Development of an algorithmic system for detecting and disarming threats based on functioning tables

Abstract

The article provides an analysis of known existing systems designed to collect and automatically analyze events of various information in order to identify threats. Their disadvantages are given. An algorithmic model of information security based on tables of functioning is proposed as a mathematical tool for modeling dynamic discrete systems for detecting and neutralizing threats while ensuring information protection. A method for assessing information security risks and ensuring the confidentiality of information resources is given. The features of working with data flows, management and control over them are considered, mathematical solutions for assessing the protection of information resources and various aspects of assessing the economic effectiveness of ensuring the confidentiality of information resources are presented. One of the ways of analyzing the security of the system is proposed - the construction of dynamic tables of functioning. The description of the main functions and requirements of automatic threat detection and neutralization based on the tables of operation based on the functioning tables (FT) is considered.