<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE article PUBLIC "-//NLM//DTD JATS (Z39.96) Journal Publishing DTD v1.3 20210610//EN" "JATS-journalpublishing1-3.dtd">
<article article-type="research-article" dtd-version="1.3" xmlns:mml="http://www.w3.org/1998/Math/MathML" xmlns:xlink="http://www.w3.org/1999/xlink" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xml:lang="ru"><front><journal-meta><journal-id journal-id-type="publisher-id">bsuir</journal-id><journal-title-group><journal-title xml:lang="ru">Доклады БГУИР</journal-title><trans-title-group xml:lang="en"><trans-title>Doklady BGUIR</trans-title></trans-title-group></journal-title-group><issn pub-type="ppub">1729-7648</issn><issn pub-type="epub">2708-0382</issn><publisher><publisher-name>БГУИР</publisher-name></publisher></journal-meta><article-meta><article-id pub-id-type="doi">10.35596/1729-7648-2023-21-2-95-103</article-id><article-id custom-type="elpub" pub-id-type="custom">bsuir-3605</article-id><article-categories><subj-group subj-group-type="heading"><subject>Research Article</subject></subj-group><subj-group subj-group-type="section-heading" xml:lang="ru"><subject>ЭЛЕКТРОНИКА, РАДИОФИЗИКА, РАДИОТЕХНИКА, ИНФОРМАТИКА</subject></subj-group><subj-group subj-group-type="section-heading" xml:lang="en"><subject>ELECTRONICS, RADIOPHYSICS, RADIOENGINEERING, INFORMATICS</subject></subj-group></article-categories><title-group><article-title>Модель и метод определения оптимальной структуры системы обеспечения безопасности для критической информационной инфраструктуры</article-title><trans-title-group xml:lang="en"><trans-title>Model and Method for Determining the Optimal Structure  of the Security System for Critical Information Infrastructure</trans-title></trans-title-group></title-group><contrib-group><contrib contrib-type="author" corresp="yes"><name-alternatives><name name-style="eastern" xml:lang="ru"><surname>Касумов</surname><given-names>В. А.</given-names></name><name name-style="western" xml:lang="en"><surname>Gasimov</surname><given-names>V. A.</given-names></name></name-alternatives><bio xml:lang="ru"><p>Касумов Вагиф Алиджавад, д. т. н., профессор, заведующий кафедрой компьютерных технологий</p><p>AZ 1073, г. Баку, просп. Г. Джавида, 25</p><p>Тел.: +994 12 539-11-38</p></bio><bio xml:lang="en"><p>Gasimov Vagif Alijavad, Dr. of Sci. (Eng.), Professor, Head at the Department of Computer Technologies</p><p>AZ 1073, Baku, H. Javida Ave., 25</p><p>Tel.: +994 12 539-11-38</p></bio><email xlink:type="simple">gasumov@yahoo.com</email><xref ref-type="aff" rid="aff-1"/></contrib><contrib contrib-type="author" corresp="yes"><name-alternatives><name name-style="eastern" xml:lang="ru"><surname>Мамедов</surname><given-names>Дж. И.</given-names></name><name name-style="western" xml:lang="en"><surname>Mammadov</surname><given-names>J. I.</given-names></name></name-alternatives><bio xml:lang="ru"><p>к. т. н., доцент, доцент кафедры компьютерных технологий</p><p>Баку</p><p> </p></bio><bio xml:lang="en"><p>Cand. of Sci., Associate Professor, Associate Professor at the Department of Computer Technologies</p></bio><xref ref-type="aff" rid="aff-1"/></contrib></contrib-group><aff-alternatives id="aff-1"><aff xml:lang="ru"><institution>Азербайджанский технический университет</institution></aff><aff xml:lang="en"><institution>Azerbaijan Technical University</institution></aff></aff-alternatives><pub-date pub-type="collection"><year>2023</year></pub-date><pub-date pub-type="epub"><day>24</day><month>04</month><year>2023</year></pub-date><volume>21</volume><issue>2</issue><fpage>95</fpage><lpage>103</lpage><permissions><copyright-statement>Copyright &amp;#x00A9; Касумов В.А., Мамедов Д.И., 2023</copyright-statement><copyright-year>2023</copyright-year><copyright-holder xml:lang="ru">Касумов В.А., Мамедов Д.И.</copyright-holder><copyright-holder xml:lang="en">Gasimov V.A., Mammadov J.I.</copyright-holder><license xml:lang="ru" license-type="creative-commons-attribution" xlink:href="https://creativecommons.org/licenses/by/4.0/" xlink:type="simple"><license-p>Данная работа распространяется под лицензией Creative Commons Attribution 4.0.</license-p></license><license xml:lang="en" license-type="creative-commons-attribution" xlink:href="https://creativecommons.org/licenses/by/4.0/" xlink:type="simple"><license-p>This work is licensed under a Creative Commons Attribution 4.0 License.</license-p></license></permissions><self-uri xlink:href="https://doklady.bsuir.by/jour/article/view/3605">https://doklady.bsuir.by/jour/article/view/3605</self-uri><abstract><p>Исследована проблема информационной безопасности критических информационных инфраструктур. Проанализированы особенности критически важных объектов с точки зрения сбора, обработки, хранения и передачи информации. Изучены совокупность функций, выполняемых системой обеспечения безопасности информации в критических инфраструктурах, и зависимости между этими функциями. Предложена модель системы обеспечения безопасности и определены требования, предъявляемые к ней. Множество отношений между объектами и угрозами представлено в виде графа отношений «объект – угроза», в котором ребро, связывающее j-й объект с i-й угрозой, существует только тогда, когда i-я угроза может воздействовать напрямую на j-й объект. Для защиты объектов критических информационных инфраструктур от возможных угроз в модель системы обеспечения безопасности введено множество необходимых методов и средств, преобразующее двухдольный граф в трехдольный, типа «объект – метод – угроза». Рассмотрена задача определения оптимальной структуры системы обеспечения безопасности объектов критической информационной инфраструктуры, решение которой позволит свести к минимуму материальные затраты на реализацию средств защиты и ущерб от нарушения безопасности. </p></abstract><trans-abstract xml:lang="en"><p>The article investigates the problem of information security of critical information infrastructures. The features of critical objects from the point of view of collecting, processing, storing and transmitting information are analysed. The set of functions performed by the information security system in critical infrastructures and the dependencies between these functions are studied. A model of the security system is proposed and the require ments for this model are defined. At the same time, the set of relations between objects and threats is represented in the form of an object-threat relationship graph, in which an edge connecting the j-th object with the i-th threat exists only when the i-th threat can directly affect the j-th object. To protect objects of critical information infrastructures from possible threats, a set of necessary methods and tools has been introduced into the model of the security system, which converts a two-sided graph into a three-sided one, such as “object – method – threat”. Further in the article, the problem of determining the optimal structure of the security system for critical information infrastructure objects is considered. It is assumed here that each threat can affect several objects, and that any object can be affected by more than one threat. The solution of this problem makes it possible to minimize the material costs to implement the methods and tools for protection and minimize damage from a security breach. </p></trans-abstract><kwd-group xml:lang="ru"><kwd>критические инфраструктуры</kwd><kwd>защита информации</kwd><kwd>модель системы безопасности</kwd><kwd>угрозы</kwd><kwd>граф отношений</kwd><kwd>ущерб от нарушения</kwd><kwd>оптимальная структура системы</kwd></kwd-group><kwd-group xml:lang="en"><kwd>critical infrastructures</kwd><kwd>information protection</kwd><kwd>security system model</kwd><kwd>relationship graph</kwd><kwd>damage from breach</kwd><kwd>optimal system structure</kwd></kwd-group></article-meta></front><back><ref-list><title>References</title><ref id="cit1"><label>1</label><citation-alternatives><mixed-citation xml:lang="ru">Development of the Information Security System Effective Structure for the Distributed Computer Networks / V. A. Gasimov [et al.] // IOP Conf. Series: Materials Science and Engineering. 2019. Vol. 537. https:// iopscience.iop.org/article/10.1088/1757-899X/537/5/052034/pdf.</mixed-citation><mixed-citation xml:lang="en">Gasimov V. A., Amashov Y. A., Aliyeva F. P., Mustafayeva E. A., Mutin D. I. Bolnokin V. E. (2019) Development of the Information Security System Effective Structure for the Distributed Computer Networks. IOP Conf. Series: Materials Science and Engineering. 537. https://iopscience.iop.org/article/10.1088/1757- 899X/537/5/052034/pdf.</mixed-citation></citation-alternatives></ref><ref id="cit2"><label>2</label><citation-alternatives><mixed-citation xml:lang="ru">Knapp, E. Industrial Network Security. Securing Critical Infrastructure Networks for Smart Grid SCADA, and Other Industrial Control Systems. 2nd ed. / E. Knapp, J. Langill. Syngress Publ., 2014. 460 р.</mixed-citation><mixed-citation xml:lang="en">Knapp E., Langill J. (2014) Industrial Network Security. Securing Critical Infrastructure Networks for Smart Grid SCADA, and Other Industrial Control Systems. Syngress Publ. 2nd ed. 460.</mixed-citation></citation-alternatives></ref><ref id="cit3"><label>3</label><citation-alternatives><mixed-citation xml:lang="ru">Məmmədov, C. İ. Kritik Infrastrukturlarda Informasiya Təhdidlərinin və Risklərinin Təhlili, Informasiyanın Qorunması Istiqamətlərinin Müəyyən Edilməsi / C. İ. Məmmədov, Z. M. Məmmədov, E. E. Bədəlov // Heydər Əliyev adına AAHM-in Elmi Əsərlər Məcmuəsi. 2020. No 1 (на азербайджанском языке).</mixed-citation><mixed-citation xml:lang="en">Mammadov J. I., Mammadov Z. M., Badalov E. E. (2020) Analysis of Information Threats and Risks in Critical Infrastructures, Determination of Information Protection Directions. Collection of Scientific Works of AAHM named after Heydar Aliyev. (1) (in Azeerb.).</mixed-citation></citation-alternatives></ref><ref id="cit4"><label>4</label><citation-alternatives><mixed-citation xml:lang="ru">Баутов, А. Экономический взгляд на проблемы информационной безопасности / А. Баутов // Открытые системы. СУБД. 2002. № 2. https://www.osp.ru/os/2002/02/181118/.</mixed-citation><mixed-citation xml:lang="en">Bautov A. (2002) An Economic View of the Problems of Information Security. Open Systems. SMDB. (2). https://www.osp.ru/os/2002/02/181118/ (in Russian).</mixed-citation></citation-alternatives></ref><ref id="cit5"><label>5</label><citation-alternatives><mixed-citation xml:lang="ru">Gasimov, V. A. Construction and Realization Methods of Effective Structures of Security Service Systems in Open Computer Networks / V. A. Gasimov // Abstract of the Thesis for the Degree of Candidate of Technical Sciences. Baku, 1998. 26 p.</mixed-citation><mixed-citation xml:lang="en">Gasimov V. A. (1998) Construction and Realization Methods of Effective Structures of Security Service Systems in Open Computer Networks. Abstract of the Thesis for the Degree of Candidate of Technical Sciences. Baku. 26.</mixed-citation></citation-alternatives></ref><ref id="cit6"><label>6</label><citation-alternatives><mixed-citation xml:lang="ru">Аббасов, А. М. Проблемы информационной безопасности в компьютерных сетях / А. М. Аббасов, Р. М. Алгулиев, В. А. Касумов. Баку: Элм, 1998. 235 с.</mixed-citation><mixed-citation xml:lang="en">Abbasov A. M., Alguliev R. M., Gasimov V. A. (1998) Problems of Information Security in Computer Networks. Baku, Elm Publ. 235 (in Russian).</mixed-citation></citation-alternatives></ref><ref id="cit7"><label>7</label><citation-alternatives><mixed-citation xml:lang="ru">Касумов, В. А. Разработка эффективной структуры системы безопасности информации для корпоративных компьютерных сетей / В. А. Касумов, С. З. Мамедов // Наукові праці Одеська національна академія зв’язку ім. О. С. Попова. 2007. № 2. С. 70–73.</mixed-citation><mixed-citation xml:lang="en">Gasimov V. A., Mamedov S. Z. (2007) Development of an Effective Structure of Information Security System for Corporate Computer Networks. Scientific Works of the Odessa National Academy of Communications named after O. S. Popova. (2), 70–73 (in Russian).</mixed-citation></citation-alternatives></ref></ref-list><fn-group><fn fn-type="conflict"><p>The authors declare that there are no conflicts of interest present.</p></fn></fn-group></back></article>
