RU2748745C1 - Method for monitoring and managing information security of data transmission network nodes - Google Patents

Abstract

FIELD: information security.

SUBSTANCE: method includes preliminary structural and functional modeling (hereinafter – SFM) of the data transmission network (hereinafter – DTN) node on the basis of established algorithms for its functioning and with sufficient detail for a given category of importance, setting for each time interval of sampling a sequence of measurements and the composition of a group of controlled parameters (hereinafter – CP) that characterize the security of logical tasks and functional processes depending on the category of importance and the speed of data processing at the DTN node, calculating partial indicators of information security, comparison of the calculated values with the required ones, as well as optimizing the sequence of measurements of CP values by adjusting the SFM of the DTN node to reduce the duration of measurements and data processing.

EFFECT: increased reliability of control results, as well as increased control efficiency.

6 cl, 7 dwg

Description

The invention relates to the field of information security, in particular, to methods of monitoring and control of automated systems and communication systems. The invention is intended to assess the compliance of the state of various samples of telecommunication equipment and the processes of interaction between them with the established requirements for ensuring the security of information exchange.

A known method for monitoring the state of the data transmission network (patent RU 2610287, IPC G06F 17/27 2006.01). The method is intended to ensure the promptness of detecting an abnormal situation when monitoring the state of the data transmission network. The technical result is achieved due to the fact that for each monitored parameter, a domain of definition is set from a range of possible values, for each monitored parameter within each domain of definition, a membership function is set, allowing to determine a fuzzy set, the values of each controlled parameter are converted into a fuzzy variable by means of a membership function fuzzy variables are combined into input linguistic variables, output linguistic variables are formed, and a decision is made on the state of the data transmission network based on the values of the output linguistic variables.

The disadvantages of this method are the relatively low efficiency of assessing the state of the controlled object, due to the lack of control over the fulfillment of the specified requirements for the timeliness of control results and control mechanisms for the control efficiency. The method does not allow to control the sequence of logical tasks and functional processes in the construction and operation of channels and data transmission paths. The relatively low reliability of the control results is due to the fact that the influence of the previous states of the controlled objects (aftereffect) on the security of information exchange through channels and paths built with violations of the sequence and regulations of functional processes is not taken into account.

A known system for monitoring computer security events (useful model RU 148692, IPC G06F 21/51 (2013.01)) is designed to detect and identify destructive computer security events in real time. The system includes tools for collecting events, searching for solutions, registering an incident and analyzing events, a data control unit that ensures the reduction of all signs of events to a single range of values, analysis of the input stream of events in a computer system with the subsequent allocation of a key sign in each event, extraction from the whole flow of events that destructively affect the security of information resources.

The disadvantages of this analogue are: the relatively low reliability of the control results, due to the fact that for assessing information security, all signs of events are reduced to a single range of values, and the specified algorithms for the functioning of the nodes of the information system are not checked.

There is a known method for analyzing and detecting malicious intermediate catches in the network (patent RU 2495486, IPC G06 21/00 (2013.01)), which consists in examining connections between network nodes, building a graph of connections between network nodes and automatically analyzing changes in connections between nodes with detection and blocking addresses of malicious intermediate nodes.

In contrast to the previous considered analogs, this method allows one to investigate sequential changes in the relationships between network nodes, which ensures an increase in the reliability of the control results. At the same time, the method has the disadvantage that there are no control mechanisms for the control efficiency, which does not allow for real-time detection of malicious nodes with a given reliability of the control results.

The closest analogue (prototype) of the claimed method is a method for monitoring the safety of automated systems (patent RU 2646388, IPC G06F 15/00, (2006.01)). The method improves the reliability of the analysis of the state of the automated system in real time with unstable network interactions with the monitoring tool.

The method consists in the following sequence of actions. A set of N> 2 monitored parameters characterizing the safety AC, M> N reference values of monitored parameters, a data array {D} for storing a sign of incomplete measurement of values of monitored parameters of the g-th group and the value of the status word of the monitoring program at the time of interruption of the measurement of values are preset controlled parameters. G> 2 groups of controlled parameters are formed from the number of predetermined controlled parameters. Each g-th group of monitored parameters, where g = 1, 2,…, G, characterizes the safety of the g-th structural element and / or functional process of the nuclear power plant. For each g-group of monitored parameters, the importance coefficient K_gc, maximum Δf_gmax and the minimum Δtgmin values of the time intervals for measuring the values of the monitored parameters and the point in time Tgreport of generating the NPP safety report. Select g group of monitored parameters. Set the value of the time interval ΔT_g measuring the values of the monitored parameters of the g-th group equal to the maximum Δt_{g max}... Measure the values of the parameters in each of the G groups. The measured values of the monitored parameters are compared with the reference ones, if they coincide, the time T is compared_g measurement of values of controlled parameters with a given time point T_gotch report generation and at T_g<T_gotch... Check for a sign of incomplete measurement of the values of the monitored parameters of the g-th group in the array {D}. In the absence of a sign of incomplete measurement of the values of the monitored parameters of the g-th group in the array {D}, proceed to measuring the values of the monitored parameters in each of the G groups, and after memorizing the measured values of the monitored parameters that do not coincide with the reference ones, the availability of the g-th structural element of the automated system is checked for measuring the values of the controlled parameters. If available, proceed to adjusting the value of the time interval of measurements of the values of the monitored parameters according to the formula ΔТ_gcor= ΔT_g/ K_gc, and if the g-th structural element is unavailable, a sign of incomplete measurement of the values of the monitored parameters of the g-th group in the array {D} is set, the value of the status word of the monitoring program is stored in the array {D} at the moment of interruption of the measurement of the values of the monitored parameters, and if the array {D} of the sign of incompleteness of measurement of the values of the monitored parameters of the g-th group is removed from the array {D}, the values of the monitored parameters are measured from the moment of interruption from the measurement, and the measured values of the monitored parameters are compared with the reference ones. At T_g= T_gotch generate a report and, based on the generated report, make a decision on the security of the automated system. If the measured values of the monitored parameters do not coincide with the reference ones, they are stored, the value of the time interval of measurements of the values of the monitored parameters is corrected according to the formula ΔT_gcor= Δt_g/ K_gc, compare the corrected value of ΔT_gcor with minimum ΔT_gmin and at ΔT_gcor> ΔT_gmin go to time comparison T_g measurements of the values of the monitored parameters with a given time point T_gotch generating a report. At ΔT_gcor> ΔT_gmin generate an alarm. They block the operation of SPD elements, the parameters of which are outside the permissible values.

Compared with analogues, the prototype method can be used in a wider field of application, provides greater reliability of the control results with unstable network interconnections of the monitoring tool with the monitoring object by restoring the interrupted measurement cycle and analyzing the state of the elements of the automated system.

The disadvantage of the prototype is the relatively low reliability of the control results, which is due to unstable relationships between the elements of the SPT unit and various systematic and instrumental errors in measuring the values of the controlled parameters. In this regard, with incomplete measurements, the reliability of the safety assessment of the SPD elements may be unacceptably low for making a decision on the status of the SPD node or the AS. In addition, the safety of the SPT (AS) is due to the specified algorithms of operation, for the control of which structural and functional modeling is required.

Another disadvantage of the prototype is the relatively low efficiency of assessing the state of SPD elements for critical information infrastructure facilities. This is due to different time delays when measuring the values of the monitored parameters and when calculating the values of the particular safety indicators of the SPD (NPP) elements. The inertness of the control system in relation to the controlled processes in the SPD (AS) must be minimized if deviations from the specified operating algorithm are critical for safety.

The aim of the claimed technical solution is to increase the reliability of the control results, as well as to increase the efficiency of control by reducing the duration of measurements and processing the data of the measurement results.

In the claimed method, the technical result is achieved by the fact that in the known method of monitoring and managing information security of nodes of a data transmission network (DTS), which consists in the fact that for a DTS node, including S≥2 segments designed to perform a set of F≥2 functional processes (FP) and E≥2 elements designed to perform a set of Z≥2 logical tasks (LZ), pre-set a set of N≥2 controlled parameters (CP) characterizing the information security of the structural elements of the SPT node and functional processes (FP), an array data {D} for storing the sign of incomplete measurements and the status word of the monitoring program are formed from the number of preset CP G≥2 groups, while each CP group N _g where g = 1, 2, ..., G, characterizes the safety of the se-th structural element, where s = 1, 2, ... S, e = 1, 2, ... E, set the period ^{ΔTrep for} generating the SPD node safety report, set the reference values of the CP _n ^tr and private indicators without safety of CP _z ^tr , check for the presence of a sign of incompleteness of measurements of KP values of the g-th group in the array {D}, in case of its absence, check the availability of the se-th structural element of the SPD for measuring KP values, in case of availability of the se-th structural element, proceed to measurement values of CP in each of the G-groups, if the se-th structural element is unavailable, a sign of incomplete measurement of CP values of the g-th group in the array {D} is set, the value of the status word of the monitoring program is stored in the array {D} at the time of interruption of measurements, if in the array {D} of the sign of incompleteness of the measurement of the values of the CP of the g-th group, remove it from the array {D}, read the word-state from the array {D}, measure the values of the CP from the moment of interruption of the measurement, proceed to the comparison of the measured values of the CP with the reference CP _n ^tr , calculate the values of the private safety indicators of the CP _z , compare the calculated values of the private safety indicators of the CP _z with the required ones, generate a signal tre in case of a discrepancy between the calculated CP _z and the required CP _z ^tr values of the private safety indicators, at T≥T ^ex, form a report, additionally pre-set the structural and functional model (SFM) of the SPD node, reflecting the established algorithms for its operation, set for each CP group, where g = 1, 2, ... G the sequence of measurements optimal according to the duration criterion, the sampling time interval Δt _f for each FP, where f = 1, 2, ... F, the required values of the private safety indicators of the PE _z ^tr , characterizing the regulations for the implementation of LP and FP, the required values of the indicators of reliability P _tr and timeliness T _{change additional} safety control, and in the data array {D} set the counters for the number of unfinished measurements {СН} _g , with a period equal to Δt _f are formed on the border element of the SPD node and transmit a marked data packet, sequentially receive marked data packet on all interacting elements of the SPD node and check the presence of a safety sign, give a safety sign, if any, and after comparing the calculated values of the private safety indicators of the PE _z with the required ones, if they match, write the safety sign in the marked package, and in the data array {D} the value of the measurement time interval Δt _{measz of the} monitored parameters and the number of CH _g incomplete measurements at T≥T ^otch calculated safety monitoring quality indicators, compares the calculated values with the desired, limited data transfer rate through the se-th LDS structural element in the event of insufficient reliability or safety control speed, corrected SPS node SAP define new composition corresponding g- th group of CP and the optimal sequence of their measurements, in the absence of a safety feature in the received marked package or the discrepancy between the measured values of the CP and the reference values of CP _n ^tr or the discrepancy between the calculated values of the private safety indicators of CP _{z with the} required values of CP _z ^Tr generate an alarm s _A - emergency segment, f _A - emergency FP, z _A - emergency LZ and e _A - emergency element, determine the degree of criticality of the safety violation (NS), transmit commands for automatic processing of NS in case of its criticality and generate a report indicating the best actions for the operator in the case of non-critical NB.

Thus, thanks to a new set of essential features, the specified technical result is achieved:

1. Due to the preliminary structural and functional modeling of the SPT node on the basis of the established algorithms of its functioning and with sufficient detail for a given category of importance, assignment for each sampling time interval M of the sequence of measurements and the composition of the g-th group of CP, characterizing the safety of LP and FP depending on on the category of importance and speed of data processing at the SPD node, calculating private indicators of information security, comparing the calculated values with the required ones, control of the LP and FP execution regulations, as well as the established algorithms for the operation of the SPD node, is ensured, which increases the reliability of the control results;

2. By setting the criteria and assessing the reliability and efficiency of safety control, generating a report on the quality of control, choosing the number and composition of the CP in each g-th group, adjusting the SPM of the SPD node, specifying a new composition and the optimal sequence of measuring the CP for the corresponding sampling interval Δt _f in case of insufficient values of control quality indicators, a reduction in control time is provided;

3. Due to the determination of the degree of criticality of the security violation (NS), the formation of a command for automatic processing of the safety violation in case of its criticality, as well as limiting the data transfer rate through the emergency element of the SPD node, an additional positive effect is achieved, which consists in increasing the effectiveness of control. This is manifested in a slowdown in the operation of the elements of the SPT unit, which are directly interconnected with the emergency element and a decrease in the likelihood of a critical situation developing.

The letter designations indicated in the claims have the following meaning:

s = 1, 2, ... S, where S≥2 is a set of identifiers of segments of the SPD node;

f = 1, 2, ... F, where F≥2 is a set of FP identifiers;

e = 1, 2, ... E, E≥2 is a set of identifiers of the elements of the SPD node;

z = 1, 2, ... Z, where Z≥2 is the set of LZ identifiers;

g = 1, 2, ..., G, where G≥2 is the set of identifiers of KP groups;

k = 1, 2, ... K-1, where K≥2 is the number of directly interacting SPT elements;

CH _g - counter of incomplete measurements of CP values of the g-th group;

{D} - data array for storing the sign of incomplete measurement of CP values, the status word of the monitoring program at the moment of interruption of measurement of CP values, measurement time values Δt _{meas z} and counter of incomplete measurements of CP values of the g-th group CH _g .

The claimed invention is illustrated by drawings, which show:

in fig. 1 - block diagram of the SPD node;

in fig. 2 - structural and functional diagram of the SPD node;

in fig. 3 - matrix of states of elements of the SPD node;

in fig. 4 - search tree for the state of an element of the SPD node;

in fig. 5 is a diagram for calculating private indicators of PP _{z of} safety of the LZ;

in fig. 6 is a diagram of the synchronization of the CP measurements with the FP;

in fig. 7 is a block diagram of an algorithm for monitoring and managing information security of nodes in a data transmission network.

The claimed method is implemented as follows. Previously, for the SPD node (see Fig. 1), which includes S≥2 segments (Fig. 1, pos. 1, 2, 3), designed to perform a set of F≥2 functional processes (FP) and E≥2 elements ( pos. 1.1, 1.2, 2.1, 2.2, 3.1, 3.2, 3.3), designed to perform the set Z≥2 logical tasks (LZ) set the structural-functional model (SFM) of the SPD node (see Fig. 7, pos. 1). The SFM should reflect the established algorithms for the operation of the SPT node, which in this case can be the modes of operation of the elements of the SPT node and their time-sequential transitions (Fig. 2, pos. 1, 2, 5, 6, 9, 10, 12), simultaneous combinations of modes work of directly interacting elements of one segment (Fig. 2, pos. 3, 7, 11, 13), as well as the sequence of interaction between the elements of different segments (Fig. 2, pos. 4, 8, 14). In the example under consideration, the SPM of the SPD node is specified in the form of a matrix of states || Z || _se elements of the SPD node (see Fig. 3). The size of the matrices is determined depending on the required degree of control detail. In this case, the degree of detail is determined depending on the given category of importance of the SPD node.

A set of N≥2 monitored parameters (CP) is also set, characterizing the information security of the structural elements of the SPD node and functional processes (FP). It is formed from a number of predetermined KP G≥2 groups, with each N _g group KP where g = 1, 2, ..., G, characterizes the safety of the se-th structural element, where s = 1, 2, ... S, e = 1 , 2,… E.

The measured values of KP _n make it possible to make a decision about the belonging of a state to one of the sets of states. For example, the measured value of KP1 makes it possible to decide whether the state of the se-th structural element belongs to the set of states {1.1.1, 1.1.2} or to the set {1.1.3, 1.1.4 ..., 1.1.K ₁₁ }, subsequent measurements make it possible to separate states inside sets, etc.

For each group of CPs, the sequence of measurements optimal according to the criterion of the duration of measurements is determined. The optimal sequence of measurements is formalized using known methods, for example, in the form of a search tree (diagnostic tree) (see Fig. 4).

где k=1, 2, …K-1, K - количество непосредственно взаимодействующих структурных элементов СПД (см. фиг. 5). Матрицы ЛЗ отображают возможные сочетания режимов работы (состояний) элементов одного сегмента или разных сегментов узла СПД при выполнении f-го ФП. Например, (см. фиг. 3) столбцы отражают возможные состояния первого элемента первого сегмента узла СПД (фиг. 1 поз. 1.1, фиг. 2. поз. 1.1.1, 1.1.2, 1.1.3…1.1.К₁₁), а строки отражают состояния (режимы работы) второго элемента первого сегмента (фиг. 1 поз. 1.2, фиг. 2 поз. 1.2.1, 1.2.2, 1.2.3, … 1.2.К₁₂). Каждая ячейка матрицы разрешенных сочетаний ЛЗ представляет двоичную величину, которой присваивают значение «1» при разрешенном сочетании состояний и «0» при запрещенном сочетании. Для рассматриваемого примера (см. фиг. 3) сочетание 1.1.1 и 1.2.1 является разрешенным, а сочетание 1.1.1 и 1.2.2 - запрещено. Все множество матриц ||Z||_k характеризует f-й ФП.To formalize the established algorithms of interaction between the elements of the SPD node, the LZ matrices are set

where k = 1, 2, ... K-1, K is the number of directly interacting structural elements of the SPT (see Fig. 5). LZ matrices display possible combinations of operating modes (states) of elements of one segment or different segments of the SPD node when performing the f-th FP. For example, (see Fig. 3) the columns reflect the possible states of the first element of the first segment of the SPD node (Fig. 1 pos. 1.1, Fig. 2. pos. 1.1.1, 1.1.2, 1.1.3 ... 1.1.K ₁₁ ) , and the lines reflect the states (modes of operation) of the second element of the first segment (Fig. 1 pos. 1.2, Fig. 2 pos. 1.2.1, 1.2.2, 1.2.3,… 1.2.K ₁₂ ). Each cell of the matrix of allowed combinations of LZ represents a binary value, which is assigned the value "1" when the combination of states is allowed and "0" when the combination is prohibited. For the considered example (see Fig. 3) the combination of 1.1.1 and 1.2.1 is allowed, and the combination of 1.1.1 and 1.2.2 is prohibited. The whole set of matrices || Z || _k characterizes the fth FP.

In addition, for each FP, a sampling time interval Δt _{f is set} , where f = 1, 2, ... F. The value of the sampling time interval Δt _f is determined by the category of importance of the f-th FP and the speed of data processing, provided that timely detection and prevention of information security is ensured. The required values of PP _z ^{tr are set} , characterizing the regulations for the implementation of LP and FP. The data array {D} is set to store the sign of incomplete measurements and the status word of the monitoring program, the value of the measurement duration Δt _measmz , as well as the counters of the number of measurement interruptions CH _g for each CP, where n = 1, 2, ... N. Set period ΔT ^otch formation of SPD unit safety report, reference values KP _n ^tr and private safety performance emergency _z ^mp, the desired values of reliability and timeliness of P _tr T _{ism additional} security controls.

Thus, due to preliminary actions, a structural and functional model of the SPD node is created (see Fig. 7, item 1), which additionally takes into account the established algorithms for its operation (regulations) and allows diagnosing the state of the SPD node with higher efficiency and reliability.

To synchronize the measurements of the values of KP _n , and the regulations of the corresponding f-th FP are formed with a period equal to Δt _f on the border element of the SPD node and a marked data packet is transmitted (see Fig. 7, pos. 2). Then, the marked data packet is sequentially received on all interacting elements of the SPD node (see Fig. 6). The received marked packet is a signal to start the procedure for assessing the safety of the LZ and FP, the results of which are written in the form "1" if there are no security violations and "0" - when a security violation is detected (see Fig. 6). In this case, the time Δt _{meas z of} measuring the values of KP and the number CH _{g of} unfinished measurements due to the inaccessibility of the element.

Check in the received marked packet for the presence of a safety feature (see Fig. 7, pos. 3, 4), a sign of incomplete measurements of the values of the KP of the g-th group in the array {D} (Fig. 7, pos. 5, 6), the availability of the se-th structural element of the SPD for measuring the values of the KP _n , (Fig. 7 pos. 7, 8).

Remove the security feature, if present, in the received marked package (Fig. 7 pos. 13).

If an element of the SPD node is available, the values of the CP _n corresponding to the g-th group (Fig. 7, pos. 14) _{are measured and the value of the measurement time interval Δt meas z of the} monitored parameters of the se-th structural element (Fig. 7 pos. . fifteen).

The measured values of the KP _{n are} compared with the predetermined reference values of the KP _n ^tr (Fig. 7, pos. 16). In the absence of unacceptable deviations in the values of the CP _{n, the} values of the private safety indicators of the CP ₂ are calculated (Fig. 7, pos. 17, 18). In this case, identifiers of states of the structural elements of the SPD are determined, where z = 1, 2, ... Z, they are stored for each se-th structural element of the SPD in the form of a matrix || Z || _se . Next, the LZ matrices are formed || Z || _k (see Fig. 5 and Fig. 6) for each pair of directly interacting elements belonging to one segment. With the help of the mathematical operation "exclusive OR" in line-by-line comparison of the predetermined and formed LZ matrices || Z || _k are safety matrices for each pair of directly interacting elements. On the basis of the obtained safety matrix, the values of the private indicators of the CP _{2 of the} safety of the LZ are calculated by line-by-line conjunctive convolution (see Fig. 5 and Fig. 6). Then, the calculated values of the private safety indicators of the CP _{z are} compared with the required values of the CP _z ^tr (Fig. 7, pos. 19 and Fig. 6).

In the absence of unacceptable values of the ^{frequency of occurrence} _z, a security feature is written into the marked packet and, when ΔT <T reference, it is transmitted further (Fig. 7 pos. 20, 22, 28, 2).

If there is in the array {D} a sign of incomplete measurement of the values of the KP of the g-th group, remove it from the array {D}, read the word-state from the array {D}, measure the values of KP _n , from the moment of interruption of measurements (Fig. 7, pos. 6 , 11, 12, 13, 14).

If the se-th structural element is unavailable, a sign of incomplete measurement of the values of CP _{n of the} g-th group in the array {D} is set, the value of the monitoring program status word (SSP) at the time of interruption of measurements and the number of incomplete measurements of CH _g in the array {D} is stored array {D} (see Fig. 7 pos. 8, 9, 10 and Fig. 6).

When ΔT = T ^{ex, the} values of the indicators of reliability and timeliness of safety control are calculated and a report on the quality of control is generated (Fig. 7 pos. 28, 29, 30 and Fig. 6).

сравнивают вычисленные значения с требуемым значением Р_тр. В общем случае достоверность контроля может оцениваться с помощью известной системы показателей достоверности диагностики технического устройства [1].When calculating the reliability and timeliness of the safety control, read the value of the counter CH _{g of} unfinished measurements from the data array {D}, calculate the values of the control reliability indicators

compare the calculated values with the required value of P _tr . In the general case, the reliability of control can be assessed using the known system of indicators of the reliability of diagnostics of a technical device [1].

сравнивают его с допустимым значением Т_{изм доп}. В общем случае продолжительность измерений значений КП может оцениваться с помощью метода построения поискового дерева [2].When assessing the efficiency of control, the value of the measurement time Δt _{measmz is read} from the array {D}, the value of the indicator of the control efficiency is calculated

compare it with the permissible value of T _{change add} . In the general case, the duration of measurements of KP values can be estimated using the method of constructing a search tree [2].

In case of insufficient reliability or efficiency of security control, the data transfer rate through the se-th structural element of the SPD is limited. Then the SPM of the SPD node is corrected, a new composition of the corresponding g-th group of CP _n and the optimal sequence of their measurements are set (Fig. 7, item 31, 32, 33 and Fig. 6).

ЛЗ. Этим обеспечивается адаптация диагностической модели к режиму работы узла СПД для обеспечения требуемых значений показателей достоверности и оперативности контроля.Correction of the SPM of the SPD node is performed by changing the dimension of the matrix

LZ. This ensures the adaptation of the diagnostic model to the operating mode of the SPD unit to ensure the required values of the reliability indicators and control efficiency.

In the absence of a safety feature in the received marked package or the discrepancy between the measured values of the CP with the reference values or the discrepancy between the calculated values of the private safety indicators of the CP _{z and the} required values of the CP _z ^tr , an alarm signal and a report on the safety of the SPD node are generated (Fig. 7, pos. 4, 17, 20, 21, 23 and Fig. 6), which indicates the identifiers s _A - emergency segment, f _A - emergency FP, z _A - emergency LZ and e _A - emergency element.

After that, the degree of criticality of the NB is determined, commands are sent for automatic processing of the NB in case of its criticality (Fig. 7, item 24, 25, 26 and Fig. 6). In the case of non-critical NB, a report is generated with indications of optimal actions for the operator (Fig. 7, pos. 27 and Fig. 6).

Thus, the possibility of achieving a technical result is due to the presented sequence of material actions on material objects, which can be implemented using known technical means:

1. Building a structural and functional model of the SPD node, reflecting the established algorithms for its operation, is possible using well-known methods of functional modeling of complex systems, for example SADT {Structured Analysis and Design Technique) [3], IDEF {Integrated DEFinition), CPN {Color Petri Nets ) and CASE-tools [4], such as ERwin, Design / IDEF, as well as methods of object-oriented analysis and design, for example OOD {Object-Oriented Design) [5], ULM {Unified Modeling Language) [6], Modelica [7] and related tools, for example MATLAB, Ptolemy [8], AnyLogic [9], Rand Model Designer [10];

2. Matrix representation of groups of monitored parameters and calculation of private indicators of safety of logical tasks and functional processes of the SPD node by comparing binary matrices of set values of monitored parameters and reference (required) values can be implemented using methods of discrete mathematics [11];

3. Measurement of the values of the monitored parameters and their comparison with the required values is possible using software or hardware and software based on well-known standard microcontrollers [12];

4. To synchronize the measurements of the values of the monitored parameters and assess the safety of the elements of the SPD node in accordance with the specified functioning algorithms, the Mangle packet marking technology can be used [13, 14].

LIST OF USED INFORMATION SOURCES.

1. GOST R ISO 13379-2009 Condition monitoring and diagnostics of machines. Data Interpretation and Diagnostic Techniques Guide.

2. Kanevsky Z.M., Litvinenko V.P., Makarov G.V. Stealth theory. Part 1, Fundamentals of the theory of secrecy: Textbook. handbook. Voronezh: Voronezh, state. tech. un-t, 2003.92 p.

3. Methodology of functional modeling IDEF0. Guidance document. Gosstandart of Russia. PДIDEF0 - 2000.

4. Kulikov G.G., Nabatov A.N., Rechkalov A.V. Computer-aided design of information and control systems. System modeling of the subject area. - Ufa: Ufa State Aviation University, 1998 .-- 104 p. - ISBN 5-89611-190-0.

5. I. Graham Object-oriented methods. Principles and Practice. - 3rd ed. - M .: "Williams", 2004. - 880 p. - ISBN 0-201-61913-X.

6. Booch G., Jacobson A, Rambeau J. UML 2.0 SPb .: Peter, 2006.

7. Peter Fritzson. Principles of Object-Oriented Modeling and Simulation with Modelica 3.3: A Cyber-Phisical Approach, 2 ^nd Edition. ISBN: 978-1-118-85912-4.1256 pages. April 2015, Wiley-IEEE Press.

8. Claudius Ptolemaeus, System Design, Modeling, and Simulation using Ptolemy II, Ptolemy, org, 2014 // http://ptolemy.org/books/Systems.

9. Karpov Yu. Simulation of systems. Introduction to Modeling with AnyLogic 5.0 SP6: BHV-Petersburg, 2005.

10. Kolesov Yu.B., Senichenkov Yu.B. System modeling. Dynamic and hybrid systems. SPB .: BHV, 2006.

11. Chechkin A.V. Mathematical informatics / A.V. Chechkin. - M .: Nauka, 1991 .-- 412 p.

12. Programming of microcontroller boards Arduino / Freeduino, St. Petersburg: Ed. BHV-Petersburg, 2012 .-- 320 p.

13. Recommendations RFC 2474, RFC 2475.

14. IEEE 802.1р standard.

Claims (6)

1. A method for monitoring and managing information security of nodes of a data transmission network (DTS), which consists in the fact that for a DTS node, which includes S≥2 segments designed to perform a set of F≥2 functional processes (FP) and E≥2 elements designed to perform a set of Z≥2 logical tasks (LZ), a set of N≥2 monitored parameters (CP) characterizing the information security of the structural elements of the SPD node and functional processes (FP), the data array {D} for storing the sign of incompleteness measurements and the status word of the monitoring program, are formed from the number of preset CP G≥2 groups, while each CP group N _g , where g = 1, 2, ..., G, characterizes the safety of the se-th structural element, where s = 1, 2, ..., S, e = 1, 2, ..., E, set the period ^{ΔTrep for} generating a report on the safety of the SPD node, set the reference values of the CP _n ^tr and private safety indicators of the CP _z ^tr , check for a sign of incomplete measurement The determination of the KP values of the g-th group in the array {D}, in case of its absence, the availability of the se-th structural element of the SPD for measuring KP values is checked, if the se-th structural element is available, they proceed to the measurement of KP values in each of the G-groups, if the se-th structural element is unavailable, a sign of incomplete measurement of the values of the KP of the g-th group in the array {D} is set, the value of the status word of the monitoring program is stored in the array {D} at the time of interruption of measurements, if there is a sign of incomplete measurement of values in the array {D} KP of the g-th group remove it from the array {D}, read the word state from the array {D}, measure the KP values from the moment of interruption of the measurement, proceed to the comparison of the measured KP values with the reference KP _n ^tr , calculate the values of the private safety indicators of the CP _z , comparing the calculated values of the private safety indicators of the PR _z with the required ones, generate an alarm signal if the calculated PR _z and the required values of the PR _z ^tr hour specific safety indicators, at T≥T ^ex , a report is generated, characterized in that in addition, a structural-functional model (SFM) of the SPD node, reflecting the established algorithms for its operation, is preset, set for each CP group, where g = 1, 2, ..., G, the sequence of measurements optimal in terms of the duration criterion, the sampling time interval Δt _f for each FP, where f = 1, 2, ..., F, the required values of the private safety indicators of the CP _z ^tr , characterizing the regulations for the LP and FP, the required values of the reliability indicators P _tr and timeliness T _{change additional} safety control, and in the data array {D} set the counters for the number of unfinished measurements {СН} _g , with a period equal to Δt _f , form on the border element of the SPD node and transmit the marked data packet, sequentially receive the marked data packet on all interacting elements of the SPD node and check for the presence of a security feature, remove the security feature if present , and after comparing the calculated values of the private safety indicators of the CP _z with the required CP _z ^tr , if they match, the safety sign is written into the marked packet, and the value of the measurement time interval t _{measz of the} monitored parameters and the number of CH _{g of} unfinished measurements in the data array {D} T> T ^ex, calculate the quality indicators of safety control, compare the calculated values with the required ones and generate a report on the quality of safety control, limit the data transfer rate through the se-th structural element of the SPD in case of insufficient reliability or efficiency of the safety control, correct the SFM of the SPD node, set a new one the composition of the corresponding g-th group of CP _n and the optimal sequence of their measurements, in the absence of a safety feature in the received marked package, or the discrepancy between the measured values of CP _{n and the} reference values of CP _n ^tr , or the discrepancy between the calculated values of the private safety indicators of CP _{2 with the} required values of CP _z ^tr generate an alarm signal and a report on the safety of the SPD unit, determine the degree of criticality of a security violation (NB), transmit commands for automatic processing of NB in case of its criticality, and generate a report indicating the best actions for the operator in the event of a non-critical NB. 2. The method according to claim 1, characterized in that the SPM, reflecting the established algorithms for the operation of the SPD node, is set in the form of a matrix

LZ, where k = 1, 2, ..., K-1, K is the number of directly interacting structural elements of the SPT, and the size of the matrices is determined depending on the required control detail. 3. The method according to claim 1, characterized in that to calculate the partial safety indicators, the identifiers of the states of the structural elements of the SPD are determined, where z = 1, 2, ..., Z, they are stored for each se-th structural element of the SPD in the form of a matrix || Z || _se , form LZ matrices || Z || _k for each pair of directly interacting elements belonging to one segment, using the mathematical operation "exclusive OR" in line-by-line comparison of the predetermined and generated matrices ЛЗ || Z || _k receive safety matrices for each pair of directly interacting elements, according to the obtained safety matrix, the values of the private indicators of CP ₂ safety of the LZ are calculated by line-by-line conjunctive convolution. 4. The method according to claim 1, characterized in that in the safety report of the SPD node, the identifiers s _A - emergency segment, f _A - emergency FP, z _A - emergency LZ and e _A - emergency element are indicated. 5. The method according to claim 1, characterized in that when calculating the quality indicators of safety control read the value of the counter CH _{g of} unfinished measurements from the data array {D}, calculate the values of the control reliability indicators

compares the calculated values with the required value P _tr , reads the value of the measurement time Δt _{meas z} from the marked package, calculates the value of the control efficiency

compare it with the permissible value of T _{change add} . 6. The method according to claim 1, characterized in that the correction of the SPM node of the SPD is performed by changing the dimension of the matrix of states

LZ and / or matrix of functioning

FP.

Images