Synthesis of models for ensuring information security of subjects of critical information infrastructure under destructive influences

Abstract

The transition to the digital economy is not possible without considering the issues of creating a modern information infrastructure, which is confirmed by a number of documents adopted at the level of the President and the Government of the Russian Federation. One of the main problems in the implementation of these documents is associated with the creation of an effective system for managing the information infrastructure of state bodies, state institutions, Russian legal entities and (or) individual entrepreneurs who are subjects of critical information infrastructure (hereinafter – SCII). At the same time, the task facing the heads of the SCII, who in this case bear criminal responsibility for the low level of reliability of the subject, is associated with the creation of an effective management system for the operation of facilities of the CII. The existing regulations of the regulators on the safety of the SCII fix the composition of the factors influencing the facilities of the SCII. Strict regulation in this matter increases the level of error in the complex assessment of information security (hereinafter – SCII) of the subject, therefore, leads to a decrease in the level of requirements already at the stage of categorizing objects. The proposed solution is a synthesis of cognitive and logical-probabilistic approaches, taking into account destructive influences on the infrastructure in dynamics at all stages of the life cycle of a critical information infrastructure (hereinafter – SCII) objects.