Quarterly journal published in SPbPU
and edited by prof. Dmitry Zegzhda
Peter the Great St. Petersburg Polytechnic University
Institute of computer sciences and technologies
information security of computer systems
Information Security Problems. Computer Systems
Published since 1999.
ISSN 2071-8217
MATHEMATICAL MODEL OF INFORMATION SECURITY EVENT MANAGEMENT USING MARKOV CHAIN IN INDUSTRIAL SYSTEMS
G. A. Markov, V. M. Krundyshev, D. P. Zegzhda Jet Infosystems St. Petersburg Polytechnic University of Peter the Great
Annotation: This paper examines the problem of ensuring information security in industrial Internet of Things systems. The study found that in order to comprehensively protect the information perimeter of an industrial enterprise from external and internal threats, in most cases information security event and incident management systems (SIEM systems) with customized rules for correlating events in the information infrastructure are used. At the same time, there is a need to create a mathematical apparatus that allows one to accurately and objectively assess the effectiveness of the SIEM system. As a result of the study, the problem of preventing information security incidents in industrial Internet of Things systems was formalized based on the developed mathematical model for managing information security events using a continuous-time Markov chain.
Keywords: mathematical model, industrial Internet of things, information security event management, Markov chains, SIEM system
Pages 20–30