Кафедри
Постійне посилання на розділhttps://repository.kpi.kharkov.ua/handle/KhPI-Press/35393
Переглянути
2 результатів
Результати пошуку
Документ Banking security synergetic models(2019) Hryshchuk, Ruslan; Yevseiev, S. P.; Romashchenko, NataliiaThe revolutionary changes of the last decade in the banking sector have led to the blending of information and computer networks into a single information and cybernetic space, which has led to the creation of automated banking systems (ABS), which have expanded the range of state electronic services and commercial banks of the world and Ukraine. As a result, threats to such national information resource of the state as banking information resources (BIR). Security threats BIR acquired signs of hybridization. Signs of hybridity as a result of simultaneous exposure to information security threats, cybernetic security (CS) and information security (InfoSec) to BIR led to the emergence of a synergistic phenomenon whose negative signs require a radical overhaul of the concepts of existing security systems development. The article proposes mathematical methodology models for building the BIR security based on the synergistic approach of estimating hybrid threats. The proposed model forms a complex approach to assessing the current level of BIR security in the ABS, assessing the economic feasibility of introducing one or another mechanism of Technical means of InfoSec system in the ABS, depending on the banking information value, based on an advanced threat classifier.Документ Algorithm of information security risk assessment based on fuzzy-multiple approach(Національний технічний університет "Харківський політехнічний інститут", 2019) Yevseiev, S. P.; Shmatko, Oleksandr; Romashchenko, NataliiaThe subject of the study is the process of assessing the level of information security risk that is being implemented with the help of the fuzzy logic apparatus. The purpose of this work is to develop a methodology for assessing the degree of information security risk, which would avoid the uncertainty factor, that occurs when some parts of information about the analyzed automated information system are absent. The methodology is based on the use of fuzzy logic and fuzzy sets and implies the introduction of the term sets for each of the system characteristics and the linguistic assessment of the indicators. The tasks to be solved are to analyze existing information security risk assessment methodologies for identifying their strengths and weaknesses. On the basis of the conducted analysis, a new method for assessing the risk of automated information systems information security is proposed. The following resultswere obtained: the advantages and disadvantages of qualitative and quantitative methodologies for assessing the risk degree of automated systems information security were identified; the main stages of the proposed methodology were described; the degree of information security risk is calculated in comparison to the FAIR methodology. Conclusion: The methodology presented in the article provides an opportunity to translate the obtained results of risk assessment from a mathematical language into a linguistic form that is more comprehensible to the decision-maker. This increases the effectiveness of the management of automated information systems protection mechanisms.