DEVELOPMENT OF A DECISION SUPPORT SYSTEM FOR ANALYSIS OF EMERGENCIES ON URBAN TRANSPORT

The article discusses some aspects of the design of a decision support system (DSS) module during the analysis of major accidents or emergencies in urban transport in large cities, megalopolises, as well as in Smart City. It is shown that the computational core of such a DSS can be based on the methods of cluster analysis (CA). It is shown that the implementation of even basic spacecraft algorithms in the computational core of the DSSS allows an iterative search for optimal solutions to prevent a large number of emergencies in urban transport by establishing characteristic signs of accidents and emergencies and measures of proximity between two objects. It is shown that such a toolkit as DSS can provide all interested parties with a scientifically grounded classification of multidimensional observations, which summarize the set of selected indicators and make it possible to identify internal connections between emergencies in urban transport. The DSS module for analyzing emergencies in urban transport is described. It has been found that to solve such a problem, it is possible to use the "weighted" Euclidean distance in the computational core of the DSS. It is this parameter that makes it possible to take into account the significance of each characteristic of emergency situations in urban transport, which, in turn, will contribute to obtaining reliable analysis results. It is shown that the spacecraft methods can also be in demand when, along with the analysis of emergency situations in urban transport, problems of designing and reconstructing the configurations of urban street-road networks are solved in parallel. This task, in particular, requires an analysis phase (not least using CA methods) in order to minimize unnecessary uncompensated costs in the event of errors in the road network. When solving such a problem, sections of the urban street and road network are analyzed in order to identify problem areas that need reconstruction or redevelopment. The use of CA methods in such conjugate problems is due to the absence of a priori hypotheses regarding the classes that will be obtained as a result.

ANALYSIS OF CYBER RESISTANCE ASSESSMENT METHODS OF CRITICAL INFRASTRUCTURE

The availability of critical infrastructure through cyberspace makes national security dependent on the degree of its security. Critical infrastructure is a set of automated management systems, which provide the interaction of information and telecommunications networks that solve problems of public administration, defense, security and law enforcement, and others. The protection of critical infrastructure directly depends on the possession of the relevant structures of new weapons, the degree of its effectiveness, methods of use and means of protection against the same weapons of the enemy. It is necessary to address the issue of effective confrontation in cyberspace. The analysis of problems in the development of methods for assessing the functional stability of critical infrastructure in cyber confrontation requires the definition of basic methods and criteria that can be used in Ukraine to assess the stability of critical infrastructure. Cyber weapons, which carry out destructive information effects, are not weapons in the classical sense, because they do not physically damage the object of attack, but translate its information and automated control systems into a crisis mode of operation. The process of counteraction of two or more parties, in this form, is a cyber confrontation that is realized using a common common resource - the global information space. In the process of critical infrastructure management, cyber confrontation imposes additional requirements to ensure the sustainable operation of critical infrastructure. Stability is an integral property that is inextricably linked to the operating environment. Cyber resilience is an integrated indicator and is determined by cyber reliability, which reflects the ability to perform its tasks in a complex critical infrastructure management system in the context of information destructive influences.

SYSTEM ANALYSIS OF TECHNICAL SYSTEMS FOR ENSURING INFORMATION SECURITY OF FIREEYE ENTERPRISES

Issues related to information security of the enterprise are considered. Information security is a set of tools and methods used to protect digital and analog information. The purpose of the information security management system and the role of technical means of information protection from information threats to the enterprise are shown. The methodical approach of the system analysis concerning maintenance of information security of the enterprise is used. To create and effectively operate an information security system, it is always necessary to use already established practices (standards, methodologies) to build such information security systems and implement them in information security management systems. Since modern systems of information security of the enterprise, as a rather complex organizational and technical systems, operate in conditions of uncertainty of the external and internal information environment, the management of such systems should be based only on the results of system analysis. The need to rethink the approaches and methods of systems analysis to the creation and development of modern information technologies is noted. Issues of information security should be considered as components in the creation of modern information security systems - from the moment of design, at all stages of operation and support. Global campaigns - vendors of computer systems pay considerable attention to increase their capacity to protect information through the development and improvement of technical means, in which a significant place is given to timely detection of threats, their analysis and prevention of negative impacts on reducing information security. One of the world's leading IT manufacturers is FireEye, a leader in the supply of its technical solutions. An analysis of technical solutions of FireEye, which is one of the world's leading IT manufacturers in the field of information security. Innovative solutions from the FireEye company at the enterprises of Ukraine for the purpose of increase of efficiency of detection of information modern threats and protection of the information are offered for realization.

EXPERIMENTAL INVESTIGATIONS OF THE INFLUENCE OF SCREENS AND PROTECTIVE EQUIPMENT ON THE LEVEL OF ACOUSTIC SIGNAL IN A ROOM WITH GLASS AND METAL PLASTIC

In the digital stage of world development, information is constantly expanding its facets. That is why the exchange of information is a leading component of constant change in life. Although humanity is gradually moving to the use of electronic technology, acoustic information still plays a key role in information circulation. This applies to official communication in public institutions up to the highest level, business contacts in commercial structures and private communication between people. The process of transmitting information in acoustic form has dangerous consequences. The use of appropriate devices, such as directional acoustic microphones or technical intelligence acoustic antennas, which may be outside the scope of the information activity, makes it possible to obtain unauthorized information that should not reach third parties. Therefore, the task of detecting and protecting information leakage channels, including acoustic ones, is gaining a new degree of importance every day. The protection of the premises or building, where acoustic information regularly circulates, provides a set of organizational and technical measures and means of protection of information circulation, taking into account the peculiarities of the location and arrangement of the object. This study involves the study of the dependence of the level of the acoustic signal on ways to prevent leakage of information through the acoustic channel, which includes vibration noise by means of technical protection and coverage of improvised materials (shielding) of enclosing structures of information activities (OID). The experiment determines the degree of influence of density, sound-absorbing properties of materials and their combinations on acoustic oscillations, the source of which is in the OID. The object of the study was a basic room, where the enclosing structures are walls with windows and doors, ceiling and floor. It is also worth noting that the acoustic signal measurements were not performed in complete silence, which directly affected the accuracy of the results. This step was taken in order to best reproduce the conditions in which criminals often work.

ROSE PASSPORT OF A THREAT FOR THE EARLY DETECTION SYSTEM OF THREAT TO THE NATIONAL SECURITY OF UKRAINE

The article considers the problems of identifying threats to national security, in particular in the information sphere, as well as ways to solve them. The experience of leading countries in approaches to the establishment and operation of national risk and threat detection systems, namely the United States, the United Kingdom, the Kingdom of the Netherlands and New Zealand, is analyzed. The significant influence of the peculiarities of the information sphere in the formation of risks and threats of all security spheres is determined. Particular attention is paid to the direction and focus of the monitoring process on the search for certain marker events that will provide a clear idea of the beginning of the formation of risks and identify threats in the early stages. The expediency of development of the Passport of threats to national security of the state for its coordinated use in the system of detection and assessment of threats in all security spheres, in particular for the system of early detection of threats in the information sphere is substantiated. The analysis of theoretical bases of development of passports of threats is carried out. A unified structure of the Passport is proposed, which takes into account the vast majority of aspects of the process of risk formation with the threat to national security. The content of the main and informational aspects of the developed Passport is given. Given the multifunctionality of the Threat Passport, it is noted that the degree of its detail is important for the possibility of its use for the development of a system of early detection of threats in the information sphere of the state. It is determined that the development of the Passport is carried out indefinitely with further adjustment and introduction of new data in connection with the dynamics of the security environment. It is established that for early detection of threats it is necessary to consider the processes of formation and detection of risks with an emphasis on their initial latent stages. This approach combines the description (assessment) and the corresponding threat and its presentation in the information space.

METHOD FOR DEVELOPING PSEUDO-RANDOM NUMBER GENERATORS FOR CRYPTOGRAPHIC APPLICATIONS IN 5G NETWORKS

Today, pseudo-random number generators are used in various systems and applications, including as key generators in stream ciphers. The implementation of the latest information and communication technologies (in particular, 5G networks) strengthens the requirements for ensuring the confidentiality of critical data and forces the development of new methods and means for cryptographic protection. Existing generators, like other cryptographic algorithms, do not meet the requirements for processing speed and security against known types of attacks. From this position, in the paper a method for constructing pseudo-random sequence generators was developed. It allows to build efficient generators for cryptographic applications. Based on this method, software generators of pseudo-random numbers have been developed and implemented. These will be useful for cryptographic applications in modern 5G networks. The developed pseudo-random number generators have passed complex statistical testing by the NIST STS technique (showed results not worse than the results of known pseudo-random sequence generators used in practice to solve similar problems). Besides, they are faster in comparison with analogues used today in 5G networks (for example, with algorithms SNOW and Trivium). In further works it is planned to investigate the security of the developed pseudo-random generators against different types of cryptanalytic attacks, as well as to simulate the work of the developed pseudo-random sequence generators using the base station equipment of modern 5G networks.

EFFICIENCY OF THE INDICATORS INVESTMENT CALCULATION METHOD IN THE INFORMATION SECURITY SYSTEM OF INFORMATION OBJECTS

The article analyzes publications on the evaluation of investments in information security (IS) of objects of informatization (OBI). The possibility and necessity of obtaining the necessary data have been substantiated, contributing to a reliable assessment of the effectiveness of measures aimed at increasing the company’s IS. In the study process, the modelling methods have been used. A methodology is proposed for calculating indicators from investment activities in the context of increasing IS metrics of OBI. A specific example of such simulation is described. The proposed methodology provides an assessment of the damage prevention from a cyber-attack. The amount of the damage prevention from a cyber-attack is taken as a basic indicator for calculating the economic effect of investing in information security tools (IST). The performed simulation modelling allowed taking into account the relative uncertainty of the real situation with IS of OBI. The conducted study will help practitioners in the field of IS to obtain informed decisions to increase the efficiency of investment projects in the field of IS for OBI, using the approach outlined in the study. Unlike the existing ones, the proposed methodology takes into account both direct and indirect factors of investment projects in the field of IS of OBI

DESIGN OF BIOMETRIC PROTECTION AUTHENTIFICATION SYSTEM BASED ON K-AVERAGE METHOD

The method of biometric identification, designed to ensure the protection of confidential information, is considered. The method of classification of biometric prints by means of machine learning is offered. One of the variants of the solution of the problem of identification of biometric images on the basis of the k-means algorithm is given. Marked data samples were created for learning and testing processes. Biometric fingerprint data were used to establish identity. A new fingerprint scan that belongs to a particular person is compared to the data stored for that person. If the measurements match, the statement that the person has been identified is true. Experimental results indicate that the k-means method is a promising approach to the classification of fingerprints. The development of biometrics leads to the creation of security systems with a better degree of recognition and with fewer errors than the security system on traditional media. Machine learning was performed using a number of samples from a known biometric database, and verification / testing was performed with samples from the same database that were not included in the training data set. Biometric fingerprint data based on the freely available NIST Special Database 302 were used to establish identity, and the learning outcomes were shown. A new fingerprint scan that belongs to a particular person is compared to the data stored for that person. If the measurements match, the statement that the person has been identified is true. The machine learning system is built on a modular basis, by forming combinations of individual modules scikit-learn library in a python environment.

METHODS OF SYSTEM ANALYSIS IN THE FORMATION OF INFORMATION SECURITY POLICY ON TRANSPORT

Approaches to the application of methods of system analysis to solve problems related to information security of enterprises in transport, which have a complex IT structure with a large number of components. It is shown that the active expansion of the areas of informatization of the transport industry, especially in the segment of mobile, distributed and wireless technologies, is accompanied by the emergence of new threats to information security. It is shown that in order to build an effective information security system, the selection and implementation of adequate technical means of protection should be preceded by a stage of description, analysis and modeling of threats, vulnerabilities, followed by calculation of risks for IS and determining the optimal strategy for information security system. After evaluating the different NIB options according to several criteria, a decision is made: if the recommendations coincide, the optimal solution is chosen with greater confidence. If there is a contradiction of recommendations, the final decision is made taking into account its advantages and disadvantages, for example, the strategy of information security system development is chosen, which turned out to be optimal for at least two criteria. If different NIB development strategies are obtained for all three criteria, it is necessary to vary the values of pessimism-optimism in the Hurwitz criterion or change the data, for example, about possible threats to IP or automated enterprise management system. An algorithm for modeling the decision-making process for selecting the optimal strategy for managing investment design components of the information security system for the transport business entity is proposed

TECHNICAL MEANS OF AIRINTELLIGENCE TO ENSURE THE PHYSICAL SECURITY OF INFORMATION ACTIVITIES

This article is devoted to highlighting the real practical capabilities of UAV thermal imaging cameras, which allow you to effectively and safely identify potentially dangerous objects that may threaten the object of information activities, or the safety of citizens or critical infrastructure of Ukraine. Based on many years of flight experience and training of specialists for private and public institutions, it was decided to compare the quality characteristics and capabilities of detection, recognition and identification of objects using modern unmanned vehicles. To ensure public safety and control of the territory, there are models with multiple optical zoom, which from a distance of 500 m allow to recognize the license plate of the car, or versions with thermal imager, which in night can help see the car, the temperature difference against other cars, and the fact that a person comes out of it. Test flights were performed at altitudes from 15 to 100 m, in the open, without the presence of bushes, trees or obstacles. Depending on the camera model and weather conditions, the figures obtained may differ significantly. The main advantages and differences in the quality of thermal imaging cameras for UAVs are described. The quality of the obtained image is demonstrated on real examples and under the same conditions. A number of requirements have been developed for shooting a quadcopter with thermal imagers of objects such as a car and a person from different heights, according to Johnson's criteria, and a work plan has been developed for further research to prepare and provide effective recommendations for pilots using this technique territories of objects of information activity and during performance of service in air reconnaissance units of law enforcement agencies of Ukraine.