State Information Resources Research Articles

Method of intruder detection and identification in information & communication systems

The providing of state information resources security is inextricably connected with information security intruder's activity in information & communication systems where restricted data is circulating. The modern intruder detection systems, based on heuristic principle of information security violation detection, have a disadvantage because these are basically oriented on mathematical models which require much time to prepare statistic data. Mathematical models based on expert approach are more effective in this way. The method proposed in paper allows to solve the problem of intruder detection and identifying in information & communication systems and networks, which are weakly-formalized fuzzy environment. In the method elements of fuzzy logic are used to the previous decision of the violation & the intruder identification and precise basis of conventional logic that provides clarifying identification. The method consists of such stages: selection of the method for determining the importance of factors, the formation of categories sets of intruder and parameters, forming standards of fuzzy parameters, forming the set of heuristic rules, forming connections of intruder category with parameters, phasing of fuzzy parameters and definition clear parameters, processing and forming of parameters corteges, results formation. The method's work is organized in three phases: preparation, work with fuzzy parameters and work with clear parameters. On the basis of this method can be synthesized heuristic type intruder detection & identification system with high performance in fuzzy terms by the use of expert methods.

Diophantus method of determining of freguency damages as a result of implementations information security threat

Implementation of information security management systems based on risk assessments is a promising approach of ensuring the confidentiality, integrity and availability of state information resources. Risk assessment is expressed as a combination of frequency of damage occurrence as a result of the threat and its absolute value. Therefore the choice of the method for determining of its assessment leads to the choice of the method of determining the frequency of damage occurrence. Using traditional approaches to solving this problem is limited to the complexity of the statistics accumulation of damage. To overcome this limitation developed a method of determining the relative frequency of a linear inhomogeneous Diophantine equation in positive integers. It allows through adjusting acceptable values the amount of damage and acceptable risk values to get guaranteed solutions as model risk assessments. Making a decision on the necessity of their treatment in the management of information systems security is possible basing on received results.

Analysis of threats to public information resources

Based on the analysis of basic legal acts and other sources in article contains a list of possible threatsto public information resources and proposed classification , due to the influence on the properties ofthe information in accordance with the direction (confidentiality, integrity and availability ). The generalsystem of protection of the state information resources is developed, definition of threat to thestate information resources, definition of threat to the state information resources is offered, need ofspecification of classes definition of the automated systems and standard functional profiles of securityis noted.

THE ANALYSIS OF NORMATIVELY–LEGAL PROVIDING OF DEFENCE OF STATE INFORMATIVE RESOURCES IN INFORMATIОN–TELECOMMUNICATION SYSTEMS

In the article the analysis of the system of the normatively-legal providing of defence of state informative resources is conducted in the informative, telecommunication and information-telecommunication systems. Basic conceptual documents, which influence any character on methodology of construction of estimation of security of state informative resources, the complex system for protection of information, are considered. On the basis of the brought analysis over the general system of the basic normatively-legal providing of defence of state informative resources is worked out. Determination of the normatively-legal providing of defence of state informative resources is offered, proceeding the generally accepted determination of the normatively-legal providing and concept of state informative resources, which, in its turn, shows by itself a combination of normative-legal acts, which determine the order of creation, legal status and functioning of the protected informative, telecommunication, information-telecommunication systems, regulate the order of receipt, transformation and uses of information and informative resources, which are property of the state. Noted basic directions concerning further improvement of the existent normatively-legal providing of defence of state informative resources in the information, telecommunication and information-telecommunication systems. |Indicate presence of contradiction between present state informative resources which grow constantly, and uncertain terminology (absence of united standard), necessity of making alteration to the legislative base, absence of model of violator and effective methodology of estimation of degree of security of state informative resources, absence of certain threats to the state informative resources, that, in turn, stipulates actuality of further realization of researches in this direction

Security issues of state information resources in crisis situations

The security problems of the state information resources in various crisis situations have been discussed in this article. It is known, that from the e-government’s information security point of view, the crisis situation is one of the major risk factors. In this paper, international standards in this field, experiences of developed countries, and the results obtained by leading research centers has been reviewed. The goal of this article is to attract the attention of government agencies to the importance of this issue.

THE CONCEPTUAL ANALYSIS OF VULNERABILITY OF STATE INFORMATIVE RESOURCES IS CONDUCTED

The conceptual analysis of vulnerability of state informative resources is conducted in the article, the necessity of permanent clarification of both internal and external threats is shown. The analysis of concept "resources" is conducted and in accordance with normatively-legal acts realization of public policy is carried out in relation to defence of state informative resources in the information-telecommunication systems. The generalized mechanism over of attack in relation to state informative resources is shown. It is shown that threat to the state informative resourcest is possible to compare to the threats to the informative resources, which are examined as potentially possible cases of anthropogenic, technogenic or natural (elemental) character, which can entail undesirable influence on the information-telecommunication system, and also on information which is kept in it. On the basis of analysis of different approaches the basic types of threats are distinguished to the state informative resources, the general system over of classification of threats is brought to the state informative resources with opening of her elements. It is shown that the effective complex system of defence of state informative resources must certainly take into account all list of circumstances as a result of which potential dangers and threats of information can be effective with the possibility of free access to information of organs of state administration.

System analysis and evaluation of the level of protection of state information resources from social engineering attacks

In the article presented block diagram ofsystem analysis and evaluation of the protection level of state information resources from social engineering attacks based on logical-linguistic approach and methodology for the synthesis of systems analysis and assessment of the level of protection of state information resources from attack by the class. On the basis of the proposed solutions have developed an algorithm and a tool, which, on the one hand, allows for an objective assessment of the level of preparedness of a particular person from the staff to social engineering attacks, and the other - to assess the overall level of security of government information resources, based on the responses of users. The effectiveness of the developed product has been proved in the experiment, the essence of which is disclosed in the paper. The software product implements a new approach to certification of personnel involved in the maintenance of state information resources, particularly related to their safety.

Methodology for the synthesis of systems security level evaluation of public information resources from social engineering attacks

In the article presents synthesis methodology for the systems analysis and assessment of the protection level of state information resources socio-technical attacks which nowadays constitute one of the biggest threats and significantly affect the overall level of information security. A methodology is a flexible tool and makes it possible to assess the extent of preparedness of staff to socio-technical attacks on the different characteristics of management, technical base companies. The advantages of the proposed methodology is the use of this parameter as a quality expert to improve the quality of expert evaluation of threats, and use logical-linguistic approach and mathematical fuzzy logic, which makes it possible to formalize the risk assessment.

Features of cryptographic protection of state information resources

In this paper the basic principles of abstract model of intruder development in state information and communication systems are given. The main principles of different cryptosystems for state information resources protection are showed. Besides the main problems of keys data management in the process of state information resources protection are analyzed.