<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE article PUBLIC "-//NLM//DTD JATS (Z39.96) Journal Publishing DTD v1.3 20210610//EN" "JATS-journalpublishing1-3.dtd">
<article article-type="research-article" dtd-version="1.3" xmlns:mml="http://www.w3.org/1998/Math/MathML" xmlns:xlink="http://www.w3.org/1999/xlink" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xml:lang="ru"><front><journal-meta><journal-id journal-id-type="publisher-id">bsuir</journal-id><journal-title-group><journal-title xml:lang="ru">Доклады БГУИР</journal-title><trans-title-group xml:lang="en"><trans-title>Doklady BGUIR</trans-title></trans-title-group></journal-title-group><issn pub-type="ppub">1729-7648</issn><issn pub-type="epub">2708-0382</issn><publisher><publisher-name>БГУИР</publisher-name></publisher></journal-meta><article-meta><article-id pub-id-type="doi">10.35596/1729-7648-2026-24-1-60-67</article-id><article-id custom-type="elpub" pub-id-type="custom">bsuir-4299</article-id><article-categories><subj-group subj-group-type="heading"><subject>Research Article</subject></subj-group><subj-group subj-group-type="section-heading" xml:lang="ru"><subject>Статьи</subject></subj-group></article-categories><title-group><article-title>Анализ событий информационной безопасности в системе электронной цифровой подписи на основе виртуальной инфраструктуры</article-title><trans-title-group xml:lang="en"><trans-title>Analysis of Information Security Events in an Electronic Digital Signature System Based on a Virtual Infrastructure</trans-title></trans-title-group></title-group><contrib-group><contrib contrib-type="author" corresp="yes"><name-alternatives><name name-style="eastern" xml:lang="ru"><surname>Герасимов</surname><given-names>В. А.</given-names></name><name name-style="western" xml:lang="en"><surname>Gerasimov</surname><given-names>V.</given-names></name></name-alternatives><bio xml:lang="ru"><p>Герасимов Вячеслав Александрович - магистр, сотр. Научно-исследовательского института технической защиты информации, асп. каф. защиты информации</p><p>220088, Минск, ул. Первомайская, 26, корп. 2</p><p>Тел.: +375 17 302-81-71 </p></bio><bio xml:lang="en"><p>Viacheslau Gerasimov - M. Sci., Researcher at the Research Institute for Technical Protection of Information, Postgraduate at the Department of Information Protection</p><p>220088, Minsk, Pervomayskaya St., 26, Bld. 2</p><p>Tel.: +375 17 302-81-71 </p></bio><email xlink:type="simple">vger@niitzi.by</email><xref ref-type="aff" rid="aff-1"/></contrib><contrib contrib-type="author" corresp="yes"><name-alternatives><name name-style="eastern" xml:lang="ru"><surname>Бойправ</surname><given-names>О. В.</given-names></name><name name-style="western" xml:lang="en"><surname>Boiprav</surname><given-names>O.</given-names></name></name-alternatives><bio xml:lang="ru"><p>канд. техн. наук, доц., зав. каф. защиты информации</p><p>Минск</p></bio><bio xml:lang="en"><p>Olga Boiprav - Cand. Sci. (Tech.), Associate Professor, Head of the Department of Information Security</p><p>Minsk </p></bio><xref ref-type="aff" rid="aff-2"/></contrib><contrib contrib-type="author" corresp="yes"><name-alternatives><name name-style="eastern" xml:lang="ru"><surname>Русецкий</surname><given-names>Р. Н.</given-names></name><name name-style="western" xml:lang="en"><surname>Rusetski</surname><given-names>R.</given-names></name></name-alternatives><bio xml:lang="ru"><p>магистрант каф. защиты информации</p><p>Минск</p></bio><bio xml:lang="en"><p>Roman Rusetski - Master’s Student at the Department of Information Security</p><p>Minsk </p></bio><xref ref-type="aff" rid="aff-2"/></contrib></contrib-group><aff-alternatives id="aff-1"><aff xml:lang="ru"><institution>Научно-исследовательский институт технической защиты информации ; Белорусский государственный университет информатики и радиоэлектроники</institution></aff><aff xml:lang="en"><institution>Research Institute for Technical Protection of Information ; Belarusian State University of Informatics and Radioelectronics</institution></aff></aff-alternatives><aff-alternatives id="aff-2"><aff xml:lang="ru"><institution>Белорусский государственный университет информатики и радиоэлектроники</institution></aff><aff xml:lang="en"><institution>Belarusian State University of Informatics and Radioelectronics</institution></aff></aff-alternatives><pub-date pub-type="collection"><year>2026</year></pub-date><pub-date pub-type="epub"><day>04</day><month>03</month><year>2026</year></pub-date><volume>24</volume><issue>1</issue><fpage>60</fpage><lpage>67</lpage><permissions><copyright-statement>Copyright &amp;#x00A9; Герасимов В.А., Бойправ О.В., Русецкий Р.Н., 2026</copyright-statement><copyright-year>2026</copyright-year><copyright-holder xml:lang="ru">Герасимов В.А., Бойправ О.В., Русецкий Р.Н.</copyright-holder><copyright-holder xml:lang="en">Gerasimov V., Boiprav O., Rusetski R.</copyright-holder><license xml:lang="ru" license-type="creative-commons-attribution" xlink:href="https://creativecommons.org/licenses/by/4.0/" xlink:type="simple"><license-p>Данная работа распространяется под лицензией Creative Commons Attribution 4.0.</license-p></license><license xml:lang="en" license-type="creative-commons-attribution" xlink:href="https://creativecommons.org/licenses/by/4.0/" xlink:type="simple"><license-p>This work is licensed under a Creative Commons Attribution 4.0 License.</license-p></license></permissions><self-uri xlink:href="https://doklady.bsuir.by/jour/article/view/4299">https://doklady.bsuir.by/jour/article/view/4299</self-uri><abstract><p>В статье анализируются события информационной безопасности в системе электронной цифровой подписи на основе виртуальной инфраструктуры согласно требованиям положения о порядке информационного взаимодействия элементов национальной системы обеспечения кибербезопасности. Рассмотрены ключевые модули системы: модуль аутентификации, модуль выработки электронной цифровой подписи и модуль ее проверки, включая их подмодули для защиты данных, формирования подписей и верификации. Приведены примеры событий для журналирования, такие как аутентификация пользователей, формирование электронных документов, передача хэш-значений, признаки киберинцидентов, включая аномальные действия пользователей. Представлены события информационной безопасности, журналируемые в системах электронной цифровой подписи на основе виртуальной инфраструктуры. Выполнена оценка соответствия результатов журналирования этих событий требованиям, представленным в приказе Оперативно-аналитического центра при Президенте Республики Беларусь от 25 июля 2023 г. № 130.</p></abstract><trans-abstract xml:lang="en"><p>This article analyzes information security events in a virtual infrastructure-based electronic digital signature system in accordance with the requirements of the regulations on the procedure for information exchange between elements of the national cybersecurity system. Key system modules are considered: the authentication module, the electronic digital signature generation module, and the verification module, including their submodules for data protection, signature generation, and verification. Examples of events for logging are provided, such as user authentication, electronic document generation, hash value transfer, and indicators of cyber incidents, including abnormal user actions. Information security events logged in virtual infrastructure-based electronic digital signature systems are presented. An assessment is made of the compliance of the logging results for these events with the requirements set out in Order No 130 of the Operational and Analytical Center under the President of the Republic of Belarus dated July 25, 2023.</p></trans-abstract><kwd-group xml:lang="ru"><kwd>событие информационной безопасности</kwd><kwd>электронная цифровая подпись</kwd><kwd>сравнительный анализ</kwd><kwd>виртуальная инфраструктура</kwd></kwd-group><kwd-group xml:lang="en"><kwd>information security event</kwd><kwd>electronic digital signature</kwd><kwd>comparative analysis</kwd><kwd>virtual infrastructure</kwd></kwd-group></article-meta></front><back><ref-list><title>References</title><ref id="cit1"><label>1</label><citation-alternatives><mixed-citation xml:lang="ru">Герасимов, В. А. Метод обнаружения событий информационной безопасности в системах облачной подписи / В. А. Герасимов, О. В. Бойправ // Цифровая трансформация. 2024. Т. 30, № 2. С. 77–84. https://doi.org/10.35596/1729-7648-2024-30-2-77-84.</mixed-citation><mixed-citation xml:lang="en">Gerasimov V. A., Boyprav O. V. (2024) Method for Information Security Events Detection in a Cloud Signature Systems. Digital Transformation. 30 (2), 77–84. https://doi.org/10.35596/1729-7648-2024-30-2-77-84 (in Russian).</mixed-citation></citation-alternatives></ref><ref id="cit2"><label>2</label><citation-alternatives><mixed-citation xml:lang="ru">Микрюков, А. А. Классификация событий в системах обеспечения информационной безопасности на основе нейросетевых технологий / А. А. Микрюков, А. В. Бабаш, В. А. Сизов // Открытое образование. 2019. Т. 23, № 1. С. 57–63. https://doi.org/10.21686/1818-4243-2019-23-1-57-63.</mixed-citation><mixed-citation xml:lang="en">Mikryukov A. A., Babash A. V., Sizov V. A. (2019) Classification of Events in Information Security Systems Based on Neural Networks. Open Education. 23 (1), 57–63. https://doi.org/10.21686/1818-4243-2019-23-1-57-63 (in Russian).</mixed-citation></citation-alternatives></ref><ref id="cit3"><label>3</label><citation-alternatives><mixed-citation xml:lang="ru">Бойправ, В. А. Методика и программное средство для проведения аудита систем управления информационной безопасности / В. А. Бойправ, Л. Л. Утин // Информатика. 2022. Т. 19, № 4. С. 42–52. https://doi.org/10.37661/1816-0301-2022-19-4-42-52.</mixed-citation><mixed-citation xml:lang="en">Boiprav V. A., Utin L. L. (2022) Methodology and Software Development for Auditing Information Security Management Systems. Informatics. 19 (4), 42–52. https://doi.org/10.37661/1816-0301-2022-19-4-42-52 (in Russian).</mixed-citation></citation-alternatives></ref><ref id="cit4"><label>4</label><citation-alternatives><mixed-citation xml:lang="ru">Критерии и показатели оценивания качества проведения расследования инцидента информационной безопасности при целевой кибератаке / С. И. Смирнов [и др.] // Российский технологический журнал. 2024. Т. 12, № 3. С. 25–36. https://doi.org/10.32362/2500-316X-2024-12-3-25-36.</mixed-citation><mixed-citation xml:lang="en">Smirnov S. I., Eremeev M. A., Magomedov Sh. G., Izerkin D. A. (2024) Criteria and Indicators for Assessing the Quality of the Investigation of an Information Security Incident as Part of a Targeted Cyberattack. Russian Technological Journal. 12 (3), 25–36. https://doi.org/10.32362/2500-316X-2024-12-3-25-36 (in Russian).</mixed-citation></citation-alternatives></ref><ref id="cit5"><label>5</label><citation-alternatives><mixed-citation xml:lang="ru">Михайлова, В. Д. Описание инцидента при тестировании информационной безопасности киберфизических систем / В. Д. Михайлова // Инженерный вестник Дона. 2025. № 6.</mixed-citation><mixed-citation xml:lang="en">Mikhailova V. D. (2025) Description of an Incident During Testing of Information Security of Cyber-Physical Systems. Engineering Bulletin of the Don. (6) (in Russian).</mixed-citation></citation-alternatives></ref><ref id="cit6"><label>6</label><citation-alternatives><mixed-citation xml:lang="ru">Konchitchki, Y. Event Study Methodologies in Information Systems Research / Y. Konchitchki, D. E. O’Leary // International Journal of Accounting Information Systems. 2011. Vol. 12, Iss. 2. P. 99–115.</mixed-citation><mixed-citation xml:lang="en">Konchitchki Y., O’Leary D. E. (2011) Event Study Methodologies in Information Systems Research. International Journal of Accounting Information Systems. 12 (2), 99–115.</mixed-citation></citation-alternatives></ref><ref id="cit7"><label>7</label><citation-alternatives><mixed-citation xml:lang="ru">González-Granadillo, G. Security Information and Event Management (SIEM): Analysis, Trends, and Usage in Critical Infrastructures / G. González-Granadillo, S. González-Zarzosa, R. Diaz // Sensors. 2021. Vol. 21, No 14. https://doi.org/10.3390/s21144759.</mixed-citation><mixed-citation xml:lang="en">González-Granadillo G., González-Zarzosa S., Diaz R. (2021) Security Information and Event Management (SIEM): Analysis, Trends, and Usage in Critical Infrastructures. Sensors. 21 (14). https://doi.org/10.3390/s21144759.</mixed-citation></citation-alternatives></ref><ref id="cit8"><label>8</label><citation-alternatives><mixed-citation xml:lang="ru">Macaneata, C. Overview of Security Information and Event Management Systems / C. Macaneata // Infor­ matica Economica, Academy of Economic Studies. 2024. Vol. 28, Iss. 1. P. 15–24.</mixed-citation><mixed-citation xml:lang="en">Macaneata C. (2024) Overview of Security Information and Event Management Systems. Informatica Economica, Academy of Economic Studies. 28 (1), 15–24.</mixed-citation></citation-alternatives></ref><ref id="cit9"><label>9</label><citation-alternatives><mixed-citation xml:lang="ru">Sayankar, V. N. A Review on Information Systems Audit / V. N. Sayankar // Research Journal of Engineering and Technology. 2024. Vol. 4, Iss. 3.</mixed-citation><mixed-citation xml:lang="en">Sayankar V. N. (2024) A Review on Information Systems Audit. Research Journal of Engineering and Technology. 4 (3).</mixed-citation></citation-alternatives></ref><ref id="cit10"><label>10</label><citation-alternatives><mixed-citation xml:lang="ru">Vandapuye, S. An Overview of Information Systems in Auditing: Insights from Bibliometric Research / S. Vandapuye, S. Jabraoui // Salud, Ciencia y TecnologΊa – Serie de Conferencias. 2024. Vol. 3. DOI: 10.56294/sctconf20241013.</mixed-citation><mixed-citation xml:lang="en">Vandapuye S., Jabraoui S. (2024) An Overview of Information Systems in Auditing: Insights from Bibliometric Research. Salud, Ciencia y Tecnología – Serie de Conferencias. 3. DOI: 10.56294/sctconf20241013.</mixed-citation></citation-alternatives></ref></ref-list><fn-group><fn fn-type="conflict"><p>The authors declare that there are no conflicts of interest present.</p></fn></fn-group></back></article>
