scholarly journals Analytical model for calculating the effectiveness of the modified access control subsystem of the information security system against unauthorized access in automated systems

2021 ◽  
Vol 1902 (1) ◽  
pp. 012100
Author(s):  
A V Batskih ◽  
O M Bulgakov ◽  
I G Drovnikova ◽  
A V Krisilov
Keyword(s):  
Information Security ◽  
Access Control ◽  
Analytical Model ◽  
Security System ◽  
Automated Systems ◽  
Unauthorized Access ◽  
Control Subsystem

scholarly journals Methods of Estimating Reliability of Information Security Systems which Protect from Unauthorized Access in Automated Systems

2019 ◽  
Vol 18 (6) ◽  
pp. 1301-1332 ◽  
Author(s):  
Oksana Bokova ◽  
Irina Drovnikova ◽  
Andrei Etepnev ◽  
Evgeniy Rogozin ◽  
Victor Khvostov
Keyword(s):  
Information Security ◽  
Structural Complexity ◽  
Systems Design ◽  
Software Systems ◽  
Automated Systems ◽  
Security Systems ◽  
Unauthorized Access ◽  
Reliability Indicators ◽  
Actual Design ◽  
Guidance Documents

Modern methods of protecting information  from unauthorized access in automated systems are based on the use of specialized information security systems from unauthorized access. Security systems are necessarily included in the form of additional software systems in the software as in a secure execution. Information security systems from unauthorized access can be developed not only in a process of automated systems design, but also complement the system-wide software of functioning systems. The use of the information security systems from unauthorized access can reduce a overall reliability of the automated systems, if they contain errors that are not detected during debugging. The reliability of the information security systems affects effectiveness of information security (confidentiality, integrity and availability). Guidelines of the Federal Service for Technical and Export Control (FSTEC) of Russia are a methodological basis for the formation of the information security systems’ image both in the process of development and in the process of modernization of the automated systems. The guidance documents of FSTEC of Russia do not contain methodological approaches to assessing the reliability of these program systems. In this regard, the actual design of techniques of estimating reliability of the information security systems from unauthorized access in automated systems in a secure execution. The structural complexity of the information security systems from unauthorized access and large number of functions performed necessitates the use of three reliability indicators that characterize the system in solving problems of confidentiality, integrity and availability of information. To develop the technique, the known methods of evaluating the reliability of complex systems are used, which do not allow their decomposition into serial and parallel connection. The developed methods were tested in assessing the reliability of the information security systems from unauthorized access with typical indicators of initial characteristics. The results of calculations and prospects of using the developed methods are presented in the paper.

scholarly journals ANALYSIS ON FUNDAMENTAL ALGEBRAIC CONCEPTS AND INFORMATION SECURITY SYSTEM

2021 ◽  
Author(s):  
S M Nazmuz Sakib
Keyword(s):  
Information Technology ◽  
Information Security ◽  
Research Study ◽  
Security System ◽  
Unauthorized Access ◽  
System P ◽  
Cryptographic Algorithms ◽  
Main Target ◽  
Algebraic Concepts

Cryptography plays a key role to protect the data from unauthorized access. Nowadays various cryptographic algorithms are used. It is not meant of information technology to secure proposed work main target to achieve these tasks and goals. In research study related to any field of science is based on some basic definitions and understandings of some previous results. Therefore we introduce the basic definitions of Algebra and information security system in this chapter which is important to understand the dissertation of the coming chapters. This chapter is further divided into sections which explain the various concepts comprehensively.

scholarly journals The construction of a multi-level intelligent information security system for automated systems of railway transport

2014 ◽  
Vol 7 (30) ◽  
pp. 7
Author(s):  
Igor Vitalievich Kotenko ◽  
Igor Borisovich Saenko ◽  
Andrey Vladimirovich Chernov ◽  
Maria Alexandrovna Butakova
Keyword(s):  
Information Security ◽  
Security System ◽  
Automated Systems ◽  
Railway Transport ◽  
Multi Level ◽  
Intelligent Information

scholarly journals A Single-Label Model to Ensure Data Consistency in Information Security

2021 ◽  
Vol 2021 ◽  
pp. 1-8
Author(s):  
Cigdem Bakir
Keyword(s):  
Experimental Study ◽  
Big Data ◽  
Information Security ◽  
Access Control ◽  
Real Data ◽  
Data Integrity ◽  
Data Consistency ◽  
Flexible Structure ◽  
Data Confidentiality ◽  
Unauthorized Access

Information security is defined as preventing actions such as unauthorized access and use, modification, and removal of information. It consists of certain basic elements of confidentiality, integrity, and accessibility. There are numerous studies in published literature which have been conducted to ensure information security. However, there is no previous study that covers these three basic elements together. In the present study, a model that includes these three key elements of information security together for big data was proposed and implemented. With this proposed “single-label model,” a more practical and flexible structure was established for all operations (read, write, update, and delete) performed on a database on real data. In previous studies conducted with a label model, separate labels were used for read-only or write-only operations, and there was no structure that could ensure both confidentiality and integrity at the same time. The present study, however, shows what type of authorization and access control could be established between which processes and which users by looking at a single label for all the operations performed on the data. Thus, in contrast to the previous studies seen in published literature, data confidentiality, data integrity, and data consistency were all guaranteed for all transactions. The results of the proposed single-label model were also shown comparatively by conducting an experimental study of its application. The results obtained are promising for further studies.

scholarly journals Methods for assessing the efficiency of access control subsystems at informatization facilities of internal affairs bodies and aspects of their improvement

2021 ◽  
Vol 48 (2) ◽  
pp. 29-39
Author(s):  
A. V. Batskikh ◽  
V. V. Konobeevskikh ◽  
S. V. Efimov
Keyword(s):  
Information Security ◽  
Access Control ◽  
Information And Communication Technologies ◽  
System Analysis ◽  
Security Level ◽  
Automated Systems ◽  
Security Systems ◽  
Advantages And Disadvantages ◽  
Industry Standards ◽  
Internal Affairs

Objective. The purpose of the article is to analyse the existing methodology used to assess the efficiency of automated information security systems by studying open literature sources, international and industry standards of the Russian Federation on information security of automated systems, guidelines and orders of the Federal Service for Technical and Expert Control of Russia, as well as departmental orders, instructions and regulations on information security at informatization facilities of internal affairs bodies. The analysis results in identifying the advantages and disadvantages of the specified methodology, as well as the possibilities of its use when conducting a quantitative assessment of the efficiency of access control subsystems of information security systems at the informatization facilities of internal affairs bodies. Methods. To achieve this goal, the method for system analysis of approaches used to assess the efficiency of information security tools and systems has been applied. Results. The paper presents results of analysing the main approaches used to assess the efficiency of tools and systems for information security of automated systems. The paper determines the relationship between the efficiency indicator of access control subsystems of information security systems and the main disadvantage of their use in protected automated systems of internal affairs bodies. The paper substantiates main directions of improving the existing methodology, proposes methods and indicators for quantifying the efficiency of access control subsystems (including those modified on the basis of using new information and communication technologies) of information security systems in protected automated systems of internal affairs bodies. Conclusion. The results obtained can be used to quantify the security level of existing automated systems and those being developed at informatization facilities of internal affairs bodies.

Sign in / Sign up

Export Citation Format

Share Document