Cognitive Model for Assessing the Security of Information Systems for Various Purposes-Reference-Cited by-同舟云学术

Cognitive Model for Assessing the Security of Information Systems for Various Purposes

Published:2022-12-12 Issue:12 Volume:14 Page:2631
ISSN:2073-8994
Container-title:Symmetry
language:en
Short-container-title:Symmetry

Author:

Baranov Vladimir V.,Shelupanov Alexander A.

Abstract

This article substantiates the relevance of the development of a cognitive model for assessing the security of information systems for various purposes, designed to support decision-making by officials of information security management bodies. The article analyzes scientific papers and research in this area, formulates the requirements for the functional capabilities of the model, and investigates and identifies the most appropriate modeling tools, based on the symmetry property that develops from integrated ontological and neuro-Bayesian models; typical clusters of information systems; tactics and techniques for the implementation of information security threats through the vulnerabilities of objects at various levels of the International Organization of Standardization/Open Systems Interconnection model (the ISO/OSI model); protective influences; and attacking influences. This approach allowed us to identify such objects of influence and their current vulnerabilities and scenarios for the implementation of information security threats; to calculate the joint probability distribution of information security events of various origins; and to simulate the process of operational management of information security.

Funder

Ministry of Finance of the Russian Federation

Publisher

MDPI AG

Subject

Physics and Astronomy (miscellaneous),General Mathematics,Chemistry (miscellaneous),Computer Science (miscellaneous)

Link

https://www.mdpi.com/2073-8994/14/12/2631/pdf

Reference40 articles.

1. Multicriteria and Statistical Approach to Support the Outranking Analysis of the OECD Countries;Pereira;IEEE Access,2022

2. Multi-criteria analysis applied to aircraft selection by Brazilian Navy;Costa;Production,2021

3. Baranov, V.V. (2022, August 29). Certificate of State Registration of a Computer Program No. 2022616409 “Automated System for Developing a Model of Information Security Threats in an Organization” (ASDM IST). Available online: https://fips.ru/EGD/d67bb7df-a7c2-478a-b2ad-aafa33200680.

4. Russell, S., and Norvig, P. (2006). Artificial Intelligence: A Modern Approach, Williams Publishing House. [2nd ed.].

5. (2022). Information Security, Cybersecurity and Privacy Protection—Evaluation Criteria for IT Security—Part 3: Security Assurance Components (Standard No. ISO/IEC 15408-3). Available online: https://www.iso.org/home.html.