nach oben

Erschienen in:

2022 | OriginalPaper | Buchkapitel

Software Package for Training Users to Respond to Information Security Incidents in Industrial Automated Systems

verfasst von : M. Tumbinskaya, A. Abzalov, I. Davydova

Erschienen in: Advances in Automation III

Verlag: Springer International Publishing

Einloggen

Aktivieren Sie unsere intelligente Suche, um passende Fachinhalte oder Patente zu finden.

search-config

KI-gestützte Suche

Aus

Abstract

The article considers the issue of increasing the level of security of industrial automated systems by automating the training of users to respond to information security incidents. A software package for training users to respond to information security incidents in industrial automated systems is proposed. The article presents an overview of the information security state in industrial automated systems: the damage from cyber threats, types of attacks and objects of attacks in industrial automated systems, confidential information of the attackers’ interest. The study examined the impact of the users’ information security knowledge level on improving the quality of users’ response to information security incidents to increase the level of industrial automated systems security and prevent information security threats. 4 classes of attacks were investigated: 1) attacks using malicious software, 2) DoS-type attacks, 3) attacks using social engineering methods, 4) credential matching attacks. The results of the study and experimental data confirm the effectiveness of the proposed software package, which made it possible to increase the industrial automated system security level by an average of 28%.

Sie haben noch keine Lizenz? Dann Informieren Sie sich jetzt über unsere Produkte:

Springer Professional "Wirtschaft+Technik"

Online-Abonnement

Mit Springer Professional "Wirtschaft+Technik" erhalten Sie Zugriff auf:

über 102.000 Bücher
über 537 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Finance + Banking
Management + Führung
Marketing + Vertrieb
Maschinenbau + Werkstoffe
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

Jetzt informieren

Springer Professional "Technik"

Online-Abonnement

Mit Springer Professional "Technik" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 390 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Maschinenbau + Werkstoffe

Jetzt Wissensvorsprung sichern!

Jetzt informieren

Springer Professional "Wirtschaft"

Online-Abonnement

Mit Springer Professional "Wirtschaft" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 340 Zeitschriften

aus folgenden Fachgebieten:

Bauwesen + Immobilien
Business IT + Informatik
Finance + Banking
Management + Führung
Marketing + Vertrieb
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

Jetzt informieren

Vorheriges Kapitel A System for Detecting and Detecting Defects in Sheet Metal on Grayscale Images

Nächstes Kapitel Application TRIKE Methodology When Modeling Threats to APCs Information Security

Wang, X., Shuai, N.: The multilevel comprehensive grey evaluation model for enterprise training effect. In: International Workshop on Education Technology and Training & 2008 International Workshop on Geoscience and Remote Sensing, pp. 51–54 (2009)

Mokhtar, I.A., Majid, S., Foo, S.: Using information technology to improve health information literacy in Singapore-an exploratory study. In: IEEE International Conference on Information & Communications Technology, pp. 1–2 (2007)

Komalasari, N., Murad, D.F., Agustine, D., Irsan, M., Budiman, J., Fernando, E.: Effect of education, performance, position and information technology competency of information systems to performance of information system. In: IEEE International Seminar on Research of Information Technology and Intelligent Systems, pp. 221–226 (2019)

Lee, J., Kim, Y.S., Kim, J.H., Kim, I.K.: Toward the SIEM architecture for cloud-based security services. In: IEEE Conference on Communications and Network Security, pp. 398–399 (2017)

Okubo, N., Nara, K., Takemura, S., Ueda, Y.: Applying an instructional design process to development of an independent verification and validation training program. In: IEEE 29th International Conference on Software Engineering Education and Training, pp. 237–240 (2016)

Kumar, S., Arekar, K., Jain, R.: The impact of effectiveness of the simulator training program on different factors of needs and interest of the training. In: IEEE International Conference on Next Generation Computing Technologies, pp. 485–489 (2017)

Belikova, T., Lekakh, A., Dovbenko, O., Dodukh, O.: Method of increasing the capacity of information threat detection filters in modern information and communication systems. In: IEEE International Conference on Advanced Information and Communications Technologies, pp. 426–429 (2019)

Hershey, P., Silio, C.B.: Systems engineering approach for event monitoring and analysis in high speed enterprise communications systems. In: Annual IEEE Systems Conference, pp. 344–349 (2009)

Rathnayake, N., Meedeniya, D., Perera, I., Welivita, A.: A framework for adaptive user interface generation based on user behavioural patterns. In: IEEE Moratuwa Engineering Research Conference, pp. 698–703 (2019)

10.

Tomilin, A., Tumbinskaya, M., Tregubov, V., Smolevitskaya, M.: The BESM-6 virtualization project. In: IEEE International Conference on Computer Technology in Russia and in the Former Soviet Union, pp. 241–245 (2017)

11.

Gizatullin, Z., Gizatullin, R., Drozdikov, V.: Research of noise immunity of computer equipment of control systems under action of pulsed magnetic field. In: IEEE International Russian Automation Conference, pp. 65–69 (2019)

12.

Gizatullin, Z., Shkinderov, M., Arkhipov, A.: Research of resonant effects in interconnects of multilayer PCB of computing equipment. In: IEEE International Conference of Russian Young Researchers in Electrical and Electronic Engineering, pp. 116–119 (2020)

13.

Gizatullin, Z., Konstantinov, E.: Technique for research spurious electromagnetic emission from electronic means. In: IEEE International Russian Automation Conference, pp. 380–384 (2020)

14.

Akanmu, S.A., Jamaludin, Z.: A user-centered design methodology for students’ data-focused InfoVis. In: IEEE International Conference on User Science and Engineering, pp. 115–118 (2015)

15.

Ahma, I., Jaafar, A.: Games design and integration with user’s emotion. In: IEEE International Conference on User Science and Engineering, pp. 69–72 (2012)

16.

Ying, J., Gračanin, D.: Poster: an approach to development of adaptive 3D user interfaces. In: IEEE Symposium on 3D User Interfaces, pp. 169–170 (2012)

17.

Hasim, W., Wibirama, S., Nugroho, H.A.: Redesign of E-participation using user-centered design approach for improving user experience. In: IEEE International Conference on Information and Communications Technology, pp. 857–861 (2019)

18.

Li, M., Li, L., Jiao, R., Xiao, H.: Virtrul reality and artificial intelligence support future training development. In: IEEE Chinese Automation Congress, pp. 416–419 (2018)

19.

Gibadullin, R.F., Baimukhametova, G.A., Perukhin, M.Yu.: Service-oriented distributed energy data management using big data technologies. In: IEEE International Conference on Industrial Engineering, Applications and Manufacturing, pp. 45–49 (2019)

20.

Sharipov, R., Tumbinskaya, M., Abzalov, A.: Analysis of users’ keyboard handwriting based on Gaussian reference signals. In: IEEE International Russian Automation Conference, pp. 28–32 (2019)

21.

Garae, J., Ko, R.K.L., Apperley, M.: A full-scale security visualization effectiveness measurement and presentation approach. In: IEEE International Conference on Trust, Security and Privacy in Computing and Communications, pp. 639–650 (2018)

22.

The total losses from cyber incidents in the world are about $ 3.5 billion. https://www.securitylab.ru/blog/company/AngaraTech/347774.php

23.

Industrial companies: attack vectors. https://www.ptsecurity.com/ru-ru/research/analytics/ics-attacks-2018/

24.

Do not extinguish the light: how to protect industrial control systems from attacks from Industroyer and similar malware. https://www.ptsecurity.com/ru-ru/research/analytics/ics-attacks-2018/

25.

Gibadullin, R.F., Vershinin, I.S., Minyazev, R.Sh.: Development of load balancer and parallel database management module. In: IEEE International Conference on Industrial Engineering, Applications and Manufacturing, pp. 33–39 (2018)

26.

Yakimov, I., Tregubov, V., Tumbinskaya, M.: Creation of a unified industrial basis for the development and supply of applied research program packages at the Kazan computer factory. In: IEEE International Conference on Computer Technology in Russia and in the Former Soviet Union, pp. 126–130 (2017)

27.

Petrovsky, V., Tumbinskaya, M.: The history and prospects of information security at Russian enterprises. In: IEEE International Conference on Computer Technology in Russia and in the Former Soviet Union, pp. 150–153 (2014)

28.

Gumerov, V., et al.: Quality functions modeling of industrial enterprises products. Int. Rev. Manage. Market. 6(1), 165–169 (2016)

29.

Tumbinskaya, M.V.: Process of distribution of undesirable information in social networks. Bus. Inform. 3, 65–76 (2017)CrossRef

30.

Tumbinskaya, M.V., Bayanov, B.I., Rakhimov, R., Kormiltcev, N.V., Uvarov, A.D.: Analysis and forecast of undesirable cloud services traffic. Bus. Inform. 13(1), 71–81 (2019)CrossRef

Titel: Software Package for Training Users to Respond to Information Security Incidents in Industrial Automated Systems
verfasst von: M. Tumbinskaya
A. Abzalov
I. Davydova
Verlag: Springer International Publishing
Buch: Advances in Automation III
Print ISBN: 978-3-030-94201-4

Electronic ISBN: 978-3-030-94202-1

Copyright-Jahr: 2022
DOI: https://doi.org/10.1007/978-3-030-94202-1_41

Springer Professional

Abstract

Bitte loggen Sie sich ein, um Zugang zu Ihrer Lizenz zu erhalten.

Sie haben noch keine Lizenz? Dann Informieren Sie sich jetzt über unsere Produkte:

Springer Professional "Wirtschaft+Technik"

Springer Professional "Technik"

Springer Professional "Wirtschaft"