Безопасность информационных технологий (Jun 2024)
The methodology of analysis and assessment of the level of security of the software used at the objects of informatization of internal affairs bodies
Abstract
The purpose of the article is to develop a technique that allows analyzing and quantifying the software protection level used in automated systems of internal affairs agencies in real time. To achieve this goal, the method of system analysis of existing approaches to assessing the protection level of automated systems software, the mathematical apparatus of queuing systems, methods of graph theory, probability theory and mathematical statistics, and the theory of semi-Markov processes were used. Quantitative static and dynamic indicators are proposed that make it possible to adequately assess the software protection in relation to current vulnerabilities in the dynamics of its functioning and taking into account the existing disadvantages of operation at the facilities of informatization of internal affairs bodies. Mathematical models and algorithms for analytical calculation of the proposed indicators in real time have been developed. The prospects for the practical implementation of the considered technique are related to the development of a software package for analyzing and evaluating the software protection in order to select its optimal version for increasing the protection level of official information of limited distribution circulating at specific informatization facilities of internal affairs bodies.
Keywords
