Monitoring of information security system elements in the metallurgical enterprises

MATEC Web of Conferences ◽

10.1051/matecconf/201818301007 ◽

2018 ◽

Vol 183 ◽

pp. 01007

Author(s):

Justyna Żywiołek

Keyword(s):

Information Security ◽

Information Management ◽

Security System ◽

Information Flows ◽

Process Information ◽

Security Incidents ◽

Monitoring Information

The article concerns the monitoring of elements of the information security system in an enterprise. The purpose of the research was to determine the reasons for monitoring information flows in the surveyed enterprise. The identification of information flows facilitates information management, empowering individuals to process information and preventing information security incidents. The implementation of information management methods facilitates monitoring the information security status.

Download Full-text

Basic q-analysis of MCQA for Information Security System

European Journal of Electrical Engineering and Computer Science ◽

10.24018/ejece.2019.3.5.131 ◽

2019 ◽

Vol 3 (5) ◽

Author(s):

Oleh Kozlenko

Keyword(s):

Information Systems ◽

Structural Analysis ◽

Information Security ◽

System Analysis ◽

Security System ◽

Security Measures ◽

Security Systems ◽

Basic Principles ◽

Application Methods ◽

Security Incidents

Article explores application methods for systems structural analysis to use in study of security in information systems, which is based on variants of general attack scenarios, features of cybersecurity culture, q-analysis, which is part of MCQA . General security system analysis usually is based on different factors, which include technical means, human-related mistakes in different ways and respond to security incidents. Q-analysis presents the basic principles of constructing model of information security systems elements connectivity on the example of two sets: set of threats and sets of security measures for information security and calculated numerical values. Elements of the two sets of are interconnected and form the basis of a system for ensuring their security. These calculations can be used to further determine overall formal assessment of security of the organization.

Download Full-text

One of the main functions of an information security system is the identification of any access subject to be able to investigate information security incidents. During executing procedures of scanning and vulnerability exploitation, qualified adversaries

SPIIRAS Proceedings ◽

10.15622/sp.61.6 ◽

2018 ◽

Vol 6 (61) ◽

pp. 147-171 ◽

Cited By ~ 4

Author(s):

Andrey Iskhakov ◽

Anastasia Iskhakova ◽

Roman Meshcheryakov ◽

Reda Bendraou ◽

Olga Melekhova

Keyword(s):

Information Security ◽

Data Entry ◽

Main Idea ◽

Security System ◽

Practical Implementation ◽

Data Layout ◽

Statistical Parameters ◽

Security Incident ◽

Universal Instrument ◽

Security Incidents

One of the main functions of an information security system is the identification of any access subject to be able to investigate information security incidents. During executing procedures of scanning and vulnerability exploitation, qualified adversaries regularly change identifying features. Such operations can not only obfuscate logging the data in subsystems, thus, complicating the restoring of events chronology for an information security expert but also call into question the irrefutability of the evidence of participation of particular adversary to particular illegal operations. In the paper analyses of application of modern approaches of adversary identification in web resources, which does not require authentification of main part of users, is given (fingerprinting, analysis of behavioral features). Along with widely used in web analytics “thermal maps”, user adapted profile and computer model of dynamics of “user-mouse” system, authors offer to identify the subjects of information security incident in readily available informational resources of the Internet. The main idea of the prospective approach consists of the following: when a thermal map is built, not only the density of data layout should be considered but also statistical parameters should be defined by an expert (the distance of intensity gradient, distance overlap, etc.). The authors also offer to consider the dynamics of user operations (e.g. calculation of the average duration of data entry into interactive elements). A description of each step of an appropriate technique and also information on its practical implementation are given. Robustness of the given approach is confirmed by a practical experiment. The offered technique is not a universal instrument of adversary identification . Only manual targeted attacks are considered, the cURL tools etc. used by adversaries are not taken into account. Therefore, it is recommended to use this technique exclusively in addition to working protective systems (WAF, IPS, IDS).

Download Full-text

INFORMATION SECURITY SYSTEM ON THE SITE OF THE US AGRICULTURE MINISTRY

Economy, labor, management in agriculture ◽

10.33938/1811-26 ◽

2018 ◽

pp. 26-31

Author(s):

A.A. Lichman

Keyword(s):

Information Security ◽

Security System ◽

The Us

Download Full-text

Information management methods and successful business

10.33983/2075-1826-2020-3-34-41 ◽

2020 ◽

pp. 34-41

Author(s):

V.A. Morozov

Keyword(s):

Information Management ◽

Management Information Systems ◽

Information Management System ◽

Information Flows ◽

Management Information ◽

Use Of Resources ◽

Effective Operation ◽

Modern Business ◽

Successful Business ◽

Structural Levels

The article deals with the methodological understanding of management information systems and their use for modern business. The article considers information flows moving through various structural levels of decision-making in the organization, as well as high-quality software for complex systems. We have studied the information management system (MIS), which includes the process of collecting, processing, storing, retrieving and transmitting relevant data for effective operation management. It is determined that the meaning of information management in organizations is to help solve the problems of institutional growth, development and productivity through the described methods of making better decisions related to the use of resources in a dynamic and changing environment.

Download Full-text

IRISK METHOD FOR SECURITY ESTIMATION OF THE SIMULATION POLYGON FOR THE PROTECTION OF CRITICAL INFORMATION RESOURCES

Visnyk Universytetu “Ukraina” ◽

10.36994/2707-4110-2019-2-23-27 ◽

2019 ◽

Author(s):

Bogdan Korniyenko ◽

Lilia Galata

Keyword(s):

Risk Assessment ◽

Information System ◽

Information Security ◽

Risk Analysis ◽

Information Resources ◽

Security System ◽

Assessment System ◽

Automated System ◽

Information Risk ◽

Critical Information

In this article, the research of information system protection by ana ly zing the risks for identifying threats for information security is considered. Information risk analysis is periodically conducted to identify information security threats and test the information security system. Currently, various information risk analysis techni ques exist and are being used, the main difference being the quantitative or qualitative risk assessment scales. On the basis of the existing methods of testing and evaluation of the vulnerabilities for the automated system, their advantages and disadvantages, for the possibility of further comparison of the spent resources and the security of the information system, the conclusion was made regarding the deter mi nation of the optimal method of testing the information security system in the context of the simulated polygon for the protection of critical information resources. A simula tion ground for the protection of critical information resources based on GNS3 application software has been developed and implemented. Among the considered methods of testing and risk analysis of the automated system, the optimal iRisk methodology was identified for testing the information security system on the basis of the simulated. The quantitative method Risk for security estimation is considered. Generalized iRisk risk assessment is calculated taking into account the following parameters: Vulnerabili ty — vulnerability assessment, Threat — threat assessment, Control — assessment of security measures. The methodology includes a common CVSS vul nerability assessment system, which allows you to use constantly relevant coefficients for the calculation of vulnerabilities, as well as have a list of all major vulnerabilities that are associated with all modern software products that can be used in the automated system. The known software and hardware vulnerabilities of the ground are considered and the resistance of the built network to specific threats by the iRisk method is calculated.

Download Full-text

Comprehensive methods to obtain and process information flows in centralized heat supply systems

IOP Conference Series Materials Science and Engineering ◽

10.1088/1757-899x/972/1/012074 ◽

2020 ◽

Vol 972 ◽

pp. 012074

Author(s):

I K Sagynganova ◽

A I Kvasov ◽

A A Kalinin

Keyword(s):

Heat Supply ◽

Information Flows ◽

Process Information ◽

Heat Supply Systems ◽

Supply Systems

Download Full-text

Information management in the Intelligence Branch of Britain’s War Office, 1873-1914: ‘All information flows toward it, or returns to it, in a form worked up into shape’

Open Information Science ◽

10.1515/opis-2020-0008 ◽

2020 ◽

Vol 4 (1) ◽

pp. 91-105

Author(s):

Alistair Black

Keyword(s):

Information Management ◽

First World War ◽

Information Flows ◽

British Army ◽

World War ◽

Rational System ◽

Strategic Intelligence ◽

The First World War ◽

National Archives ◽

First World

AbstractIntelligence has always been an aspect of organized warfare. It was not until 1873, however, that the British Army recognised this formally by establishing an explicitly named unit, under the auspices of the War Office, dedicated to the development of strategic intelligence: the Intelligence Branch. Based on documents held in the National Archives (UK), this study explores the ways in which the work of the Intelligence Branch developed before the First World War in response to imperial and foreign military challenges and the growing awareness of the importance of strategic intelligence and planning. The Branch’s steam-age origins should not disguise the intensity and sophistication of the information management that underpinned its operations. Attention is paid to the type of information management methods that were employed. The existence of a rational system of information management is revealed, consisting of planned phases for the collection, processing, storage, organisation, analysis and dissemination of information.

Download Full-text

Cognitive Information Systems for Protection of Museum Complexes

International Journal of Engineering & Technology ◽

10.14419/ijet.v7i4.38.24326 ◽

2018 ◽

Vol 7 (4.38) ◽

pp. 82

Author(s):

Aleksey Valentinovich Bogdanov ◽

Igor Gennadievich Malygin

Keyword(s):

Artificial Intelligence ◽

Information Systems ◽

Information Security ◽

Security System ◽

Structural Scheme ◽

Cognitive Information ◽

Technological Platform ◽

Network Technologies ◽

Cognitive Information Systems ◽

Stratified Model

The paper considers the conceptual provisions of building a promising cognitive information security system of the museum complex on a cyber-physical basis. The stratified model of cognitive information security system of the museum complex was presented. It was shown that the key technological platform for the security of the museum complex is information and network technologies integrated (converged) with the technologies of industrial artificial intelligence. The generalized structural scheme of the cognitive cycle of the information security system of the museum complex was considered. The characteristic of the basic processes realized in a cognitive contour was given.

Download Full-text

Improving Forensic Triage Efficiency through Cyber Threat Intelligence

Future Internet ◽

10.3390/fi11070162 ◽

2019 ◽

Vol 11 (7) ◽

pp. 162 ◽

Cited By ~ 2

Author(s):

Nikolaos Serketzis ◽

Vasilios Katos ◽

Christos Ilioudis ◽

Dimitrios Baltatzis ◽

Georgios Pangalos

Keyword(s):

Information Security ◽

Digital Forensics ◽

Incident Response ◽

Security Controls ◽

Digital Forensic ◽

Threat Intelligence ◽

Cyber Threat ◽

Series Of Experiments ◽

Cyber Threat Intelligence ◽

Security Incidents

The complication of information technology and the proliferation of heterogeneous security devices that produce increased volumes of data coupled with the ever-changing threat landscape challenges have an adverse impact on the efficiency of information security controls and digital forensics, as well as incident response approaches. Cyber Threat Intelligence (CTI)and forensic preparedness are the two parts of the so-called managed security services that defendants can employ to repel, mitigate or investigate security incidents. Despite their success, there is no known effort that has combined these two approaches to enhance Digital Forensic Readiness (DFR) and thus decrease the time and cost of incident response and investigation. This paper builds upon and extends a DFR model that utilises actionable CTI to improve the maturity levels of DFR. The effectiveness and applicability of this model are evaluated through a series of experiments that employ malware-related network data simulating real-world attack scenarios. To this extent, the model manages to identify the root causes of information security incidents with high accuracy (90.73%), precision (96.17%) and recall (93.61%), while managing to decrease significantly the volume of data digital forensic investigators need to examine. The contribution of this paper is twofold. First, it indicates that CTI can be employed by digital forensics processes. Second, it demonstrates and evaluates an efficient mechanism that enhances operational DFR.

Download Full-text