Асимптотические оценки вероятностей ошибок CRC в некоторых телекоммуникационных протоколах
This paperwork is dedicated to research of k-length CRC value distribution for data interval with volume n. It is shown in research  that CRC value could be represented as a sum of special-way formed random vectors over k-dimension vector space GFk(2) over a two-element 0,1-field (GF(2)).If the message or errors are modeled using independent random 0,1 values sequences, CRC could be regarded as a sum of independent random vector components.
The paperwork examines CRC value distribution’s behavior under conditions of big n’s and fixed values of k. By means of character theory application we find the conditions of asymptotic unification of CRC distribution.
Asymptotic results could be applied for error estimation for various telecommunication protocols (e.g. USB, X.25, HDLC, Bluetooth, Ethernet and others).
Widespread acceptance and adoption of cloud computing calls for adaptation and development of existing risk assessment models of information systems. The approach suggested in this article can be used for risk assessment of information systems functioning on the basis of cloud computing technology, and assess the effectiveness of security measures.
Separating codes have been used in many areas as diverse as automata synthesis, technical diagnosis and traitor tracing schemes. In this paper, we study a weak version of separating codes called almost separating codes. More precisely, we derive lower bounds on the rate of almost separating codes. From the main result it is seen that the lower bounds on the rate for almost separating codes are greater than the currently known lower bounds for ordinary separating codes. Moreover, we also show how almost separating codes can be used to construct a family of fingerprinting codes.
Some provisions of SWOT analysis and assessment of its productivity in business are criticized.
The use of hardware virtualization for ensuring information security is discussed. A review of various approaches to improving the security of software systems based on virtualization is given. A review of possible scenarios of using virtualization by intruders is also presented. The application domains and limitations of the available solutions and perspectives of future development in the field are discussed.
This paperwork overviews core technologies implemented by comparably new products at information security market - web application firewalls. Web applications are a very wide-used and convenient way of presenting remote users with access to corporate information resources. It can however become single point of failure rendering all the information infrastructure unreachable for legitimate clients. To prevent malicious access attempts to endpoint information resources and, intermediately, to web server, a new class of information security solutions has been created. Web application firewalls function at the highest, seventh layer of ISO/OSI model and serves as a controlling tunnel for all the traffic heading to and from company’s web application server(s). To ensure decent levels of traffic monitoring and intrusion prevention web application firewalls are equipped with various mechanisms of data exchange session “normalness” control. These mechanisms include protocol check routines, machine learning techniques, traffic signature analysis and more dedicated means like denial of service, XSS injection and CRRF attack prevention. Ability to research and add user rules to be processed along with vendor-provided ones is important since every company has its own security policy and, therefore the web application firewall should provide security engineers with ways to tweak its rules to reflect the security policy more precisely. This research is based on wide practice experience integrating web application firewalls into security landscape of various organizations, their administration and customization. We illustrate our research of available filtering mechanisms and their implementations with example product features by market leaders, schemes and screenshots from real web application firewall systems.
The Conference is focused on the actual problems in the field of Quality Management, Transport and Information Security, Information Technologies (Navigation and Information Systems, Information Security Systems and Computer Security, Transport Security Management, Information and Communication Technologies in Education, Scientific Research and Economy, Automation of Business Processes, Automated Systems of Control and Quality Management, Quality Management Systems including Integrated Systems of Quality Management of Information Systems (Implementation, Certification, Auditing), Engineering Management, IT Service Management, Management of Projects and Risks as well as other issues related to the field). Previous Conferences on these topics revealed great interest of both Russian and foreign researchers in this issues. Organizing and hosting the 2016 IEEE Conference on Quality Management, Transport and Information Security, Information Technologies (IT&MQ&IS) in Russia is of great value for exchange of research ideas and practical results in this field, for discovering new problems and development trends, for development of new effective practical methods and tools targeted on solving complex practical problems. During the IT&MQ&IS 2016 Conference sessions, it is expected and planned to discuss a wide range of issues, both of theoretical and practical value. One of the key Conference aims is also attracting young researchers and practitioners to discussions and exchange of ideas with the professional community.
This proceedings publication is a compilation of selected contributions from the “Third International Conference on the Dynamics of Information Systems” which took place at the University of Florida, Gainesville, February 16–18, 2011. The purpose of this conference was to bring together scientists and engineers from industry, government, and academia in order to exchange new discoveries and results in a broad range of topics relevant to the theory and practice of dynamics of information systems. Dynamics of Information Systems: Mathematical Foundation presents state-of-the art research and is intended for graduate students and researchers interested in some of the most recent discoveries in information theory and dynamical systems. Scientists in other disciplines may also benefit from the applications of new developments to their own area of study.