The Development of Method for Evaluation of Information Security Threats in Critical Systems

Kamenskih, Anton N.; Филиппов, М. А.; Yuzhakov, A. A.

doi:10.1109/eiconrus49466.2020.9038960

Cited by 1 publication

(1 citation statement)

References 5 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The existence of vulnerabilities gives way to threats, which can be external or internal. The threat assessment process is the biggest problem in information security, because the source of vulnerability and threat in an information system can be hidden until the attack begins, ASTESJ ISSN: 2415-6698 which generates insufficient security controls that generate a high level of risk to the organization [5]. To minimize the availability of threats and vulnerabilities in organizations, the risk assessment process is defined, which must be carried out by an expert [6].…”

Section: Introductionmentioning

confidence: 99%

Prototype to Mitigate the Risks, Vulnerabilities and Threats of Information to Ensure Data Integrity

Toapanta¹,

Durango²,

Gallegos³

et al. 2022

Adv. sci. technol. eng. syst. j.

View full text Add to dashboard Cite

The constant evolution of Information and Communication Technologies, Internet, access to different free software, among others; they generate problems in the management of information security in companies; to mitigate risks, vulnerabilities, and information threats, an alternative was presented considering that information security systems are the basis for decision-making at the government, strategic, tactical, and operational levels. The objective is to design a security prototype applied to business management to mitigate risks, vulnerabilities and threats to information. The deductive method and exploratory research were used for the analysis of the information. Turned out prototypes that allow mitigating risks, vulnerabilities and threats in information management for data control and integrity. It was concluded that the security prototype proposed for a commercial information system; it is security system suitable for public and private companies. In the simulation carried out, it was determined that if the number of risks and threats is high, there will be a greater probability that a problem will arise in the security of the system.

show abstract

Section: Introductionmentioning

confidence: 99%