

The paper deals with the problem of protection for the process of operating system loading from the server to the diskless workstation through a network and the analysis of the existing ways of integrity monitoring for information transferred under network protocols. Within the scope of research, solution is proposed making it possible to perform integrity monitoring of the operating system loaded image before control is transferred to it. For security protection of loading, key information elements are marked which integrity needs to be guaranteed. The developed solution, as an information security product, should meet the requirements of information security and at the same time be compatible to other hardware and software tools used for protection of the automated systems. The proposed solution implements the algorithm of integrity monitoring for an operating system designed with the use of public key infrastructure. Analysis of hardware configuration for the projected solution from the point of view of its usability and administration ease is provided, and possibilities of intruder’s attacks to the protected information are estimated, as well.

Security Evaluation Metric of Windows-Based Information Security Products

Recently, when updating the products for Windows-based agents, an integrity breaches by the malicious files or unusual behavior of the product by the user\'s intentional product modulation / deletion is causing a frequent accident cases. The PC based products such as anti-virus, personal firewall (integrated PC security), data loss prevention, security USB and network access control that perform the functions of the Agent based on Windows operating systems, the product itself gets attacked and becomes neutralized or has the existence of vulnerabilities that bypass security. To prevent this, we would like to give help in the development to organize the self-protection function which are required for Windows-based information security products in metrics.Keywords: Self-Protection Function, Windows-Based Agents

An exploratory research on advanced smart media security design for sustainable intelligence information system

The recent issue of cyber security accident and internal information leakage accident is becoming a big obstacle in entering into sustainable intelligence information. To guarantee a sustainable smart media technology and establish an intelligence information system environment, it is necessary to firmly cultivate information security industry with the need for a study on forming multi-dimensional foundation for promoting the use of information security product & service for organizations in intelligence information system environment. Accordingly, an exploratory study was conducted for identifying risk elements caused by intelligence information system environment and forming multi-dimensional smart media information security ecosystem to minimize such risk elements. As a result, a scenario was designed by deducing issues in information security resulting from entering into internet of things environment, while exploring and analyzing future direction by classifying into four areas of law & policy, information security business management, security accident criminal psychology and information security economic feasibility. Based on this study, it is expected that a fundamental & comprehensive solution can be presented as a prerequisite for ensuring sustainable internet of things environment, along with the establishment of response system against various forms of security accidents occurring recently.

The Study of Influencing Factors of the Online Banking Information Security Products Service Quality

The service quality of the online banking information security product has become the important bottleneck of every financial institution to further explore online market and development potential customers. Through study the domestic and overseas scholars about the quality of service fields putting the part of the research extends to the service quality of the online banking information security product measurement process, and trying to build the measurement model suit for the service quality of the online banking information security product. We survey the university student of shaanxi Xian and use the internet to investigation while using the factor analysis and multiple regression method to verify the evaluation model and assessment index of rationalities. We extract the main influence factors of the service quality of the online bank information security products, preceding a deeper analysis. Finally, we derive the main influence factor of the service quality of the online bank information security products.

The Application Based on the Internet of Things and Cloud Computing

With the rapid development of information technology and network technology,especially the RFID technology, the development of internet of things has been greatly promoted. Meanwhile, the integration of the technology of internet of things and the Cloud Computing products the increasing number of information goods based on the RFID technology. This paper mainly expounds the application of the integration of the technology of internet of things and the Cloud Computing by analysing bar code which are extensively applied in the RFID technology, and interprets the application research of orientation tracing, remote control and information security products based on the RFID technology.

Research on Asset Recognition Algorithm of Information Security Product Based on Decision Tree Algorithm

In current, there are complex relationship between the assets of information security product. According to this characteristic, we propose a new asset recognition algorithm (ART) on the improvement of the C4.5 decision tree algorithm, and analyze the computational complexity and space complexity of the proposed algorithm. Finally, we demonstrate that our algorithm is more precise than C4.5 algorithm in asset recognition by an application example whose result verifies the availability of our algorithm.Keywordsdecision tree, information security product, asset recognition, C4.5