Komarov M. Method and means of protection of information from cyber influences in computer systems and networks of critical infrastructure objects

The object of research is the processes of information protection from cyber influences in computer systems and networks of critical infrastructure. The purpose of the study is to increase the level of protection of information from cyber influences in computer networks and systems of critical infrastructure by developing an appropriate method and means of information protection. The subject of the research is the methods and means of information protection processed in computer networks and systems of critical infrastructure objects. Research methods - information security theory, systems analysis. Scientific novelty: - for the first time a taxonomy of cyber threats to information security of computer networks and systems of objects of critical information infrastructure was developed; - for the first time a model of a database of cyber threats to information objects of protection of computer networks and systems of objects of critical information infrastructure was developed; - for the first time a combined method for recognizing cyber threats to information security of computer networks and systems of critical information infrastructure has been developed. Practical meaning: - developed algorithmic software based on the proposed combined method of recognizing cyber threats and methods of assessing cyber resilience; - developed a software application that uses the proposed technique to protect information in computer networks and systems of critical infrastructure. Degree of implementation. The results of the dissertation are implemented in the activities of the Administration of the State Service for Special Communications and Information Protection of Ukraine, the State Research Institute of Cyber Security and Information Protection, the State Enterprise "Ukrainian State Center of Radio Frequencies", the Institute of Modeling in Energy. G.Ye. Pukhova NAS of Ukraine, PJSC "Farlep-Invest", LLC "INTESIS". Scope: the results can be used in enterprises, institutions and organizations that are classified as critical infrastructure,