SIMULATION OF INFORMATION SECURITY RISKS OF AVAILABILITY OF PROJECT DOCUMENTS BASED ON FUZZY LOGIC

Oleksii M. Shushura; Liudmyla A. Asieieva; Oleksiy L. Nedashkivskiy; Yevhen V. Havrylko; Yevheniia O. Moroz; Saule S. Smailova; Magzhan Sarsembayev

doi:10.35784/iapgos.3033

Open full text

PDF

Published: Sep 30, 2022

DOI: https://doi.org/10.35784/iapgos.3033

DOI

https://doi.org/10.35784/iapgos.3033

Authors

Oleksii M. Shushura

leshu@i.ua

National Technical University of Ukraine “Igor Sikorsky Kyiv Polytechnic Institute”

http://orcid.org/0000-0003-3200-720X

Liudmyla A. Asieieva

aseewal@i.ua

State University of Telecommunications

http://orcid.org/0000-0001-5954-4211

Oleksiy L. Nedashkivskiy

al_1@ua.fm

National Technical University of Ukraine “Igor Sikorsky Kyiv Polytechnic Institute”

http://orcid.org/0000-0002-1788-4434

Yevhen V. Havrylko

gev.1964@ukr.net

National Technical University of Ukraine “Igor Sikorsky Kyiv Polytechnic Institute”

http://orcid.org/0000-0001-9437-3964

Yevheniia O. Moroz

morozeo@knu.ua

Taras Shevchenko National University of Kyiv

http://orcid.org/0000-0002-2618-3541

Saule S. Smailova

Saule_Smailova@mail.ru

D.Serikbayev East Kazakhstan State Technical University

http://orcid.org/0000-0002-8411-3584

Magzhan Sarsembayev

magatrone@mail.ru

Al-Farabi Kazakh National University

http://orcid.org/0000-0003-2139-2456

Abstract

The widespread use of computer technology, its rapid development and use in almost all areas of human activity requires constant updating of information security issues. The activities of many enterprises in the field of IT, construction, and other areas are of a project nature and therefore further research on information security management of projects is relevant. Appearance of changes and the current state of the project results at certain points of time describe the documents that accompany it. In this paper, the information structure of the project is considered as a set of specific documents. During the life cycle of each project document, which includes the creation, transfer, preservation and transformation, there are generally threats to its confidentiality, integrity, accessibility and authenticity. This paper develops a method for assessing the risks of violation of the availability of project documents in solving information security problems. A formal description of many project documents in the form of a generalized hierarchical structure is presented, the connection of documents with the operations performed on them and information systems used during these operations is formalized. Given the incompleteness and dimension of the data, the based on fuzzy logic model was developed to assess the risk of document accessibility. Approaches to the assessment of the damage from the violation of the availability of the project document and the method of calculating the overall assessment of the risk of violation of the documents availability are proposed. The results presented in this paper can be used in decision-making processes regarding information security of projects in organizations that have project activities. The approaches proposed in this paper can serve as a basis for the creation of specialized information technologies to automate the calculation of project risk assessments.

Keywords:

information security of the project, cybersecurity risk assessment, fuzzy logic, risk of accessibility breach

References

Abid H. et al.: Structuration Model of Construction Management Professionals, Use of Mobile Devices. Journal of Management in Engineering 37(4), 2021. DOI: https://doi.org/10.1061/(ASCE)ME.1943-5479.0000930

Al-Ali M. et al.: Improving risk assessment model of cyber security using fuzzy logic inference system. Computers & Security 74, 2018, 323–339. DOI: https://doi.org/10.1016/j.cose.2017.09.011

Al-Ali M., Al Mogren A.: Fuzzy logic methodology for cyber security risk mitigation approach. Journal of Networking Technology 8(3), 2017.

Alam J. et al.: Advance Cyber Security System using fuzzy logic. Journal of Management & IT ACME 10, 2014, 17–29.

Azarova A.: Information Technologies and Neural Network Means for Building the Complex Goal Program Improving the Management of Intellectual Capital. Lecture Notes on Data Engineering and Communications Technologies 77, 2022, 534–547. DOI: https://doi.org/10.1007/978-3-030-82014-5_36

Barabash O. et al.: Application of Petri Networks for Support of Functional Stability of Information Systems. IEEE First International Conference on System Analysis & Intelligent Computing (SAIC), Kyiv 2018, 36–39. DOI: https://doi.org/10.1109/SAIC.2018.8516747

Bharadwaj R. K., de Sotob B. G.: Cyber security challenges and vulnerability assessment in the construction industry. Conference Creative Construction, Budapest 2019, 30–37.

Gavrylenko S. et al.: Development of a method for identifying the state of a computer system using fuzzy cluster analysis. Advanced Information Systems 4(2), 2020, 8–11. DOI: https://doi.org/10.20998/2522-9052.2020.2.02

https://www.construction-institute.org/events/education/free-webinar-cybersecurity-for-construction (available 09.02.2022).

https://www.first.org/cvss/v3.1/user-guide (available 16.02.2022).

https://www.nist.gov/cybersecurity/measurements-information-security (available 09.02.2022).

Kvyetnyy R. et al.: Blur recognition using second fundamental form of image surface. Proc. SPIE 9816, 2015, 98161A. DOI: https://doi.org/10.1117/12.2229103

Kvyetnyy R. et al.: Method of image texture segmentation using Laws' energy measures. Proc. SPIE 10445, 2017, 1044561. DOI: https://doi.org/10.1117/12.2280891

Kvyetnyy R. et al.: Modification of fractal coding algorithm by a combination of modern technologies and parallel computations. Proc. SPIE 9816, 2015, 98161R. DOI: https://doi.org/10.1117/12.2229009

Mishchenko A. V. et al.: A vague model for assessing the security of information security and the level of security of ERP systems. Telecommunications and Information Technologies 66, 2020, 142–151. DOI: https://doi.org/10.31673/2412-4338.2020.011451

Nedashkivskiy O. et al.: Mathematical support for automated design systems for passive optical networks based on the β-parametric approximation formula. International Journal of Advanced Trends in Computer Science and Engineering 9(5), 2020, 8207–8212. DOI: https://doi.org/10.30534/ijatcse/2020/186952020

Nedashkivskiy O.: Precise method of balancing passive optical networks with irregular splitter with two or more outputs. 2nd International Conference on Advanced Information and Communication Technologies (AICT), 2017, 228–231. DOI: https://doi.org/10.1109/AIACT.2017.8020107

Nedashkivskyy O. L. et al.: Methods of creating passive optical networks with the distributing bus topology. Control, Navigation and Communication Systems 2(42), 2017, 206–217.

Shushura O. M.: Infological modeling of information systems subject industries in solving of fuzzy control tasks. Link 2, 2018, 53–56.

Shyian A. A. et al.: Modeling communication between the public and the authorities while implementing innovative projects in the context of e-democracy and public administration. Science and Innovation 16(6), 2021, 18–27. DOI: https://doi.org/10.15407/scine16.06.018

Sonkor M., de Sotob B. G.: Operational Technology on Construction Sites: A Review from the Cybersecurity Perspective. Journal of Construction Engineering and Management 147(12), 2021. DOI: https://doi.org/10.1061/(ASCE)CO.1943-7862.0002193

Trishch R. et al.: Methodology for multi-criteria assessment of working conditions as an object of qualimetry. Engineering Management in Production and Services 13(2), 2021, 107–1141. DOI: https://doi.org/10.2478/emj-2021-0016

Trishch R. et al.: Qualimetric method of assessing risks of low quality products. MM Science Journal 2021, 4769–4774. DOI: https://doi.org/10.17973/MMSJ.2021_10_2021030

Zadeh L.A.: Fuzzy sets. Information and Control 8, 1965, 338–353. DOI: https://doi.org/10.1016/S0019-9958(65)90241-X

Shushura, O. M., Asieieva, L. A., Nedashkivskiy, O. L., Havrylko, Y. V., Moroz, Y. O., Smailova, S. S., & Sarsembayev, M. (2022). SIMULATION OF INFORMATION SECURITY RISKS OF AVAILABILITY OF PROJECT DOCUMENTS BASED ON FUZZY LOGIC . Informatyka, Automatyka, Pomiary W Gospodarce I Ochronie Środowiska, 12(3), 64–68. https://doi.org/10.35784/iapgos.3033

Article Sidebar

Main Article Content

DOI

Authors

Abstract

Keywords:

References

Article Details

License