CONCEPTUAL-GNOSEOLOGICAL ASPECTS OF INFORMATION SAFETY (SECURITY) FROM THE POSITION OF SOCIAL ENGINEER-ING

  • Y. Tarasenko Associate Professor, phys.-math. Sciences Department of сybersecurity and Information тechnology University of Customs and Finance, Ukraine, Dnipro https://orcid.org/0000-0002-2692-088X
  • V. Soliannikov Master's student Department of сybersecurity and Information тechnology University of Customs and Finance
  • A. Kalyuzhnyy Master's student Department of сybersecurity and Information тechnology University of Customs and Finance
Keywords: social engineering, information security, cyber-attack, cyber safety, information security, key information infrastructure systems, critical objects.

Abstract

A possible increase in the reliability of information security in a specific area of human activity is considered from the standpoint of the mandatory performance of regular routine maintenance with strict control of compliance with the code of business conduct in conjunction with the implementation and implementation of systems to ensure the anonymity of the personnel involved, for example, employees of critical facilities or key information infrastructure systems.
Analysis of publications on conceptual, organizational, legal, engineering, software and mathematical and their complex aspects of information security of key information infrastructure systems shows that there is still a weak point - the so-called "human factor". This determines the urgency of the problem of generali-zation of the basic principles of information security by implementing an additional system of information security (security) from the standpoint of the use of social engineering.
The very concept of "social engineering", symbolically formed in the form of a generalized form of implementation of the engineering approach in the social sphere, should correspond to the specifics of engineering. Therefore, in scientific publications, directly, social engineering, as a special kind of activity, is focused on purposeful change and regulation of various organizational structures (social insti-tutions, formal organizations, etc.).
This determines the urgency of the problem of generalization of the basic principles of information security, clarification of the possibility of implementing a system of anonymity of personnel in protection against cyber-attacks through social engineering and, from the standpoint of modern cyber safety, development of rec-ommendations for improving the reliability of information protection. Discerned and revealed in reality the advancement of the hopes of information abduction in a specific hallucination of human activity.

References

1. ISO / IEC 17007: 2009 «Conformity assessment - Guidance for drafting normative documents suitable for conformity assessment».
2. ISO / IEC 17000: 2004, Conformity assessment - Vocabulary and general principles.
3. Sotsialʹna inzheneriya ta sotsialʹni khakery / M. V. Kuznyetsov, I. V. Simdyanov. - SPb .: BKHV-Peterburh, 2007. 368 p.
4. ISO/IEC 27032:2012. Information technology — Security techniques — Guidelines for cybersecurity.
5. Zakon Ukrayiny Pro osnovni zasady zabezpechennya kiberbezpeki Ukrayiny ot 05.10.2017 N 2163-VIII. (Vidomosti Verkhovnoyi Rady (VVR) 2017, № 45, st.403). {Iz zminami, vnesenymy sohlasno iz Zakonamy № 2469-VIII vid 21.06.2018, VVR, 2018, № 31, st.241, № 720-IX vid 17.06.2020, VVR, 2020 roku, № 47, st.408, № 912 -IX vid 17.09.2020}.
6. Shchomisyachne dodatok do zhurnalu «Standarty ta yakistʹ». Ekolohichni aspekty problem nadiynosti i bezpeku tekhnichnykh system. «Osnovni ponyattya bezpeky». Alpyeyev A.S. M., 1994, vyp. 7.
7. Istoriya ta osnovy informatsiynoyi triady bezpeky: tsilisnistʹ, dostupnistʹ, konfidentsiynistʹ. 1 Bereznya, 2018. URL: https://falcongaze.ru/pressroom/publications/articles/security-triad.html.
8. Ivanchenko O.V. Kontseptsiya upravlinnya hotovnistyu krytychnykh infrastruktur na osnovi zastosuvannya informatsiynykh tekhnolohiy / O.V.Ivanchenko, K.V.Smoktiy, O.D.Smoktiy, V.S.Kharchenko // Systemy ta tekhnolohiyi. 2016. Vyp.1 (55). S.5-23.
9. Porodin D. Zakhyst klyuchovykh system informatsiynoyi infrastruktury Zhurnal "Information Security / Informatsiyna bezpeka" №3, 2012.
10. Bezpeka klyuchovykh system informatsiynoyi infrastruktury: tochka doviry. Laboratoriya Kaspersʹkoho 10.16, 2012.
11. Kubantsi A.N., Kubantsi Yu.A. Vlastyvosti protsesu zakhystu informatsiyi, shcho vyznachayutʹ yoho yakistʹ // Standarty i yakistʹ. 2016, №9. P. 104-107.
12. Kubantsi A.N., Kubantsi Yu.A., Symonov P.I. Pidkhody do kompleksnoho vymiryuvannya yakosti zakhystu informatsiyi. // Tekhnolohiyi informatsiynoho suspilʹstva. Zb. pratsʹ XI Mizhnarodnoyi haluzevoyi naukovo-tekhnichnoyi konferentsiyi «Tekhnolohiyi informatsiynoho suspilʹstva». M .: TOV «VD Media Pablysher», 2017. pp.280-282.
13. Dumky pro idealʹnu anonimnosti / Pres-tsentr kompaniyi Whoer.net, URL: https://habr.com/company/whoer/blog/2016.
14. Potashnyk A.M. Metody vyyavlennya ta vidstezhennya ob'yektiv v systemakh videosposterezhennya na osnovi system komp'yuternoho zoru // Tekhnolohiyi informatsiynoho suspilʹstva. Zb. pratsʹ XI Mizhnarodnoyi haluzevoyi naukovo-tekhnichnoyi konferentsiyi «Tekhnolohiyi informatsiynoho suspilʹstva». M.: TOV «VD Media Pablysher» 2017 pp.149-151.
15. Yashyna M.V., Tolmachov A.A. Metody rozpiznavannya obraziv dlya otsinky kharakterystyk pishokhidnykh potokiv // Tekhnolohiyi informatsiynoho suspilʹstva. Zbirnyk pratsʹ XI Mizhnarodnoyi haluzevoyi naukovo-tekhnichnoyi konferentsiyi «Tekhnolohiyi informatsiynoho suspilʹstva». M .: TOV «VD Media Pablysher» 2017. pp.466-468.
16. Popova L. P., Datʹev I.O. Ohlyad isnuyuchykh metodiv rozpiznavannya obraziv. M .: Zbirnyk naukovykh pratsʹ, 2007. 11 p.
17. Zenin A. V. Analiz metodiv rozpiznavannya obraziv // Molodyy vchenyy. 2017. №16. P. 125-130. URL: https://moluch.ru/archive/150/42393/.
18. Tarasenko Yu.S. Fizychni osnovy radiolokatsiyi. Dnipro: Porohy, 2011. 487 p.
Published
2021-06-09
How to Cite
Tarasenko, Y., Soliannikov, V., & Kalyuzhnyy, A. (2021). CONCEPTUAL-GNOSEOLOGICAL ASPECTS OF INFORMATION SAFETY (SECURITY) FROM THE POSITION OF SOCIAL ENGINEER-ING. Systems and Technologies, 60(2), 92-101. https://doi.org/10.32836/2521-6643-2020.2-60.6