26-29 октября 2010 года, Красноярск

Arabuli N.   Adamia V.B.  

Protection of Data in Networks

Докладчик: Arabuli N.

Computer systems and protection of information. The problem of information security is relatively new. Not all problems, connected with it have been figured out and solved up to now. The fact of great number of computer systems users means the definite risk to security because not all clients will carry out the requirements of its providing.

The order of storage mediums should be clearly defined in legal acts and envisage the complete safety of mediums, control over the work with information, responsibility for unsanctioned access to mediums with a purpose of copying, changing or destroying them and so on.

Legal aspects - There are some legal aspects of information protection, which can appear due to not carefully thought or ill-intentioned use of computer technics:

  1. legal questions of protection of informational massifs from distortions;
  2. security of stored information from the unsanctioned access;
  3. setting juridically fixed rules and methods of copyrights protection and priorities of software producers;
  4. development of measures for providing the juridical power to the documents, which are given to the machines;
  5. legal protection of the experts’ interests, who pass their knowledge to the databases;
  6. setting of legal norms and juridical responsibility for using electronic computer means in personal interests, which hurt other people and social interests and can harm them;

The lack of appropriate registration and control, low level of work and production personnel discipline, the access of an unauthorized persons to the computing sources create conditions for abusing and cause difficulties to their detection. In every computing center it is usual to set and strictly follow the regulations of the access to different official rooms for employees of any categories.

Purposes - The main purpose of information protection is preventing from the leak, theft, distortion, counterfeit of information; preventing the threat to person’s life and social safety, protection of the constitution and so on. The information is subjected to protection, when it may cause the harm for its owner, user or other person.

Definition - The development of computer technology and its wide use have lead to appearance and spread of computer crimes. Such situation causes alarm among those organizations and legislative institutions that use computer technologies and, of course, people, who use new informational services at homes.

Statistics - There are following forms of computer criminality: computer manipulations, economic espionage, sabotage, computer extortion, “hackers” activity. The main character of committing computer crimes in the business field becomes highly qualified “white collars” from the suffered organization’s employees.

According to the MIS Traiding Institute (USA), they get 63% of all causes, examining crimes and abuses. More than 36% of law-committing employees are related to the personnel, which is not connected with computer servicing, 29% - qualified programmers, 25% - other workers of computing center. This tendency is reflected in official statistics too, according to which, about 40% of computer crimes are committed for solving of financial problems, 20% are motivated as an intellectual challenge to society, 17% - by the willing of solving personal problems, 8% - problems of corporation or organization, 4% - are directed for social admitting, 3% - for wounding somebody’s rights and so on.

“Hackers” and “crackers” - The most dangerous individuals of computer swindle are so called “hackers”, “crackers” and representatives of other groups, working in the sphere of industrial espionage. So, many security specialists advise employers to pay special attention to engaged workers-specialists in computer technologies, programming and information protection spheres.

There are many causes, when “hackers” get a job with a goal of personal enrichment. But the most danger can represent such specialists, who are in collusion with managers of commercial structures and organized criminal groups; in these situations causing damage and weight of consequences considerably increases.

There are two types of unsanctioned access:

  1. internal “breaking open” – the criminal has access to the terminal, with information he interested in and can work with it for some time without somebody’s control;
  2. external “breaking open” – the criminal doesn’t have indirect access to the computer system, but has an opportunity of penetration to the protected system by means of remote access;

CONCLUSION. Analysis of such actions shows that single crimes from own or neighbor work places gradually develop into network computer crimes, which are carried out by means of breaking of organizations’ protecting systems.

Therefore, the importance of information protection can not be doubted. Every organization should have a high-quality protection system in order to insure its safety. However, not only companies and state institutions need information protection system but also general home users need information protection system and should maintain the security of their computers.

LITERATURE

  1. V.V. Domarev. Protection of Information and Computer Systems Security. Kiev: Diasoft, 1999;
  2. V.E. Figurnov. IBM PC for Users. Moscow: INFRA. M, 1996;
  3. B.I. Chernov. Computer Systems. Moscow: Prosveshenie, 1991.


К списку докладов