CONSTRUCTION AND ANALYSIS METHODOLOGY OF COMPLEX TECHNICAL INFORMATION SECURITY WITH PROBABILISTIC RELIABILITY AND COUNTING OF TEMPORAL BREAKING ATTEMPTS
DOI:
https://doi.org/10.18372/2410-7840.17.9515Keywords:
complex technical information security, security effectiveness ratio, distribution of maximum hacking probability, hacking attempt, hacking attempt time, hacking direction line.Abstract
In this work the theoretical substantiation of single design(SDM) and complex technical information security(CTIS) methodology, based on quantitative assessmentsof the security quality, are made. The methodology isbased on such generalized physical parameters as financialcosts for organization, bulding and modernization technicalinformation security complex, efficiency built protection,the number of hacking attempts and the time atwhich these occurred hacking attempt. On the basis ofthese parameters proposed technical information securitycomplex methodology with quantitative assessment in theform of probabilistic reliability data protection quality. Asa result was received expression of the probability distributionof maximum hacking probability and of attemptsand the time of the hacking attempt, the proposed determiningthe coefficient method efficiency and SDM andCTIS. The influence of effective protection on the probabilityhacking SDM and CTIS, shown how to be a limitingfactor effective protection system to be broken atinfinity or was broken to the desired time of attempts andhacking attempt. Been determined how hacking directioncan influence the real process hacking CTIS. Establishedthat the actual hacking process with the selected conditionscan be projected along the line intersection of twosurfaces - the maximum probability hacking and probability,determined actual hacking attempt. Break point determinedby the intersection direction lines hacking andthe intersection of two surfaces.References
Журиленко Б.Є. Оптимальные финансовые затраты и основные критерии построения или модернизации комплекса технической защиты информации / Журиленко Б.Є., Николаева Н.К., Пелих Н.С. // Правове, нормативне та метрологічне забезпечення системи захисту інформації в Україні. – Київ, КПІ НДЦ «Тезіс», 2011. – Випуск 1 (22). – С.33-43.
Журиленко Б.Е. Математическая модель вероятностной надежности комплекса технической защиты информации / Б.Е. Журиленко // Безпека інформації: науково – практичний журнал – К.: НАУ, 2012. №2 (18). – С. 61-65.
Журиленко Б.Е. Определение вероятностной надежности единичной технической защиты информации из реальных попыток взлома / Б.Е. Журиленко // Безпека інформації. – К.: НАУ, 2013. №1 (19). – С.34-39.
Журиленко Б.Е. Метод проектирования единичной системы технической защиты информации с вероятностной надежностью и заданными параметрами взлома / Б.Е. Журиленко // Безпека інформації.– 2014. – №1(20). – С. 36-42.
Журиленко Б.Є. Определение направления взлома технической защиты информации по его параметрам / Журиленко Б.Є., Николаева Н.К.//Інформаційні управляючі системи та технології: міжнар. наук.-практ. конф., 23-25 вересня 2014 р.: тези доп. – С. 168-171.
Downloads
Published
Issue
Section
License
Authors who publish with this journal agree to the following terms:- Authors retain copyright and grant the journal right of first publication with the work simultaneously licensed under a Creative Commons Attribution License that allows others to share the work with an acknowledgement of the work's authorship and initial publication in this journal.
- Authors are able to enter into separate, additional contractual arrangements for the non-exclusive distribution of the journal's published version of the work (e.g., post it to an institutional repository or publish it in a book), with an acknowledgement of its initial publication in this journal.
- Authors are permitted and encouraged to post their work online (e.g., in institutional repositories or on their website) prior to and during the submission process, as it can lead to productive exchanges, as well as earlier and greater citation of published work (See The Effect of Open Access).
