Arrangement of the System of Network Monitoring and Assessment of the State of Information Security of an Object

Purpose of reseach is to develop a model of the system for effective collection of information about the network access object based on modern information protection methods as well as to create a kind of the reconfiguration environment in the event of a failure of computer network elements or the need to redistribute the server load.

Methods. A flexible, controlled version of developing a system has been proposed for the process of collecting information about the object under study; it makes it possible to automatically identify potential vulnerabilities in the field of information security [1]. It is proposed to use the analysis of the state of an object based on the black box technique, since it makes it possible to reproduce the actions of an external intruder who does not have any information about the object at the initial stage of preparation (which is the most common scenario when adding new services) and conduct typical attacks with subsequent security evaluation [2]. A mathematical model that improves system fault-tolerance and real-time load balancing is proposed.

Results. The result of the research is the development of an effective construction of a system for assessing the state of object security. A mathematical model that makes it possible to reconfigure the environment of computing modules in real time has been developed. Experimental studies confirming the completeness and correctness of the proposed solutions have been carried out.

Conclusion. The proposed system is designed to analyze the compliance of the protection object with the requirements of an information security policy; it includes the stages of system analysis using the black box technique and performs the tasks of an automated testing process, system components distributions, system modules interchangeability. Together with the developed mathematical model for improving fault-tolerance and redistributing the load on computational power in the event of equipment malfunctions and bypasses in the case of complete load of the elements, the system demonstrated a decrease in the time for conducting a comprehensive assessment of the information security state of the network access object.

system analysis, security assessment, black box technique, mathematical model, information security, fault-tolerance

1. Maruhlenko A.L., Mirzahanov P.S. Programmnyj kompleks dlja modelirovanija processa peredachi i obrabotki setevyh potokov dannyh. Izvestiya Yugo-Zapadnogo gosudarstvennogo universiteta. Seriya: Upravlenie, vychislitel'naja tehnika, informatika. Medicinskoe priborostroenie, 2012, no. 2-3, pp. 175-180.

2. Dr. Allen Harper, Daniel Regalado, Ryan Linn, Stephen Sims, Branko Spasojevic, Linda Martinez, Michael Baucom, Chris Eagle, The late Shon Harris. Gray Hat Hacking: The Ethical Hacker’s Handbook, Fifth Edition. McGraw-Hill Education, 2018, 640 p.

3. Agapov A.A., Hlobystova I.O., Maruhlenko S.L., Maruhlenko A.L., Sof'in A.S. Programmno-apparatnyj kompleks "toksi+meteo" dlja ocenki posledstvij vozmozhnyh avarij s uchetom dannyh o tekushhih pogodnyh uslovijah. Bezopasnost' truda v promyshlennosti, 2011, no. 1, pp. 22-25.

4. Borzov D.B., Chesnokova E.O., Maruhlenko A.L., Al'-Ashval M.M.Ja. Ustrojstvo poiska nizhnej ocenki razmeshhenija v polnosvjaznyh matrichnyh sistemah pri dvunapravlennoj peredache informacii. Patent RF, no. 2421805, 24.11.2008.

5. Dobrica V.P., Maruhlenko A.L., Maruhlenko L.O., Plugatarev A.V. Programmnyj modul' dlja ocenki kriptostojkosti simmetrichnyh metodov shifrovanija s ispol'zovaniem parallel'nyh vychislenij. Infokommunikacii i kosmicheskie tehnologii: sostojanie, problemy i puti reshenija. Sbornik nauchnyh statej po materialam II Vserossijskoj nauchno-prakticheskoj konferencii. Kursk, 2018, pp. 33-38.

6. Tanygin M.O., Maruhlenko A.L., Maruhlenko L.O., Konoreva E.E. Analiz potencial'nyh ujazvimostej i sovremennyh metodov zashhity mnogopol'zovatel'skih resursov. Infokommunikacii i kosmicheskie tehnologii: sostojanie, problemy i puti reshenija. Sbornik nauchnyh statej po materialam II Vserossijskoj nauchno-prakticheskoj konferencii. Kursk, 2018, pp. 136-140.

7. Tanygin M.O., Maruhlenko A.L., Maruhlenko L.O., Romanov A.N. Tehnologija i programmnaja realizacija programmnogo modulja dlja lokalizacii potencial'no opasnyh ob#ektov na graficheskoj podlozhke s ispol'zovaniem nejronnyh setej. Infokommunikacii i kosmicheskie tehnologii: sostojanie, problemy i puti reshenija. Sbornik nauchnyh statej po materialam II Vserossijskoj nauchno-prakticheskoj konferencii. Kursk, 2018, pp. 23-28.

8. Bobyncev D.O., Lisicin L.A., Maruhlenko A.L., Kuzheleva S.A. Administrirovanie informacionnyh sistem. Kursk, 2019, 201 p.

9. Efremov M.A., Halin Ju.A., Maruhlenko A.L., Maruhlenko L.O. Razrabotka zashhishhennyh korporativnyh sistem na baze klientservernoj tehnologii. Kursk, 2018, 176p.

10. Efremov M.A., Maruhlenko A.L., Plugatarev A.V., Maruhlenko L.O. Kompleksnaja ocenka informacionnoj bezopasnosti ob#ekta s primeneniem matematicheskoj modeli dlja rascheta pokazatelej riska. Izvestiya Yugo-Zapadnogo gosudarstvennogo universiteta. Seriya: Upravlenie, vychislitel'naja tehnika, informatika. Medicinskoe priborostroenie, 2018, vol. 8, no. 4 (29), pp. 34-40.

11. Maruhlenko L.O., Maruhlenko A.L., Kerimbaeva K.M., Shamina A.A. Variant obespechenija informacionnoj bezopasnosti za schet povyshenija otkazoustojchivosti raboty apparatnogo mezhsetevogo jekrana. Infokommunikacii i kosmicheskie tehnologii: sostojanie, problemy i puti reshenija. Sbornik nauchnyh statej po materialam II Vserossijskoj nauchno-prakticheskoj konferencii. Kursk, 2018, pp. 10-14.

12. Tanygin M.O., Alshaia H.Ja., Altuhova V.A., Maruhlenko A.L. Ustanovlenie doveritel'nogo kanala obmena dannymi mezhdu istochnikom i prijomnikom informacii s pomoshh'ju modificirovannogo metoda odnorazovyh parolej. Izvestiya Yugo-Zapadnogo gosudarstvennogo universiteta. Seriya: Upravlenie, vychislitel'naja tehnika, informatika. Medicinskoe priborostroenie, 2018, vol. 8, no. 4 (29), pp. 63-71.