Corrigendum to: Y. V. Kosolapov, “On the Detection of Exploitation of Vulnerabilities Leading to the Execution of a Malicious Code”, Modeling and analysis of information systems, vol. 27, no. 2, pp. 138–151, 2020. DOI: https://doi.org/10.18255/1818-1015-2020-2-138-151

Yury V. Kosolapov

doi:10.18255/1818-1015-2021-3-314-316

Corrigendum to: Y. V. Kosolapov, “On the Detection of Exploitation of Vulnerabilities Leading to the Execution of a Malicious Code”, Modeling and analysis of information systems, vol. 27, no. 2, pp. 138–151, 2020. DOI: https://doi.org/10.18255/1818-1015-2020-2-138-151

Modeling and Analysis of Information Systems ◽

10.18255/1818-1015-2021-3-314-316 ◽

2021 ◽

Vol 28 (3) ◽

pp. 314-316

Author(s):

Yury V. Kosolapov

Keyword(s):

Information Systems ◽

Malicious Code ◽

Correct Description ◽

Modeling And Analysis

In the article by Y. V. Kosolapov “On the Detection of Exploitation of Vulnerabilities Leading to the Execution of a Malicious Code” (Modeling and analysis of information systems, vol. 27, no. 2, pp. 138–151, 2020; https://doi.org/10.18255/1818-1015-2020-2-138-151) an inaccurate description of the algorithm CheckTrace is committed. The correct description of the algorithm CheckTrace is given below. The author apologises for the inconvenience.

Download Full-text

A Framework for Architecture-Oriented Modeling and Analysis of Information Systems Performance

2007 International Conference on Wireless Communications, Networking and Mobile Computing ◽

10.1109/wicom.2007.1498 ◽

2007 ◽

Cited By ~ 1

Author(s):

Hui Du ◽

Renchu Gan ◽

Kecheng Liu ◽

Zhenji Zhang

Keyword(s):

Information Systems ◽

Modeling And Analysis

Download Full-text

Modeling and analysis of the behavior of information systems

IEEE Transactions on Software Engineering ◽

10.1109/32.9049 ◽

1988 ◽

Vol 14 (11) ◽

pp. 1610-1620 ◽

Cited By ~ 17

Author(s):

G. Lausen

Keyword(s):

Information Systems ◽

Modeling And Analysis

Download Full-text

Method for Detecting Core Malware Sites Related to Biomedical Information Systems

Computational and Mathematical Methods in Medicine ◽

10.1155/2015/756842 ◽

2015 ◽

Vol 2015 ◽

pp. 1-8 ◽

Cited By ~ 1

Author(s):

Dohoon Kim ◽

Donghee Choi ◽

Jonghyun Jin

Keyword(s):

Information Systems ◽

Risk Index ◽

Attack Detection ◽

Malicious Code ◽

Security Policies ◽

Centrality Measures ◽

Advanced Persistent Threat ◽

The Core ◽

Average Improvement

Most advanced persistent threat attacks target web users through malicious code within landing (exploit) or distribution sites. There is an urgent need to block the affected websites. Attacks on biomedical information systems are no exception to this issue. In this paper, we present a method for locating malicious websites that attempt to attack biomedical information systems. Our approach uses malicious code crawling to rearrange websites in the order of their risk index by analyzing the centrality between malware sites and proactively eliminates the root of these sites by finding the core-hub node, thereby reducing unnecessary security policies. In particular, we dynamically estimate the risk index of the affected websites by analyzing various centrality measures and converting them into a single quantified vector. On average, the proactive elimination of core malicious websites results in an average improvement in zero-day attack detection of more than 20%.

Download Full-text

Responding to Ongoing Change

International Journal of Information System Modeling and Design ◽

10.4018/ijismd.2014100103 ◽

2014 ◽

Vol 5 (4) ◽

pp. 48-70 ◽

Cited By ~ 2

Author(s):

Alexei Lapouchnian ◽

Eric Yu ◽

Stephanie Deng

Keyword(s):

Information Systems ◽

Business Intelligence ◽

Continuous Process ◽

Design And Development ◽

Modeling And Analysis ◽

Evolving Systems ◽

Business Environments ◽

Is Development ◽

Comprehensive Modeling ◽

Organizational Needs

As modern organizations increasingly need to operate in uncertain and fast-paced business environments, pressures increase on information systems (IS) to support these enterprises in a dynamically changing world. Consequently, systems need to deliver results given incompletely known and constantly changing requirements and contexts and other uncertainties. Their development is no longer a progression from clear and stable requirements to solutions meeting them. Rather, it is a continuous process involving multiple iterations of analysis and exploration, design, and development taking into consideration changing organizational needs, available resources, and feedback from previous iterations. Since current modeling and analysis notations generally assume stable and predictable settings for IS development, this paper explores the difficulties in applying several such techniques for modeling continuously evolving systems in uncertain and rapidly changing socio-technical domains and identifies requirements for a comprehensive modeling notation suitable for these environments. Business intelligence capability implementation in enterprises is used as an illustration.

Download Full-text

IMPLEMENTATION OF THE PROJECT OF MODERNIZATION OF THE SOFTWARE AND TECHNICAL COMPLEX OF EPIDEMIC RISK MODELING "NETEPIDEMIC"

ИНФОРМАЦИЯ И БЕЗОПАСНОСТЬ ◽

10.36622/vstu.2020.23.4.010 ◽

2020 ◽

pp. 567-584

Author(s):

Евгений Романович Нежельский ◽

Андрей Константинович Журавлев ◽

Виктория Викторовна Исламгулова ◽

Константин Александрович Разинкин ◽

Игорь Леонидович Батаронов ◽

...

Keyword(s):

Information Systems ◽

Social Engineering ◽

Malicious Code ◽

Risk Modeling ◽

Software Market ◽

Risk Monitoring ◽

Visualization Tools ◽

Software And Hardware ◽

Technical Complex ◽

Epidemic Risk

С каждым годом происходит рост атак злоумышленников на информационные системы с применением как вредоносного кода, так и методов социальной инженерии и вредоносных контентов. Существующие системы анализа эпидемических процессов предоставляют в основном средства визуализации результатов моделирования и не подходят для практического применения с целью воспроизведения реальных процессов диффузии вредоносного кода и контента в распределенных автоматизированных информационных системах. В статье приведена последовательность мероприятий, проведенных в рамках модернизации программно-технического комплекса «NetEpidemic» в направлении риск-мониторинга эпидемических процессов, протекающих в информационных системах, отвечающего требованиям в первую очередь прогнозирования и качественной визуализации результатов с целью его актуализации как инструмента научно-исследовательских изысканий и дальнейшего продвижения на рынке программного обеспечения. Every year, there is an increase in attacks by cybercriminals on information systems using both malicious code and methods of social engineering and malicious content. Existing systems for analyzing epidemic processes provide mainly visualization tools for modeling results and are not suitable for practical use in order to reproduce real processes of diffusion of malicious code and content in distributed automated information systems. The article provides a sequence of measures taken as part of the modernization of the software and hardware complex "NetEpidemic" in the direction of risk monitoring of epidemic processes occurring in information systems, which meets the requirements, first of all, of forecasting and high-quality visualization of results in order to update it as a research tool and further advancement in the software market.

Download Full-text