Model of Security Audit of a Critical Information Infrastructure Object with Use the Test Cyber Attacks-Reference-Cited by-同舟云学术

Model of Security Audit of a Critical Information Infrastructure Object with Use the Test Cyber Attacks

Published:2021-03-31 Issue:1 Volume:7 Page:94-104
ISSN:1813-324X
Container-title:Proceedings of Telecommunication Universities
language:
Short-container-title:Tr. učebn. zaved. svâzi

Author:

Makarenko S.¹^ORCID,Smirnov G.²

Affiliation:

1. Saint-Petersburg Federal Research Center of the Russian Academy of Sciences; Saint-Petersburg Electrotechnical University "LETI"

2. Saint-Petersburg Electrotechnical University "LETI"; Intel Group ltd

Abstract

The article presents a model for auditing the security of a critical information infrastructure object by test information and technical influences. This model formalizes an object in the form audit process of a multilevel topological model, the individual levels of which correspond to: resource costs for impacts, test information and technical impacts, vulnerabilities, object elements and damage levels. The use of this model in audit practice will make it possible to substantiate the most effective impacts on the basis of the “efficiency / cost” criterion, as well as form test suites that will ensure the rational completeness of the audit of a critical infrastructure facility.

Publisher

Bonch-Bruevich State University of Telecommunications

Link

https://tuzs.sut.ru/release/tuzs_v7_i1_y2021/article_9.pdf

Reference44 articles.

1. Makarenko S.I. Audit of Information Security - the Main Stages, Conceptual Framework, Classification of Types. Systems of Control, Communication and Security. 2018;1:1-29 (in Russ.) DOI:10.24411/2410-9916-2018-10101

2. Makarenko S.I. Security audit of critical infrastructure with special information impacts. Monograph. Saint Petersburg: Naukoemkie tehnologii Publ.; 2018. 122 p. (in Russ.)

3. Kashaev T.R. Algorithms for Active Audit of the Information System Based on Artificial Immune System Technologies. PhD Thesis. Ufa: Ufa State Aviation Technical University Publ.; 2008. 19 p. (in Russ.)

4. Markov A.S., Tsirlov V.L., Barabanov A.V. Methods of Compliance of Information Security. Moscow: Radio i Sviaz Publ.; 2012. 192 p. (in Russ.)

5. Skabtsov N. Security Audit of Information Systems. Saint Petersburg: Piter Publ.; 2018. 272 p. (in Russ.)