Typing of data transfer processes in the information system within the   framework of threat modeling

E.S. Romanova; A.K. Novokhrestov; A.A. Konev

arXiv:2301.12706·cs.CR·January 31, 2023

Typing of data transfer processes in the information system within the framework of threat modeling

E.S. Romanova, A.K. Novokhrestov, A.A. Konev

PDF

Open Access

TL;DR

This paper proposes a method to automate threat identification in information systems by formalizing and typifying data transfer processes, including developing process schemes that depict transmission channels and information carriers.

Contribution

It introduces a formal typification of data transfer processes and develops process schemes to enhance threat modeling in information systems.

Findings

01

Formal typification of data transfer processes

02

Development of process schemes with transmission channels

03

Automated threat identification framework

Abstract

Work is aimed at automating the process of obtaining a list of security threats aimed at the information system in the work processes of data transfer are considered, definitions for each process are presented. The typification of processes and the formalization of the list of basic data transfer processes are considered. Based on the presented typical data transmission processes, schemes of these processes have been developed that describe transmission channels and information carriers.

Peer Reviews

No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.

Videos

No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.

Taxonomy

TopicsAdvanced Data Processing Techniques · Economic and Technological Systems Analysis