Expert systems for information security management and audit. Implementation phase issues

Kanatov, Maksat; Atymtayeva, Lyazzat; Yagaliyeva, Bagdat

doi:10.1109/scis-isis.2014.7044702

Cited by 15 publications

(24 citation statements)

References 16 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Four levels of automation of a security audit are found in [9] and the importance of automating the audit process is discussed in [10] due to repeatability of the process and the large amounts of data. Various methods of security audits and assessments are presented in [11] and [12].…”

Section: Related Workmentioning

confidence: 99%

Security Assessment of a Distributed, Modbus-Based Building Automation System

Tenkanen¹,

Hämäläinen

2017

2017 IEEE International Conference on Computer and Information Technology (CIT)

View full text Add to dashboard Cite

Abstract-Building automation systems were designed in an era when security was not a concern as the systems were closed from outside access. However, multiple benefits can be found in connecting such systems over the Internet and controlling a number of buildings from a single location. Security breaches towards building automation systems are increasing and may cause direct or indirect damages to the target organization or even the residents of the building. This work presents an approach to apply a method of data flow recognition and environment analysis to building automation through a case study on a distributed building automation system utilizing the Modbus protocol at the sites and presents suggested methods for mitigating the risks.

show abstract

Section: Related Workmentioning

confidence: 99%

Security Assessment of a Distributed, Modbus-Based Building Automation System

Tenkanen¹,

Hämäläinen

2017

2017 IEEE International Conference on Computer and Information Technology (CIT)

View full text Add to dashboard Cite

show abstract

“…The increasing number of IS and CS threats has given rise to the surge of research in the field of development of uncovering and preventing cyberattack systems [1][2][3][4], and also DSS [5,6] and expert systems (ES) [7][8][9] in this field. But these studies are basically presented only as formal mathematical models and are not implemented in currently active software.…”

Section: Literature Data Analysis and Problem Statementmentioning

confidence: 99%

“…In such a way, according to the disputes in publications [8,10,17], dedicated to the potential of using integrated DSS [5,6] or ES [7,9,16] in ISMS, which realize a precautionary strategy of IO cyber-security [15,20], the task of developing methods, models and applied software for using them in practice in intelligent support of ISS rational structure planning and the task of assessment and prediction of IS and CS risks and also of IP management in conditions of uncertainty of potential cyberterrorists influences became relevant.…”

Section: Literature Data Analysis and Problem Statementmentioning

confidence: 99%

“…The task of ISMC rational structure choice for IO is made according to the following criteria [4,9,7,15]: minimum probability of achieving goals by an attacker; minimum of IO losses should the attacker's goals be achieved; maximum probability of successful ISMC counteraction to the actions of an attacker; minimum "cost-risk" integrated index value [4,9].…”

Section: Fig 1 Organizational-technical Ip Management Idss Structurementioning

confidence: 99%

See 1 more Smart Citation

Development of a support system for managing the cyber protection of an information object

Lakhno

Petrov²,

Nagorna

2017

Zeszyty Naukowe Wyższej Szkoły Humanitas Zarządzanie

View full text Add to dashboard Cite

The information is being discussed and its characteristics in the system of enterprise management. The model of operational management information and cyber security (CS) object forms a rational set of remedies based on morphological approach. Unlike existing solutions, the model prepared on the basis of intelligent decision support, a morphological matrix for each facility’s perimeters of information protection, and can generate a set of options for remedies which take into account the compatibility of software and hardware. The choice of the optimal option set for that perimeter protection of information, implements an objective function that maximizes the ratio of the sum “security information” to the total rate “cost.”

show abstract

“…In the opinion of authors [13,14], the analysis of MCCS protection and development of the plan to counteract targeted cyberattacks must be preceded by the stage of detecting the basic threats and vulnerabilities. In this case, as indicated by researchers, a task of the formalization of connections between the threats and the OBCP vulnerabilities remains challenging.…”

Section: Introductionmentioning

confidence: 99%

Designing a decision support system for the weakly formalized problems in the provision of cybersecurity

Akhmetov

Lakhno

Boiko

et al. 2017

EEJET

View full text Add to dashboard Cite

When complex situations of the guaranteed provision of OBCP IS arise, the decision-making process should be performed under condition of active interaction with experts; in this case, such an operation proves to be rather labor consuming without computer technologies. Even the initial problem of designing the integrated systems for information protection (ISIP) can be attributed to the weakly formalized problems with incomplete information. Similar tasks include the situations, connected with the recognition of prolonged targeted cyberattacks, which are not distinguished by explicit attributes. Therefore, the subject of the study that addresses the development of models and software (SW) of DSS in the weakly structured and difficult-to-formalize tasks in the provision of OBCP IS appears relevant. Literature review and problem statementAn increase in the number of cyberattacks on MCCS in recent years has generated interest towards the development IntroductionIn connection with the growing number of complex targeted cyberattacks directed at the mission critical computer systems (MCCS), one of the vital problems of society is the information security (IS) and its component -cybersecurity (CS). When conducting targeted attacks, cybercriminals frequently are used unique harmful programs and methods of penetrating the MCCS (objects of cyberprotection -OBCP). Resisting a constant increase in the complexity of illegitimate actions on MCCS is possible, in particular, using the systems for the intelligent recognition of cyberattacks (SIRCA), equipped with the modules for decision support system (DSS). The architecture of the latter implies, as a rule, a system for intelligent data analysis (SIDA or Data Mining). SIRCA make it possible to reveal regularities in the dynamics of development of the OBCP states, combining the knowledge and experience of decision making by experts, as well as the SIDA computational potential. INFORMATION TECHNOLOGY DESIGNING A DECISION SUPPORT SYSTEM FOR THE WEAKLY FORMALIZED PROBLEMS IN THE PROVISION OF CYBERSECURITY B . A k h m e t o v Y . B o i k oAssociate Professor Department of Information Technology Security* E-mail: julia_boyko2010@ukr.net A . M i s h c h e n k oAssociate Professor Department of Information Security Protection* E-mail: partpravo@i.ua *National Aviation University Kosmonavta Komarova ave., 1, Kyiv, Ukraine, 03058Розроблено систему підтримки при-йняття рішень (СППР) в слабко форма-лізуємих завданнях забезпечення кібер-безпеки. Система базується на моделях опису завдань кіберзахисту в понятійно-му і функціональному аспектах. Описано процес формування бази знань СППР для обставин, пов'язаних з виявленням важко пояснюваних ознак аномалій та атак. Запропонована СППР дозволяє підвищи-ти розуміння ситуації, яка підлягає ана-лізу в процесі кіберзахисту комп'ютерних систем Ключові слова: система підтримки прийняття рішень, кібербезпека, слабо формалізовані завдання, інтерпретація ситуації Разработана система поддержки при-нятия решений (СППР) в слабо формали-зуемых задачах обес...

show abstract

Expert systems for information security management and audit. Implementation phase issues

Cited by 15 publications

References 16 publications

Security Assessment of a Distributed, Modbus-Based Building Automation System

Security Assessment of a Distributed, Modbus-Based Building Automation System

Development of a support system for managing the cyber protection of an information object

Designing a decision support system for the weakly formalized problems in the provision of cybersecurity

Contact Info

Product

Resources

About