Ensuring the Economic Security of the Russian Federation in the Term of Regulatory and Methodological Adaptation of IT-Infrastructure
Abstract and keywords
Abstract (English):
The issue of timing of the adaptation of the information security industry of the Russian Federation after the withdrawal of Western vendors from the domestic market and the unstable 2022, which caused other structural changes in the industry, remain open. The issue of the discussion lies in the high competitiveness of products of domestic manufacturers, which at the beginning of 2023 is not capable of influencing the improvement of the quality of information security product components. The authors accepted the conditions under which the solution of the problem of creating their own alternative high-capacity technological IT components in the implementation of the import substitution policy is long-term. The assessment of the prospects for further development of the information security industry of the Russian Federation requires the introduction of an integrated approach: the improvement of instrumental and technical support and the filling of security elements should be supported by high-quality legal regulation. Thus, the article identified and substantiated the need for the development of the domestic information industry in a new vector: the transition from a developing form of information security (IS) to a productive one. In this connection, the methodological tool of the study was to study the list of updated provisions of legal acts regulating measures to ensure information security today, and to compare the current standards with the conditions for the development of the cyber industry of the Russian Federation in the period 2022–2023. On this basis, a list of key vulnerabilities of the IT infrastructure of the Russian Federation in the processes of import substitution of information security elements is presented. Guided by the assessment of the sufficiency of the existing technical IT support and taking into account the identified shortcomings of the regulatory legal acts, directions for reforming the organization of the IT infrastructure and methodology for ensuring the country's information security at all levels (individuals, organizations and the state) were developed.

Keywords:
IT infrastructure; CII subjects; cyber attacks; specialist; cyber literacy; fraud; Information Security; incident; vulnerability; software (software); information security tools (ISZ); Unified Phone Call Verification Platform (SVVV).
Text
Text (PDF): Read Download
References

1. Karchiya,A.A. Pravovye aspekty sovremennoy kiberbezopasnosti i protivodeystviya kiberprestupnosti / A.A.Karchiya, G.I.Makarenko // Voprosy kiberbezopasnosti. - 2023. - №1(53). - S.58-74 // Rezhim dostupa: https://elibrary.ru/item.asp?id=50337103 (data obrascheniya: 18.05.2023).

2. Positive Technologies: otchet «Kiberbezopasnost'. Trendy 2022-2023 godov» // Rezhim dostupa: https://www.ptsecurity.com/ru-ru/research/analytics/ogo-kakaya-ib/ (data obrascheniya: 10.06.2023).

3. Ekspertno-analiticheskiy centr InfoWatch: analiticheskiy otchet po statistike kiberincidentov ASU TP za 2022 god // Rezhim dostupa: https://www.infowatch.ru/analytics/daydz6esty-i-obzory/statistika-kiberintsidentov-asu-tp-za-proshedshiy-god (data obrascheniya: 10.06.2023).

4. Ekspertno-analiticheskiy centr InfoWatch: otchet ob issledovanii utechek informacii ogranichennogo dostupa v 2021 godu // Rezhim dostupa: file:///C:/Users/1/Downloads/utechki-2021-otchyot-InfoWatch%20(1).pdf (data obrascheniya: 10.06.2023).

5. Bezzateev, S.V. Metodika ocenki riskov informacionnyh sistem na osnove analiza povedeniya pol'zovateley i incidentov informacionnoy bezopasnosti / S.V.Bezzateev, T.N.Elina, V.A.Myl'nikov, I.I.Livshic  // Nauchno-tehnicheskiy vestnik informacionnyh tehnologiy, mehaniki i optiki. - 2021. - T. 21. - № 4. - S. 553–561 // Rezhim dostupa: https://elibrary.ru/item.asp?id=46495307 (data obrascheniya: 05.04.2023).

6. Gaysina,A.R. Nesovershenstvo sudebnogo uregulirovaniya voprosov obespecheniya i preduprezhdeniya bezopasnosti kriticheskoy informacionnoy infrastruktury RF / A.R.Gaysina // Teoreticheskie i prikladnye voprosy kompleksnoy bezopasnosti: Mat-ly V Mezhdunar. nauchno-prakt. konf. (g.Sankt-Peterburg, 23 marta 2022 goda). – SPb.: SPb. in-t prirodopol'zovaniya, promyshlennoy bezopasnosti i ohrany okruzhayuschey sredy, 2022. - S.143-147 // Rezhim dostupa: https://elibrary.ru/item.asp?id=48566891 (data obrascheniya: 03.04.2023).

7. FBK Cybersecurity: ekspertnye materialy na temu «Informacionnaya bezopasnost' v Rossii posle ukaza prezidenta №250 ot 1 maya 2022 goda)» // Rezhim dostupa: https://fbkcs.ru/kommentarii-ekspertov-k-ukazu-prezidenta-250-ot-pervogo-maya?ysclid=lh0jkghg8c864296496 (data obrascheniya: 10.06.2023).

8. Rostelekom: otchet «Kiberataki na rossiyskie kompanii v 2022 godu» // Rezhim dostupa: https://rt-solar.ru/upload/iblock/4a4/ghus61x9rd8cv5vczms5ig1svts4tlep/Otchet-o-kiberatakakh-na-rossiyskie-kompanii-v-2022-godu.pdf?ysclid=lhdk36punc703562989 (data obrascheniya: 11.06.2023).

9. Solov'ev,S.V. Sostoyanie i perspektivy razvitiya metodicheskogo obespecheniya tehnicheskoy zaschity informacii v informacionnyh sistemah / S.V.Solov'ev, M.A.Tarelkin, V.V.Tekunov, Yu.K.Yazov // Voprosy kiberbezopasnosti. - 2023. - №1(53). - S. 41-57 // Rezhim dostupa: https://elibrary.ru/item.asp?id=50337102 (data obrascheniya: 06.05.2023).

10. Matveev,V.V. Obespechenie ekonomicheskoy bezopasnosti pri utechke konfidencial'noy informacii / V.V.Matveev, A.K.Zaycev, A.R.Gaysina // Nacional'naya bezopasnost' i strategicheskoe planirovanie. - 2022. - №3(39). - S.52-75 // Rezhim dostupa: https://elibrary.ru/item.asp?id=48566891 (data obrascheniya: 11.04.2023).

11. Korenev,P.V. Aktual'nost' provedeniya issledovaniy v oblasti sozdaniya novyh sposobov poiska uyazvimostey s primeneniem otechestvennyh vysokotehnologichnyh vychislitel'nyh platform / P.V.Korenev, V.A.Pikov, A.G.Vilesov // Voprosy zaschity informacii. - 2022. - №4(139). - S.37-46 // Rezhim dostupa: https://elibrary.ru/item.asp?id=49891088 (data obrascheniya: 14.05.2023).

12. Tolstoy,A.I. Sistematika ponyatiy v oblasti informacionnoy bezopasnosti / A.I.Tolstoy // Bezopasnost' informacionnyh tehnologiy. - 2023. - T.30. - №1. - S.130-148 // Rezhim dostupa: https://elibrary.ru/item.asp?id=50337119 (data obrascheniya: 15.06.2023).

13. Ekspertno-analiticheskiy centr InfoWatch: otchet ob issledovanii utechek informacii ogranichennogo dostupa v I polovine 2022 goda // Rezhim dostupa: https://www.infowatch.ru/sites/default/files/analytics/files/otchyot-ob-utechkakh-dannykh-za-1-polugodie-2022-goda_1.pdf?ysclid=lfee27gic1326182485 (data obrascheniya: 14.06.2023).

14. Ekspertno-analiticheskiy centr InfoWatch: otchet ob issledovanii utechek informacii ogranichennogo dostupa v 2021 godu // Rezhim dostupa: file:///C:/Users/1/Downloads/utechki-2021-otchyot-InfoWatch%20(1).pdf (data obrascheniya: 10.06.2023).

15. Kotenko,I.V. Podsistema preduprezhdeniya komp'yuternyh atak na ob'ekty kriticheskoy informacionnoy infrastruktury: analiz funkcionirovaniya i realizacii / I.V.Kotenko, I.B.Saenko, R.I.Zaharchenko, D.V.Velichko // Voprosy kiberbezopasnosti. - 2023. - №1(53). - S.13-27 // Rezhim dostupa: https://elibrary.ru/item.asp?id=50337100 (data obrascheniya: 19.04.2023).

16. Korolev,V.N. Obespechenie bezopasnosti sub'ekta kriticheskoy informacionnoy infrastruktury / V. N. Korolev // Molodoy uchenyy. - 2021. - №20 (362). - S.31-33 // Rezhim dostupa: https://moluch.ru/archive/362/80964/ (data obrascheniya: 02.04.2023).

17. Zaycev,A.K. Ekonomicheskie prestupleniya s ispol'zovaniem cifrovyh tehnologiy / A.K.Zaycev, V.V.Matveev // Nacional'naya bezopasnost' i strategicheskoe planirovanie. - 2022. - №1 (37). - S. 63-81 // Rezhim dostupa: https://elibrary.ru/item.asp?id=48486986 (data obrascheniya: 05.04.2023).

18. Ekspertno-analiticheskiy centr InfoWatch: otchet o novyh proektah v oblasti biometricheskih personal'nyh dannyh // Rezhim dostupa: https://www.infowatch.ru/analytics/daydzhesty-i-obzory/novye-proekty-v-oblasti-biometricheskikh-personalnykh-dannykh (data obrascheniya: 10.06.2023).

19. Sharamok,A.V. Ob osobennostyah formirovaniya trebovaniy bezopasnosti informacii dlya masshtabiruemoy doverennoy platformy / A.V.Sharamok, D.S.Bragin, O.P.Simonova // Voprosy zaschity informacii. - 2022. - №4(139). - S.13-20 // Rezhim dostupa: https://elibrary.ru/item.asp?id=49891084 (data obrascheniya: 08.06.2023).


Login or Create
* Forgot password?