THE ONE METHOD TO DECISION MAKING SUPPORT FOR FORMATION OF COMPLEX SECURITY INFORMATION PROGRAMS

Анотація

This article, written for analysis of a support decision-making approach. This approach can be used for the formation of complex information security programs, taking into account the threats and risks. This approach is based on the introduction of models and risks in the hierarchy of objective tasks and the goal evaluation of the tasks. Under the threat, we understand a condition of the environment, impacts the efficiency of the task. Complex goal-oriented program is executed in this environment. Risk is defined as a result of a random event that is caused by the influence of external relative factors. The event is a situation arises that affects the execution program. Threat models and risks have been proposed. The risk model is a risk factor, which is a random process and has a special goal. The threat is simulated by a special program, which is entered in the hierarchy of goals.

Keywords: security program, decision making, protection system, DSS, decision support system, evaluation, simulating, judgement.