International Journal of Electronics and Telecommunications (Sep 2022)

Automation of Information Security Risk Assessment

  • Berik Akhmetov,
  • Valerii Lakhno,
  • Vitalyi Chubaievskyi,
  • Serhii Kaminskyi,
  • Saltanat Adilzhanova,
  • Moldir Ydyryshbayeva

DOI
https://doi.org/10.24425/ijet.2022.141273
Journal volume & issue
Vol. vol. 68, no. No 3
pp. 549 – 555

Abstract

Read online

An information security audit method (ISA) for a distributed computer network (DCN) of an informatization object (OBI) has been developed. Proposed method is based on the ISA procedures automation by using Bayesian networks (BN) and artificial neural networks (ANN) to assess the risks. It was shown that such a combination of BN and ANN makes it possible to quickly determine the actual risks for OBI information security (IS). At the same time, data from sensors of various hardware and software information security means (ISM) in the OBI DCS segments are used as the initial information. It was shown that the automation of ISA procedures based on the use of BN and ANN allows the DCN IS administrator to respond dynamically to threats in a real time manner, to promptly select effective countermeasures to protect the DCS.

Keywords