Building an analytical system for event analysis to ensure information security of the enterprise
The task of ensuring information security of critical information structures in the Russian Federation is brought to the state level. It requires ensuring the security of information systems, communication networks and technological systems. To prevent possible incidents and meet the requirements of...
Main Authors: | , |
---|---|
Format: | Article |
Language: | English |
Published: |
Joint Stock Company "Experimental Scientific and Production Association SPELS
2019-03-01
|
Series: | Безопасность информационных технологий |
Subjects: | |
Online Access: | https://bit.mephi.ru/index.php/bit/article/view/1175 |
_version_ | 1797760580541480960 |
---|---|
author | Svetlana A. Kuzmicheva Olesya V. Tarabrina |
author_facet | Svetlana A. Kuzmicheva Olesya V. Tarabrina |
author_sort | Svetlana A. Kuzmicheva |
collection | DOAJ |
description | The task of ensuring information security of critical information structures in the Russian Federation is brought to the state level. It requires ensuring the security of information systems, communication networks and technological systems. To prevent possible incidents and meet the requirements of the state the organizations should create a security system for the critical information structures, ensure its functionality, and connect it to National coordination center for computer incidents in order to collect and exchange information about computer attacks. In this paper the authors present an approach to the development of an analytical system for information security based on machine learning, which allow analyzing a large number of events and making informed decisions on information security management. A list of the main sources of information security events of systems and networks was worked out, and a classification of events for further analysis using machine learning was proposed. By classifying the events obtained from different systems, as well as applying an integrated approach to assessing the situation, it is possible to draw a conclusion about the state of the entire object to be protected in real time. |
first_indexed | 2024-03-12T19:00:39Z |
format | Article |
id | doaj.art-c5894b80a90e451a8068b792f5fe18ee |
institution | Directory Open Access Journal |
issn | 2074-7128 2074-7136 |
language | English |
last_indexed | 2024-03-12T19:00:39Z |
publishDate | 2019-03-01 |
publisher | Joint Stock Company "Experimental Scientific and Production Association SPELS |
record_format | Article |
series | Безопасность информационных технологий |
spelling | doaj.art-c5894b80a90e451a8068b792f5fe18ee2023-08-02T06:39:48ZengJoint Stock Company "Experimental Scientific and Production Association SPELSБезопасность информационных технологий2074-71282074-71362019-03-0126161410.26583/bit.2019.1.011127Building an analytical system for event analysis to ensure information security of the enterpriseSvetlana A. Kuzmicheva0Olesya V. Tarabrina1National Nuclear Research University MEPHIBauman Moscow State Technical UniversityThe task of ensuring information security of critical information structures in the Russian Federation is brought to the state level. It requires ensuring the security of information systems, communication networks and technological systems. To prevent possible incidents and meet the requirements of the state the organizations should create a security system for the critical information structures, ensure its functionality, and connect it to National coordination center for computer incidents in order to collect and exchange information about computer attacks. In this paper the authors present an approach to the development of an analytical system for information security based on machine learning, which allow analyzing a large number of events and making informed decisions on information security management. A list of the main sources of information security events of systems and networks was worked out, and a classification of events for further analysis using machine learning was proposed. By classifying the events obtained from different systems, as well as applying an integrated approach to assessing the situation, it is possible to draw a conclusion about the state of the entire object to be protected in real time.https://bit.mephi.ru/index.php/bit/article/view/1175analytical system, user behavior analytics, source of informational security events, analyze of events, machine learning, neural networks. |
spellingShingle | Svetlana A. Kuzmicheva Olesya V. Tarabrina Building an analytical system for event analysis to ensure information security of the enterprise Безопасность информационных технологий analytical system, user behavior analytics, source of informational security events, analyze of events, machine learning, neural networks. |
title | Building an analytical system for event analysis to ensure information security of the enterprise |
title_full | Building an analytical system for event analysis to ensure information security of the enterprise |
title_fullStr | Building an analytical system for event analysis to ensure information security of the enterprise |
title_full_unstemmed | Building an analytical system for event analysis to ensure information security of the enterprise |
title_short | Building an analytical system for event analysis to ensure information security of the enterprise |
title_sort | building an analytical system for event analysis to ensure information security of the enterprise |
topic | analytical system, user behavior analytics, source of informational security events, analyze of events, machine learning, neural networks. |
url | https://bit.mephi.ru/index.php/bit/article/view/1175 |
work_keys_str_mv | AT svetlanaakuzmicheva buildingananalyticalsystemforeventanalysistoensureinformationsecurityoftheenterprise AT olesyavtarabrina buildingananalyticalsystemforeventanalysistoensureinformationsecurityoftheenterprise |