DOI 10.17586/0021-3454-2015-58-12-957-965
UDC 004.056.53
MARKOV MODELS FOR INFORMATIONAL SYSTEM SECURITY THREAT
ITMO University, Saint Petersburg, 197101, Russian Federation; OOO «Scientific Production Enterprise «Information technologies in business»; postgraduate; development manager
A. Y. Shcheglov
ITMO University, Saint Petersburg, 197101, Russian Federation; OOO «Scientific Production Enterprise «Information technologies in business»; Professor; General Director
Read the full article
Abstract. The principal differences in formulation and solution to the problems of modeling security and reliability characteristics of information systems are studied. Applicability of the Markov models for the systems security threats based on the characteristics is analyzed. Correctness of the use of Markov processes in modeling the characteristics of information system security and reliability is justified. The necessity of consideration of the system vulnerability threat instead of an attack threat is proved. Models based on Markov processes and enlarged Markov chains for information system security, as well as a formal model of infringer are developed. The models are reported to be of possible use in development of an information system protection means.
Keywords: informational system, informational security, vulnerability threat, attack threat, informational
system security threat, modeling, Markov process, Markov model, security characteristic
References:
References:
-
Shcheglov K.A., Shcheglov A.Yu. Voprosy zashchity informatsii, 2014, no. 106(3), pp. 52–65. (in Russ.)
-
Shcheglov K.A., Shcheglov A.Yu. Scientific and Technical Journal of Information Technologies, Mechanics and Optics, 2014, no. 1(89), pp. 129–139. (in Russ.)
-
Rosenko A.P. Vnutrennie ugrozy bezopasnosti konfidentsial'noy informatsii: Metodologiya i teoreticheskoe issledovanie (Internal Threats to the Security of Confidential Information. Methodology and Theoretical Research), Moscow, 2010. (in Russ.)
-
Belov E.B, Los' V.P., Meshherjakov R.V., Shelupanov A.A. Osnovy informatsionnoy bezopasnosti (Bases of Information Security), Moscow, 2006, 544 p. (in Russ.)
-
Shcheglov K.A., Shcheglov A.Yu. Vestnik komp'iuternykh i informatsionnykh tekhnologii (Herald of Computer and Information Technologies), 2012, no. 8, pp. 46–51. (in Russ.)