A technique for categorizing objects of critical information infrastructure, taking into account industry criticality

Cover Page

Cite item

Full Text

Open Access Open Access
Restricted Access Access granted
Restricted Access Subscription Access

Abstract

The article presents an advanced technique for categorizing objects of critical information infrastructure (CII), taking into account industry criticality. The aim of the study is to improve the objectivity and accuracy of the categorization process, minimize subjective distortions, and optimize the allocation of resources for ensuring information security. The authors propose a methodology based on calculating an industry criticality coefficient, which integrates expert assessments across five key criteria: national security, economic significance, social importance, industry interdependence, and potential damage. The methodology was tested on 14 industries, enabling their classification into three criticality categories. The results demonstrated high consistency among expert evaluations and confirmed the effectiveness of the proposed approach. Implementing this technique facilitates differentiated planning of CII protection measures and optimizes regulatory requirements.

About the authors

Evgenii S. Mityakov

MIREA – Russian Technological University

Author for correspondence.
Email: mityakov@mirea.ru
ORCID iD: 0000-0001-6579-0988
SPIN-code: 5691-8947

Dr. Sci. (Econ.), Professor, Head, KB-9 Department

Russian Federation, Moscow

References

  1. Burykova E.V., Rychkova A.A., Gritsenko L.A. Categorization of critical information infrastructure objects of higher education institutions. Bulletin of the Dagestan State Technical University. Technical Sciences. 2024. Vol. 51. No. 3. Pp. 42–53. (In Rus.). doi: 10.21822/2073-6185-2024-51-3-42-53. EDN: FFXFIS.
  2. Vavichkin A.N., Gorbatov V.S., Durakovsky A.P., Chzhen D.A. On the categorization of critical information infrastructure objects of higher educational institutions. Information Technology Security. 2019. Vol. 26. No. 2. Pp. 44–57. (In Rus.). EDN: TMBXWG.
  3. Golubyatnikov A.O. Categorization and security provision of critical information infrastructure in Russia. Trends in the Development of Science and Education. 2024. No. 115–15. Pp. 40–44. (In Rus.). doi: 10.18411/trnio-11-2024-692. EDN: LDAINQ.
  4. Goncharenko Yu.Yu., Golovin A.A. Development of a software module for automating the categorization process of critical information infrastructure objects. NBI Technologies. 2019. Vol. 13. No. 2. Pp. 12–16. (In Rus.). doi: 10.15688/NBIT.jvolsu.2019.2.2. EDN: ZMRVBT.
  5. Kotov A.A., Kurinnaya V.S., Shlykov M.S. Algorithm for categorizing critical information infrastructure objects. REDS: Telecommunication Devices and Systems. 2018. Vol. 8. No. 4. Pp. 34–37. (In Rus.). EDN: WOUBCH.
  6. Kuznetsov S.A., Kulikov I.A., Fominykh A.A. Comparison of CII and categorization methods in the Russian Federation and the USA. Current Scientific Research in the Modern World. 2021. No. 6-1 (74). Pp. 63–68. (In Rus.). EDN: EFWCLF.
  7. Mazepin P.S., Grishin N.A., Bocharov M.V. Categorization of critical information infrastructure objects. Innovation. Science. Education. 2021. No. 34. Pp. 874–878. (In Rus.). EDN: ESHFMR.
  8. Malinichev D.M., Kuchmezov Kh.Kh., Mochalov V.V. et al. Categorization of interconnected critical information infrastructure objects. Applied Informatics. 2022. Vol. 17. No. 3 (99). Pp. 105–116. (In Rus.). doi: 10.37791/2687-0649-2022-17-3-105-116. EDN: UQBIMV.
  9. Maksimova E.A. Assessment of the infrastructural integrity of a critical information infrastructure entity under destructive impacts. Caspian Journal: Management and High Technologies. 2021. No. 4 (56). Pp. 75–86. (In Rus.). doi: 10.21672/2074-1707.2021.56.4.075-086. EDN: NNRGAO.
  10. Natashova K.V., Sokolov S.S., Gubernatorov O.N. et al. On the categorization of critical information infrastructure objects of seaports. Information Technology Security. 2020. Vol. 27. No. 2. Pp. 35–46. (In Rus.). doi: 10.26583/bit.2020.1.03. EDN: AKOQXH.
  11. Nikitin P.V., Gorokhova R.I. Analysis of modern intelligent methods for critical information infrastructure protection. Security Issues. 2024. No. 3. Pp. 14–38. (In Rus.). doi: 10.25136/2409-7543.2024.3.69980. EDN: EXGKAV.
  12. Repyeva V.D., Khanmagomedov A.Kh. Features and problems of categorization of critical information infrastructure objects. Science Bulletin. 2023. Vol. 5. No. 1 (58). Pp. 193–196. (In Rus.). EDN: BLFURH.
  13. Rodionysheva E.D., Danilova S.V. Categorization of critical information infrastructure objects of medical organizations as a means of improving information security. Bulletin of Ivanovo State University. Series: Economics. 2020. No. 4 (46). Pp. 97–103. EDN: ALNROT.
  14. Rytov M.Yu., Voronin V.A., Musienko N.O. Categorization of critical information infrastructure objects using security passports. Devices and Systems. Control, Monitoring, Diagnostics. 2021. No. 12. Pp. 29–42. (In Rus.). doi: 10.25791/pribor.12.2021.1312. EDN: KGRLBB.
  15. Tsupkina A.V., Shaburova A.V. Categorization of CII objects in the defense industry. Interexpo Geo-Siberia. 2022. Vol. 6. Pp. 288–293. (In Rus.). doi: 10.33764/2618-981X-2022-6-288-293. EDN: VALTUP.

Supplementary files

Supplementary Files
Action
1. JATS XML
Download


License URL: https://www.urvak.ru/contacts/

Согласие на обработку персональных данных

 

Используя сайт https://journals.rcsi.science, я (далее – «Пользователь» или «Субъект персональных данных») даю согласие на обработку персональных данных на этом сайте (текст Согласия) и на обработку персональных данных с помощью сервиса «Яндекс.Метрика» (текст Согласия).