• A
  • A
  • A
  • ABC
  • ABC
  • ABC
  • А
  • А
  • А
  • А
  • А
Regular version of the site
  • HSE University
  • Publications of HSE
  • Articles
  • Один из подходов к управлению информационной безопасностью при разработке информационной инфраструктуры организации

Article

Один из подходов к управлению информационной безопасностью при разработке информационной инфраструктуры организации

Царегородцев А. В., Качко А. К.

Modeling threats and vulnerabilities of information security is widely used as a foreign practices and recommendations of national standards . The key disadvantage of the methods is the lack of a formalized description of conceptual solutions for the design of information systems. In this regard, the article proposes to consider a special variant of the description of the conceptual solution in the form of formalized '' models'' . This is an important step in establishing links between business requirements and capabilities of information technology. The article proposes to improve existing solutions architecture, consisting of three key components: the modeling component and architectural risk analysis module .