Open AccessMethods for assessing the efficiency of access control subsystems at informatization facilities of internal affairs bodies and aspects of their improvement
Author(s) -
A. V. Batskikh,
V. V. Konobeevskikh,
S. V. Efimov
Publication year - 2021
Publication title -
vestnik dagestanskogo gosudarstvennogo tehničeskogo universiteta. tehničeskie nauki
Language(s) - English
Resource type - Journals
eISSN - 2542-095X
pISSN - 2073-6185
DOI - 10.21822/2073-6185-2021-48-2-29-39
Subject(s) - informatization , computer science , information security , information system , control (management) , risk analysis (engineering) , computer security , information security management system , information security management , access control , security service , engineering management , security information and event management , cloud computing security , engineering , business , telecommunications , cloud computing , electrical engineering , artificial intelligence , operating system
Objective. The purpose of the article is to analyse the existing methodology used to assess the efficiency of automated information security systems by studying open literature sources, international and industry standards of the Russian Federation on information security of automated systems, guidelines and orders of the Federal Service for Technical and Expert Control of Russia, as well as departmental orders, instructions and regulations on information security at informatization facilities of internal affairs bodies. The analysis results in identifying the advantages and disadvantages of the specified methodology, as well as the possibilities of its use when conducting a quantitative assessment of the efficiency of access control subsystems of information security systems at the informatization facilities of internal affairs bodies.Methods. To achieve this goal, the method for system analysis of approaches used to assess the efficiency of information security tools and systems has been applied.Results. The paper presents results of analysing the main approaches used to assess the efficiency of tools and systems for information security of automated systems. The paper determines the relationship between the efficiency indicator of access control subsystems of information security systems and the main disadvantage of their use in protected automated systems of internal affairs bodies. The paper substantiates main directions of improving the existing methodology, proposes methods and indicators for quantifying the efficiency of access control subsystems (including those modified on the basis of using new information and communication technologies) of information security systems in protected automated systems of internal affairs bodies.Conclusion. The results obtained can be used to quantify the security level of existing automated systems and those being developed at informatization facilities of internal affairs bodies.