ISSN 0021-3454 (print version)
ISSN 2500-0381 (online version)
Menu

11
Issue
vol 67 / November, 2024
Article

DOI 10.17586/0021-3454-2015-58-12-957-965

UDC 004.056.53

MARKOV MODELS FOR INFORMATIONAL SYSTEM SECURITY THREAT

K. A. Shcheglov
ITMO University, Saint Petersburg, 197101, Russian Federation; OOO «Scientific Production Enterprise «Information technologies in business»; postgraduate; development manager


A. Y. Shcheglov
ITMO University, Saint Petersburg, 197101, Russian Federation; OOO «Scientific Production Enterprise «Information technologies in business»; Professor; General Director


Read the full article 

Abstract. The principal differences in formulation and solution to the problems of modeling security and reliability characteristics of information systems are studied. Applicability of the Markov models for the systems security threats based on the characteristics is analyzed. Correctness of the use of Markov processes in modeling the characteristics of information system security and reliability is justified. The necessity of consideration of the system vulnerability threat instead of an attack threat is proved. Models based on Markov processes and enlarged Markov chains for information system security, as well as a formal model of infringer are developed. The models are reported to be of possible use in development of an information system protection means.
Keywords: informational system, informational security, vulnerability threat, attack threat, informational system security threat, modeling, Markov process, Markov model, security characteristic

References:

 

  1. Shcheglov K.A., Shcheglov A.Yu. Voprosy zashchity informatsii, 2014, no. 106(3), pp. 5265. (in Russ.)
  2. Shcheglov K.A., Shcheglov A.Yu. Scientific and Technical Journal of Information Technologies, Mechanics and Optics, 2014, no. 1(89), pp. 129139. (in Russ.)
  3. Rosenko A.P. Vnutrennie ugrozy bezopasnosti konfidentsial'noy informatsii: Metodologiya i teoreticheskoe issledovanie (Internal Threats to the Security of Confidential Information. Methodology and Theoretical Research), Moscow, 2010. (in Russ.)
  4.  Belov E.B, Los' V.P., Meshherjakov R.V., Shelupanov A.A. Osnovy informatsionnoy bezopasnosti (Bases of Information Security), Moscow, 2006, 544 p. (in Russ.)
  5.  Shcheglov K.A., Shcheglov A.Yu. Vestnik komp'iuternykh i informatsionnykh tekhnologii (Herald of Computer and Information Technologies), 2012, no. 8, pp. 46–51. (in Russ.)