Research of Vulnerabilities of Information Processing Processes Systems of Critical Information Infrastructure

Gatchin, Yu. A.; Sukhostat, V. V.

doi:10.1109/weconf.2019.8840618

Cited by 5 publications

(2 citation statements)

References 0 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Due to the orientation of this study on data processing processes in quality management in high-tech industries, it is advisable to make the most of the existing proven processes from areas close to close requirements for the complexity of the processes performed, their repetitiveness and security requirements. For example, a civil aviation area where a fairly general process of processing information is used in automated systems [12,13].It is expected to consist of the following stages:…”

Section: Methodsmentioning

confidence: 99%

Application of complex information objects in industry management systems

et al. 2020

View full text Add to dashboard Cite

The effectiveness of methods for forming a comprehensive information facility to make targeted decisions in high-tech industries is determined by the systematic organization of processes aimed at measuring costs and results in automated systems. The formation of such information facilities in terms of ensuring unity and comparability of information is considered. The main indicators are the description and language implementation of models of automated quality assurance systems, ways to ensure the unity of information and consistency of requirements, metrics of integrity and comparability of data in systems.

show abstract

Section: Methodsmentioning

confidence: 99%

Application of complex information objects in industry management systems

et al. 2020

View full text Add to dashboard Cite

show abstract

“…Other security research fields are content leakage prevention mechanisms, user terminal security systems, cryptography, intrusion detection, cyber-attack detection, and information system security. However, researchers have found that human interaction with these systems is the real cause of most breaches [26,27]. This human factor is called an agent, which purposely exploits weaknesses of the system or unintentionally uncovers vulnerabilities either by using the system, or by using mobile devices that can leak and exploit sensitive information to other people [27].…”

mentioning

confidence: 99%

Security Requirements Engineering Framework with BPMN 2.0.2 Extension Model for Development of Information Systems

2020

View full text Add to dashboard Cite

With recent advancements of technologies such as Internet of Things and cloud computing, security of information systems has emerged as a critical issue. This has created a need for elicitation and analysis of the security requirements at an early stage of system development. These requirements should also be expressed using visual notations that can encapsulate the vision of different stakeholders related to security. While business process management notation (version 2.0.2) is a widely used graphical representation for business requirements and makes it easier to define and communicate business processes between different stakeholders of the system. Moreover, extension mechanisms are available to model the specific needs of an organization. Due to its flexible structure for defining new extensions, it can be adapted to model security requirements in the information system (IS). Towards this, we propose a threat profile security framework to define the security requirements of manufacturing systems for businesses, which are at a stage of infancy to adapt or evolve the IS with the changing needs of a business environment. In particular, the framework is modeled by extending Business Process Management Notation and is applied in a manufacturing industry process at the shop floor level. We show through a case study example that the threat goal-based framework is broader and, hence, covers a majority of security concerns of organizations.

show abstract