Reliability Of Information Systems Research Articles

A COMPREHENSIVE APPROACH TO ENHANCING THE RESILIENCE OF INFORMATION SYSTEMS: FROM MATHEMATICAL MODELING TO RISK MANAGEMENT STRATEGIES

This article examines the issue of enhancing the reliability of information systems. As a solution to this problem, an approach to assessing resilience to failures in data exchange systems is presented, based on the use of mathematical analysis methods for systems capable of operating at three levels. The developed mathematical model is represented in the form of a graph of states and failure probabilities, as well as a complex of differential equations for its description. The solution of the proposed model allows determining the probabilities of failures at different stages of the information systems' operation. This, in turn, contributes to the effective identification and elimination of malfunctions and equipment failures.

Improving IT Control Compliance using Artificial Intelligence

In an era where digital transformations are not just trends but necessities, the reliability and security of information systems have become paramount. The complexity of modern IT environments, coupled with increasing regulatory demands, poses significant challenges for organizations worldwide. IT control compliance, particularly in the context of Sarbanes-Oxley Act (SOX) IT General Controls (ITGC), requires rigorous and continuous monitoring to ensure that financial reporting and data integrity are maintained. However, traditional compliance efforts are often hampered by manual processes that are both time-consuming and error-prone. These methods struggle to keep pace with the dynamic nature of IT advancements and the evolving landscape of cyber threats. This gap not only increases the risk of non-compliance but also places a heavy burden on the resources of the organization. With the advancement of Artificial Intelligence (AI), there is promising potential to revolutionize these processes. AI technologies, through their capability to analyze large volumes of data and recognize patterns quickly, can automate complex tasks, enhance decision-making, and significantly improve the efficiency and effectiveness of compliance systems. By integrating AI into IT control frameworks, organizations can address the perennial challenges of compliance more effectively. AI-driven systems can reduce human error, streamline control processes, and ensure more robust governance and risk management frameworks. This paper explores the integration of AI technologies into IT control frameworks. It discusses how leveraging AI not only aids in maintaining compliance with existing regulations but also enhances the organization’s ability to adapt to new regulatory changes swiftly, thus safeguarding against compliance risks and fostering a culture of continuous improvement in governance practices.

Analisis Kinerja Pelayanan Teknologi Informasi Menggunakan Framework Cobit 4.1 Pada Manajemen Pelayanan di PT.XYZ

This study aims to analyze the performance of Information Technology services in Service Management at PT. XYZ using the COBIT 4.1 Framework. Information Technology has a crucial role in supporting the company's business operations and strategies, therefore it is important to ensure that the performance of IT services meets the established standards. The research method used is a qualitative approach with data collection through observation, interviews, and document analysis. This research will evaluate key aspects of IT services, such as risk management, internal control, and performance measurement, using the COBIT 4.1 framework. The results of this study show that PT XYZ's IT service performance has been successful in some areas, but there is still room for improvement. One of the key findings is that risk management needs to be improved to effectively identify and manage potential risks that could disrupt IT operations. In addition, internal controls should be strengthened to ensure the security and reliability of information systems. The recommendations provided in this study include the implementation of specific measures to improve IT service performance. First, the company should develop a clearer and more detailed risk management policy, including procedures to mitigate identified risks. Second, internal controls should be strengthened through stricter control mechanisms and regular monitoring of system security. In addition, steps are needed to improve IT performance measurement, including the use of measurable and more systematic measures to evaluate the effectiveness and efficiency of IT services. The findings and recommendations of this research are expected to provide a deeper understanding of IT. PT. XYZ's service performance and practical improvements are needed to improve the effectiveness, efficiency and security of IT management. The implications of this research can assist companies in making strategic decisions regarding the right IT infrastructure investment and development to improve competitiveness and achieve long-term business goals.

СТАН ТА РОЗВИТОК ІТ-АУДИТУ В УМОВАХ ЦИФРОВОЇ ЕКОНОМІКИ

The article examines issues of the state and directions of IT audit development. The relevance of the topic lies in the fact that the conditions of the digital economy are characterized by the rapid pace of changes in the field of information technologies, which requires IT audit to constantly develop and adapt to new challenges. The purpose of the article is to generalize views on the interpretation of the essence of IT audit, to characterize the tasks, types, standards in the field of IT audit, to justify the main stages of IT audit, to generalize the tools of IT audit, to determine the main directions of the development of IT audit in the conditions of the digital economy. Methodical approaches to the essence of IT audit by scientists and practitioners are analyzed in the article. Studies have shown that some specialists define IT audit as a type of audit, others propose to understand and apply it only as an intermediate stage of financial audit, and some - as a separate IT consulting service. The tasks of IT audit, its types and standards are described. The main types of audit evidence, methods and tools, as well as sources of information that can be used when conducting an IT audit are analyzed. The main stages of an IT audit are highlighted: preliminary research of the IT audit object and internal audit planning; IT audit and analysis; reporting on IT audit results; tracking the results of implementation of audit recommendations. The recommended process of organizing an internal IT audit at the enterprise. The IT audit toolkit is summarized, namely: IT audit goals; the necessity of its implementation; objects of IT audit; equipment and software used in IT audit, etc. Based on the conducted research, the advantages of conducting an IT audit are summarized. The following areas of IT audit development in the conditions of the digital economy have been determined: digital transformation; cyber security; data analytics; cloud technologies; automation; regulatory requirements. The development of IT audit is aimed at improving its methods and approaches, which would meet the modern requirements of business and technology, ensuring the reliability and efficiency of information systems of enterprises.

CLASSIFICATION AND METHODS OF DETECTION OF PHISHING ATTACKS

The reliable operation of data transmission networks, computer systems and mobile devices is a mandatory condition for the effective functioning of the state and society, and the life of an individual. The reliability of key information systems for public use depends on many factors: cyber attacks, hardware and software failures, and various types of errors. Rapid expansion of threats to national security in the 21st century. entrusts state authorities with the tasks of their prevention, detection and neutralization. Cyber security is increasingly viewed as a fundamental problem of the state, which comprehensively affects its security, defense, economy, and almost all spheres of public life. The Internet gave a powerful impetus to the development of mass communication, trade and information exchange. However, today it is the area where many crimes are committed. The impersonal nature of digital infrastructure has made identity theft a natural and highly attractive project. Cybercriminals actively use various means of stealing information, including phishing. At the current stage and in the future, the development of both individual societies and states, as well as the world in general, will be carried out in accordance with the concept of the information society, which is connected with the use of information and telecommunication technologies in the acquisition, storage and processing of information in everyday life Phishing is a serious online security problem that involves spoofing genuine websites to trick online users and steal their confidential information. Analyzing these definitions, we can conclude that “phishing” can be considered in different ways, but the main purpose of its conduct remains unchanged—stealing data. The practical value of the results lies in the possibility of using the obtained classifier for further creation of software solutions for recognizing phishing sites. It, as well as a set of characteristics, can be implemented in anti-phishing browser extensions or other anti-phishing tools.

Using machine learning to forecast hard drive failures

The aim of this research is to develop an effective tool for assessing the condition of computer hardware based on an intelligent method. The outcome of this work not only facilitates the implementation of a data analysis tool into the realm of computer equipment servicing but also offers a practical example of its use for enhancing the reliability and efficiency of information systems. The findings of this research can be valuable for IT specialists responsible for technical support as well as for organizations seeking to optimize equipment servicing processes and improve their competitiveness in the market.

Methodology of Digital Transformation Practices of Accounting Firm

For accounting firms, digital auditing is an important task which helps them to examine financial data and ensure the accuracy of the data on the reports. However, which data analysis techniques should be adopted to improve the efficiency and accuracy of digital audit is an important issue. This study aims to explore the feasibility and practical applications of using data analytics techniques in digital auditing; These techniques can help auditors to systematically check, test and evaluate the accuracy, completeness, reliability and effectiveness of corporate information systems and data according to the systematic procedure. The DIKW model is a model that establishes a connection between knowledge and wisdom based on the framework of knowledge management, using the traditional concept of "data-information-knowledge-wisdom". This study will start from the theoretical level to explore the practical research of digital auditing combined with the DIKW model using data models, visualization analysis, machine learning, and related technical and practical problems. Effective solutions are proposed for each situation for future development. The implementation of this research is expected to help auditors choose appropriate data analysis techniques for digital auditing to ensure data accuracy and reliability.

GIS partial discharge data enhancement method based on self attention mechanism VAE-GAN

The reliability of geographic information system (GIS) partial discharge fault diagnosis is crucial for the safe and stable operation of power grids. This study proposed a data enhancement method based on a self-attention mechanism to optimize the VAE-GAN method and solve the problem of the lack of partial discharge samples and the unbalanced distribution between different defects. First, the non-subsampled contourlet transform (NSCT) algorithm was used to fuse the UHF and optical partial discharge signals to obtain a photoelectric fusion phase resolved partial discharge (PRPD) spectrum with richer information. Subsequently, the VAE structure was introduced into the traditional GAN, and the excellent hidden layer feature extraction ability of the VAE was used to guide the generation of the GAN. Then, the self-attention mechanism was integrated into the VAE-GAN, and the Wasserstein distance and gradient penalty mechanisms were used to optimize the network loss function and expand the sample sets to an equilibrium state. Finally, the KAZE and polar coordinate distribution entropy methods were used to extract the expanded samples. The eigenvectors of the sets were substituted into the long short-term memory (LSTM) network for partial discharge fault diagnosis. The experimental results show that the sample generation quality and fault diagnosis results of this method were significantly better than the traditional data enhancement method. The structure similarity index measure (SSIM) index is increased by 4.5% and 21.7%, respectively, and the average accuracy of fault diagnosis is increased by 22.9%, 9%, 5.7%, and 6.5%, respectively. The data enhancement method proposed in this study can provide a reference for GIS partial discharge fault diagnosis.

Enhancing Security and Reliability of Information Systems through Blockchain Technology: A Case Study on Impacts and Potential

In the digital age, ensuring the security and reliability of information systems is a paramount concern for organizations. This research investigates the potential of blockchain technology to enhance information system security and reliability within the dynamic landscape of Indonesian start-up companies. By employing a mixed-methods approach, combining qualitative interviews and quantitative surveys, this study explores the current state of information system security practices, assesses the challenges faced by start-ups, and evaluates perceptions regarding the adoption of blockchain technology. The qualitative findings highlight the existing security measures, challenges, and potential benefits associated with blockchain. The quantitative results provide insights into security practices and willingness to adopt blockchain. Through the integration of these findings, the study offers practical recommendations for enhancing information system security and reliability in the context of start-ups, while considering the challenges of blockchain adoption. This research contributes to the understanding of the symbiotic relationship between technology adoption and information security, offering guidance for start-ups, policymakers, and researchers.

The Mediating Effect of COVID 19 - Pandemic on the Nexus between Accounting Information Systems Reliability and E-Commerce: From the Perception of Documentary Credit Employees

The Mediating Effect of COVID 19 - Pandemic on the Nexus between Accounting Information Systems Reliability and E-Commerce: From the Perception of Documentary Credit Employees

Transforming Public Health Data Systems to Advance the Population's Health.

Policy Points Accurate and reliable data systems are critical for delivering the essential services and foundational capabilities of public health for a 21st -century public health infrastructure. Chronic underfunding, workforce shortages, and operational silos limit the effectiveness of America's public health data systems, with the country's anemic response to COVID-19 highlighting the results of long-standing infrastructure gaps. As the public health sector begins an unprecedented data modernization effort, scholars and policymakers should ensure ongoing reforms are aligned with the five components of an ideal public health data system: outcomes and equity oriented, actionable, interoperable, collaborative, and grounded in a robust public health system.

The Effect of Health Information Systems on the Performance of SP2TP Staff in the Padangsidipuan City Region in 2022

The health information system in several health centers is still being used, but due to problems in several health centers, the activity of reporting on the activities of the health center is hampered. So far, puskesmas activity reports are done manually which can interfere with the performance of data processing staff. The purpose of this study was to analyze the influence of health information systems on the performance of puskesmas staff.=0.05).This type of research is quantitative with cross sectional design. The research was conducted in 10 Community Health Centers in Padangsidimpuan City. The research population was 48 people, and all of them were used as samples. Withdrawal of samples randomly (random sampling). The data were analyzed using univariate, bivariate using chi-square and multivariate using multiple logistic regression at 95% confidence level (The results showed that the performance of Puskesmas staff in managing health information in the Padangsidimpuan City area was influenced by direct information system evidence, information system reliability, system accessibility, and information suitability. Variables that have no effect are information system assurance, information system usability, system content, and information design. The most dominant factor affecting the performance of the Puskesmas staff in the Padangsidimpuan City work area is the information system reliability variable having Exp(B)/OR = 17.836. It is suggested that the puskesmas should send data processing personnel to attend education and training on health information systems. Carry out routine maintenance on the facilities used in data processing so that they do not experience problems.

Analysis of Information System Implementation, Compensation and Reliability of Internal Control to the Financial Fraud Prevention

This research examines the implementation of information system, compensation, and internal control toward the effect on financial fraud prevention. The study conducted in one of the largest chemical distribution company in Indonesia, with the financial staff of the headquarter as the respondent. Data gathered by using total sampling, and examine by using regression analysis. Result shows that the implementation of information system and compensation can prevent financial fraud, but compensation is not. the significant of the result is, compensation works on preventing financial fraud when the information system and internal control applied. To develop stringer impact, future research expected to have wider scope of respondent and using smaller alpha score to see the different of the research and to add the qualitative perspective.

ПОСТРОЕНИЕ СОСТАВНЫХ КРИТЕРИЕВ ДЛЯ ОПТИМИЗАЦИИ ТЕРМОВ И ОБОБЩЕННОГО ПОКАЗАТЕЛЯ БАЗ ЗНАНИЙ ИНТЕЛЛЕКТУАЛЬНЫХ СИСТЕМ

The purpose of the research is to develop the concept of systematization of the knowledge base and solving problems of information cybersecurity of systems and when making search decisions based on the construction of a structured semantic content model of terms of a scientific and theoretical nature describing complex active systems. Research methods: statistical analysis, hypothesis testing methods, machine learning methods, reliability models, evaluation type models used in testing reliability indicators, parameters of behavioral systems. The result obtained: The result obtained: experimental results of the application of reliability evaluation models and consent criteria to different sizes of knowledge bases are discussed and the evaluation of the results of measuring the reliability index on these components, taking into account the failure rate, is given. The description of generalized algorithms for the functioning of evaluation and forecasting components, as well as their applicability to solving problems in the field of information security, is given. A general model of a spatial network is proposed, within the framework of which the subject carries out risk management by effectively, in one sense or another, distributing the homogeneous resource at his disposal between its nodes. For the implementation of decision-making, more optimistic criteria than the minimax criterion are recommended. Scientific novelty: consists in the development of mathematical models to maintain the logical and physical integrity of the knowledge bases of cybersystems using the desirability function and consent criteria. The basic requirements for ensuring reliable behavior and operability of an information system using oriented databases are highlighted and described. It is postulated that the best information system reliability is achieved through the use of automated monitoring systems using knowledge bases for continuous monitoring and periodic analysis of cybersystem objects with tracking the dynamics of changes in the event space.

SERVER PERFORMANCE TESTING TO ANALYZE ITS CONDITION

Performance testing of servers under load is a key stage in ensuring the reliability and optimal functionality of information systems. During the analysis of studies and publications in this area, it became obvious that performance testing is a critical step in ensuring the highest level of functionality and availability of information systems. Basic testing techniques, such as load testing, stress testing, throughput testing, allow you to measure the system's response to various types of load and predict its behavior in real use conditions. An overview of the techniques used to analyze and evaluate the performance of servers under real load conditions is carried out. The paper explores the various approaches and tools used to conduct such tests, including load testing, stress testing, and throughput testing. Evaluation of performance measurements and their analysis provide an opportunity to understand the response of the system to different types of load and to identify the limitations of its performance. The work highlights the importance and application of these techniques in today's IT environment and suggests ways to improve the effectiveness of performance testing to ensure stability and optimal server performance. The choice of technology stack for web software development has crystallized into (relatively) a few core technologies today. Accordingly, most vendors of automated tools have followed suit by providing the kind of support that their products provide. Common reasons why ineffective performance testing leads to inefficient applications have been discussed. You can summarize most of these reasons in one statement: Development and performance testing are still not given enough importance in the software development life cycle.

Influence of Docker technology on microservices architecture

In today's information society, where market dynamics and user requirements are constantly growing, software developers face the challenges of rapid development, maintaining high scalability, and ensuring the reliability of information systems. In this context, microservices architecture has become a popular approach that allows you to decompose software into small functional blocks called microservices. Recently, Docker has become one of the most popular technologies for containerizing applications. Docker provides the ability to isolate applications and their dependencies in containers that can be easily moved and deployed on a variety of environments, including local servers, cloud infrastructures, and container orchestrators such as Kubernetes. This article is an in-depth exploration of the impact of using Docker on the architectural aspects of microservice applications. It addresses the issues of scalability, reliability, performance, and provisioning in the context of using Docker in microservices deployment. The article also compares Docker with other containerization approaches and analyzes its impact on architectural decisions.

Development of a mathematical model of reliable structures of information-control systems

A mathematical model of the information system (IS) for monitoring the state of objects that may be exposed to extreme influences has been built. The system consists of n devices that work independently of each other. To construct the specified information system, which has the minimum permissible reliability of event recognition, a class of structures of the type «k with n» is considered. Formulas for determining the probabilistic characteristics of n parallel reserved sensors for structures of the «k with n» type were derived; the probability of these events was calculated; and plots of their distribution were constructed. The peculiarity of the derived formulas is that they can be implemented on logical elements with which one can build a physical decision support device. The number of sensors and their corresponding probabilities of correct detection of fire at the given majority values of fire probability were also determined; the cost indicators of the information system were defined. A method for improving the reliability of IS has been developed, based on the use of the optimal number of information sensor. The ratio of finding probabilistic states of IS for structures of the «k with n» type was obtained. Algorithms for calculating the probabilities of IS states, as well as an algorithm for determining the number of information sensors and the corresponding probabilities of fire detection, have been developed. The feature of these algorithms is that they make it possible to determine the optimal number of information sensors. An estimate of the effectiveness of IS indicators of the considered types of structures was found: the probability of correct detection, the probability of non-detection, and false alarm. The reported results can be used to select the optimal structure for recognizing dangerous flight situations: choosing the number of sensors corresponding to the high probability of correct detection and the minimum probabilities of non-detection and false alarms, taking into consideration the cost of sensors.

PN-BBN: A Petri Net-Based Bayesian Network for Anomalous Behavior Detection

Business process anomalous behavior detection reveals unexpected cases from event logs to ensure the trusted operation of information systems. Anomaly behavior is mainly identified through a log-to-model alignment analysis or numerical outlier detection. However, both approaches ignore the influence of probability distributions or activity relationships in process activities. Based on this concern, this paper incorporates the behavioral relationships characterized by the process model and the joint probability distribution of nodes related to suspected anomalous behaviors. Moreover, a Petri Net-Based Bayesian Network (PN-BBN) is proposed to detect anomalous behaviors based on the probabilistic inference of behavioral contexts. First, the process model is filtered based on the process structure of the process activities to identify the key regions where the suspected anomalous behaviors are located. Then, the behavioral profile of the activity is used to prune it to position the ineluctable paths that trigger these activities. Further, the model is used as the architecture for parameter learning to construct the PN-BBN. Based on this, anomaly scores are inferred based on the joint probabilities of activities related to suspected anomalous behaviors for anomaly detection under the constraints of control flow and probability distributions. Finally, PN-BBN is implemented based on the open-source frameworks PM4PY and PMGPY and evaluated from multiple metrics with synthetic and real process data. The experimental results demonstrate that PN-BBN effectively identifies anomalous process behaviors and improves the reliability of information systems.

Vector formation features of modern network attacks

The problems that arise when setting tasks for determining the vector of a network attack in a corporate information network are considered. The varieties of various techniques that simplify the construction of a network attack vector used in the analysis of the reliability of information systems are presented and characterized. The suitability for various procedures for determining vector parameters is considered. When constructing a network attack vector, the specificity of the manifestation of the time parameter was determined as a characteristic indicating a more effective way of spreading compromise. The formation of the vector is considered taking into account the specifics of the networks multilevel organization. The specifics of the simplified vector calculation model including procedures focused on various approaches are determined.

A Review of Contemporary Governance Challenges in Oman: Can Blockchain Technology Be Part of Sustainable Solutions?

Oman is considering adopting the latest e-governance technology, including Blockchain-based. While much research was conducted into the benefits and risks of Blockchain-based in information systems and finance fields, fewer researchers investigated the opportunities and risks associated with adopting Blockchain-based frameworks for governance and public administration, especially in highly bureaucratic, centralized rentier states, such as Oman. As the first phase of an exploratory sequential mixed-methods study, our purpose was to identify key governance problems in contemporary Oman and analyze each problem against evidence drawn from the relevant parts of the Blockchain-based and e-governance literature to evaluate the potential utility, risks and limitations associated with adopting block-chained e-governance solutions in the Sultanate. Our initial results indicate that there are advantages for states, such as Oman, from being an early mover into block-chained e-governance systems, including greater cost efficiency, drastically improved accuracy and reliability of information systems, transparency and accountability of public services, and an upgrade in the overall level of legitimacy and public trust in the institutions of governance. However, more research into the risks related to reconciling block-chained systems with the dynamics of labor, tax reforms and centralized authority in a rentier social contract is required.