Gnatyuk S. Methodology for support the state cybersecurity system forming and providing in civil aviation

Thesis is devoted to solving actual scientific and practical problem of development the methodology for support the state cybersecurity (CS) system forming and providing in civil aviation (CA). This methodology is grounded on developed theoretical bases, methods and specialized tools for CS of critical aviation information systems (CAIS). Basic model for CS requirements forming was proposed and allowed to formalize CS requirements complete set forming process in CA. On the base of this model the techniques for creation domestic CS requirements complete set was developed to form Ukrainian state CS system in CA. Also the multilevel data model for CS requirements providing identification was developed. It can be used to define security modes of CAIS in accordance to selected CS model or in multilevel mode. Theory of CS in CA was developed and generalized terms of key concept in this field were defined, practical recommendations for state CS strategy from viewpoint of CIIP were formulated, conceptual ontology and classifications were also fulfilled. Method and software tool for CAIS criticality evaluation were proposed and these allow to calculate quantitative parameters of criticality and rank different CAIS. CS incident management method was proposed and realized using NSL-KDD base to forecast CS incidents categories (in accordance with practical guidelines, standard, company or state recommendations) and resulted threats for CAIS. It should be useful for CERT / CSIRT centers' activity in a part of CS incidents prioritization and adequate respond. Symmetric encryption method for CAIS security against linear and differential cryptoanalisys was developed. Also block cipher Luna-2k17 was proposed and realized in form of console software and it provides high cryptographic transformation rate; cipher was successfully checked by NIST STS and Diehard tests. Quantum cryptography methods were improved to support key distribution and secure direct communication processes. Experimental study of these methods confirms growing data transmission rate by high capacity deterministic protocols. Also assessment method for quantitative parameters defining was developed for completeness evaluation in process of CS requirements providing in CA. On the base of this method software application was designed and the completeness of Ukrainian CA was evaluated. Finally the methodology for support the state CS system forming and providing in CA was developed and allowed to provide state CS system forming in CA, define completeness of requirements providing and also provide CS of CA on system level.