This article discusses the basics of building a model of information security threats. It discusses the main stages in the construction process, the regulatory documents and electronic resources designed to simplify the construction of the model. The features of using the methodology of modeling threats in information systems operating in municipal authorities are considered.
- Standard CBR STO BR IBBS-1.0-2014 N R-399 «Ensuring the information security of organizations of the banking system of the Russian Federation. General provisions». – Fr. 2014-05-17.
- The basic model of threats to the security of personal data during their processing in the information systems of personal data. – Fr. 2008-02-15.
- Databank of threats and vulnerabilities FSTEC (http://bdu.fstec.ru) (date of the application – 02.04.2019).
- Methods for determining the actual threats to the security of personal data when they are processed in personal data information systems. – Fr. 2008-02-14.
- Russian Federation. Laws. About state secrets [Electronic resource] federal law of July 21, 1993 N 5485-1, ed. from 07.29.2018 – Access Mode: http://www.consultant.ru/cons/cgi/
online.cgi?req=doc&base=LAW&n=303613&fld=134&dst=1000000001,0&rnd=0.9554976573647225#05867016681194195 (Date of appeal – 14.04.2019).