• A
  • A
  • A
  • ABC
  • ABC
  • ABC
  • А
  • А
  • А
  • А
  • А
Regular version of the site
For visually-impairedFor visually-impairedUser profile (HSE staff only)Search
Advanced search
Menu
HSE University
  • HSE University
  • Student Theses
  • Development of a Methodology for Assessing the Security of Information in Information Systems by Vulnerability Analysis Method

Development of a Methodology for Assessing the Security of Information in Information Systems by Vulnerability Analysis Method

Student: Kalmykov Maksim

Supervisor: Oleg Evsyutin

Faculty: HSE Tikhonov Moscow Institute of Electronics and Mathematics (MIEM HSE)

Educational Programme: Information Security of Cyber-physical Systems (Master)

Final Grade: 9

Year of Graduation: 2024

This research covers methods of vulnerability analysis used during information security evaluation in information systems. The object of the research is information systems. The subject is security evaluation of an information system using vulnerability analysis. The purpose of the study is improving the quality of information security evaluation in information systems by developing evaluation methodology taking relevant guidance documents of the regulator into account. During the research methodological regulations, existing international standards and methodologies of penetration testing were analyzed. The methodology of information security evaluation in information systems using vulnerability analysis was developed. The methodology meets the requirements of the regulator and unites the best local and international industry standards. This research also includes implementation of the methodology to an existing informatization object. The results of this study can be used in the process of attestation of information systems and in information security audit. The research paper contains 89 pages, 14 figures, 16 tables, 36 sources and 1 appendix.

Full text (added May 15, 2024)

Student Theses at HSE must be completed in accordance with the University Rules and regulations specified by each educational programme.

Summaries of all theses must be published and made freely available on the HSE website.

The full text of a thesis can be published in open access on the HSE website only if the authoring student (copyright holder) agrees, or, if the thesis was written by a team of students, if all the co-authors (copyright holders) agree. After a thesis is published on the HSE website, it obtains the status of an online publication.

Student theses are objects of copyright and their use is subject to limitations in accordance with the Russian Federation’s law on intellectual property.

In the event that a thesis is quoted or otherwise used, reference to the author’s name and the source of quotation is required.

Search all student theses