Bryansk, Bryansk, Russian Federation
Bryansk, Bryansk, Russian Federation
Bryansk, Bryansk, Russian Federation
This paper reports the automation of an effi-ciency assessment process for complex systems of information security by means of an automated system formation the basic functions of which are: carrying out of information security (IS) audit, model formation of IS threats, recommendations for the formation of information security systems, a set of organization-regulatory documentation. For the solution of a problem in the efficiency assessment of confidential information protection there is developed a simulator and a universal criterion taking into account a probability of the realization and combating threats and allowing the estimation of the complex system efficiency for information protection in dynamics of processes occurred. The approach offered to the assessment of an information security level of an information object allows reducing considerably material and time costs for carrying out information security audit and also increasing the design solutions quality at the creation and introduction of complex system of information protection.
information security, assessment, IS audit, threats model, automated system, informatization object, security, device of Petri Nets
1. Rytov, М.Yu. User authorization based on complex application of methods for persons identification / М.Yu.Rytov, V.А.Shkaberin, D.А.Lysov, А.P.Gorlov // Information & Security. - 2016. - №1. - pp. 106-109.
2. Averchenkov, V.I. Information organization protection/ V.I. Averchenkov, М.Yu.Rytov. - Bryansk: BSTU, 2010. - pp. 184. - (Series “Organization and Techniques for Information Protection”).
3. Averchenkov, V.I. Information Security Audit/ V.I.Averchenkov. - Bryansk: BSTU, 2010. - pp. 210. - (Series “Organization and Techniques for Information Protection”).
4. Averchenkov, V.I. Computer-aided design of complex systems for information protection: monograph/ V.I.Averchenkov, М.Yu.Rytov. - Bryansk: BSTU, 2012. - pp. 147. - (Series “Organization and Techniques for Information Protection”).
5. Averchenkov, V.I. System development for information engineering protection / V.I.Averchenkov, М.Yu.Rytov, А.V.Kuvyklin, Т.R.Gainulin. - Bry-ansk: BSTU, 2008. - pp. 187. - (Series “Organization and Techniques for Information Protection”).
6. Hopkroft, J. Introduction to the Theory of Automatic Units, Languages and Computations/ J.Hopkroft, R.Motvani, J.Ulman. - М.: Williams, 2002. - pp. 528.
7. Peterson, J. Theory of Petri Nets and Systems Modeling/ J.Peterson. - М.: World, 1984. - pp. 264.
8. Pentus, А. Е. Mathematical Theory of formal languages/ А.Е.Pentus. - М.: Internet-University of Information Techniques: BINOM. Knowledge Laboratory, 2006. - pp. 248.
