<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE article PUBLIC "-//NLM//DTD JATS (Z39.96) Journal Publishing DTD v1.3 20210610//EN" "JATS-journalpublishing1-3.dtd">
<article article-type="research-article" dtd-version="1.3" xmlns:mml="http://www.w3.org/1998/Math/MathML" xmlns:xlink="http://www.w3.org/1999/xlink" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xml:lang="ru"><front><journal-meta><journal-id journal-id-type="publisher-id">mireabulletin</journal-id><journal-title-group><journal-title xml:lang="ru">Russian Technological Journal</journal-title><trans-title-group xml:lang="en"><trans-title>Russian Technological Journal</trans-title></trans-title-group></journal-title-group><issn pub-type="ppub">2782-3210</issn><issn pub-type="epub">2500-316X</issn><publisher><publisher-name>RTU MIREA</publisher-name></publisher></journal-meta><article-meta><article-id pub-id-type="doi">10.32362/2500-316X-2019-7-1-48-56</article-id><article-id custom-type="elpub" pub-id-type="custom">mireabulletin-140</article-id><article-categories><subj-group subj-group-type="heading"><subject>Research Article</subject></subj-group><subj-group subj-group-type="section-heading" xml:lang="ru"><subject>ИНФОРМАЦИОННЫЕ СИСТЕМЫ. ИНФОРМАТИКА. ПРОБЛЕМЫ ИНФОРМАЦИОННОЙ БЕЗОПАСНОСТИ</subject></subj-group><subj-group subj-group-type="section-heading" xml:lang="en"><subject>INFORMATION SYSTEMS. COMPUTER SCIENCES. ISSUES OF INFORMATION SECURITY</subject></subj-group></article-categories><title-group><article-title>ANTIVIRUS SOFTWARE AND INDUSTRIAL CYBER SECURITY SYSTEM CERTIFICATION IN RUSSIA</article-title><trans-title-group xml:lang="en"><trans-title>ANTIVIRUS SOFTWARE AND INDUSTRIAL CYBER SECURITY SYSTEM CERTIFICATION IN RUSSIA</trans-title></trans-title-group></title-group><contrib-group><contrib contrib-type="author" corresp="yes"><name-alternatives><name name-style="eastern" xml:lang="ru"><surname>Nazarenko</surname><given-names>M. A.</given-names></name><name name-style="western" xml:lang="en"><surname>Nazarenko</surname><given-names>M. A.</given-names></name></name-alternatives><email xlink:type="simple">Nazarenko@mirea.ru</email><xref ref-type="aff" rid="aff-1"/></contrib><contrib contrib-type="author" corresp="yes"><name-alternatives><name name-style="eastern" xml:lang="ru"><surname>Gorobets</surname><given-names>A. I.</given-names></name><name name-style="western" xml:lang="en"><surname>Gorobets</surname><given-names>A. I.</given-names></name></name-alternatives><email xlink:type="simple">noemail@neicon.ru</email><xref ref-type="aff" rid="aff-1"/></contrib><contrib contrib-type="author" corresp="yes"><name-alternatives><name name-style="eastern" xml:lang="ru"><surname>Miskov</surname><given-names>D. V.</given-names></name><name name-style="western" xml:lang="en"><surname>Miskov</surname><given-names>D. V.</given-names></name></name-alternatives><email xlink:type="simple">noemail@neicon.ru</email><xref ref-type="aff" rid="aff-1"/></contrib><contrib contrib-type="author" corresp="yes"><name-alternatives><name name-style="eastern" xml:lang="ru"><surname>Muravyev</surname><given-names>V. V.</given-names></name><name name-style="western" xml:lang="en"><surname>Muravyev</surname><given-names>V. V.</given-names></name></name-alternatives><email xlink:type="simple">noemail@neicon.ru</email><xref ref-type="aff" rid="aff-1"/></contrib><contrib contrib-type="author" corresp="yes"><name-alternatives><name name-style="eastern" xml:lang="ru"><surname>Novikov</surname><given-names>A. S.</given-names></name><name name-style="western" xml:lang="en"><surname>Novikov</surname><given-names>A. S.</given-names></name></name-alternatives><email xlink:type="simple">noemail@neicon.ru</email><xref ref-type="aff" rid="aff-1"/></contrib></contrib-group><aff-alternatives id="aff-1"><aff xml:lang="ru"><institution>МИРЭА - Российский технологический университет</institution><country>Россия</country></aff><aff xml:lang="en"><institution>MIREA - Russian Technological University</institution><country>Russian Federation</country></aff></aff-alternatives><pub-date pub-type="collection"><year>2019</year></pub-date><pub-date pub-type="epub"><day>28</day><month>02</month><year>2019</year></pub-date><volume>7</volume><issue>1</issue><fpage>48</fpage><lpage>56</lpage><permissions><copyright-statement>Copyright &amp;#x00A9; Nazarenko M.A., Gorobets A.I., Miskov D.V., Muravyev V.V., Novikov A.S., 2019</copyright-statement><copyright-year>2019</copyright-year><copyright-holder xml:lang="ru">Nazarenko M.A., Gorobets A.I., Miskov D.V., Muravyev V.V., Novikov A.S.</copyright-holder><copyright-holder xml:lang="en">Nazarenko M.A., Gorobets A.I., Miskov D.V., Muravyev V.V., Novikov A.S.</copyright-holder><license xml:lang="ru" license-type="creative-commons-attribution" xlink:href="https://creativecommons.org/licenses/by/4.0/" xlink:type="simple"><license-p>Данная работа распространяется под лицензией Creative Commons Attribution 4.0.</license-p></license><license xml:lang="en" license-type="creative-commons-attribution" xlink:href="https://creativecommons.org/licenses/by/4.0/" xlink:type="simple"><license-p>This work is licensed under a Creative Commons Attribution 4.0 License.</license-p></license></permissions><self-uri xlink:href="https://www.rtj-mirea.ru/jour/article/view/140">https://www.rtj-mirea.ru/jour/article/view/140</self-uri><abstract><p>Статья посвящена вопросам сертификации антивирусного программного обеспечения и систем промышленной кибербезопасности. Показано, что время сертификации в России промышленной системы кибербезопасности (кибербезопасности АСУ ТП) значительно больше (до трех раз), чем в США, Европейском Союзе и Германии. В статье проанализированы продукты этих отраслей по времени жизни и времени разработки. Время разработки и использования продуктов также больше. Каждая переменная представлена для новых продуктов и для новых версий существующих продуктов. В статье использованы статистические методы: Альфа Кронбаха, Т-статистика и сравнение медианных значений. Перечисленные методы нередко используются в статьях по управлению качеством. Однако самый важный результат состоит в том, что в России сертификация добавляет от 32.1 до 40% ко времени на разработку новой версии или нового продукта, соответственно, в то время как в других странах - около 17%. Сокращение сроков сертификации приведет к повышению эффективности разработки новых продуктов в области кибербезопасности, что позволит улучшить позиции российской продукции на международном рынке.</p></abstract><trans-abstract xml:lang="en"><p>The article is dedicated to issues in certification of antivirus software and industrial cyber security systems. It was shown that certification time in Russia is much longer than in the USA, European Union and Germany. The life time and the development time of products of this field were analyzed in the article. Each variable was specified for new products and for new versions of existing products. Some statistical methods were used in the article: Cronbach’s alfa, t-statistics, and median value similarity that are typical for the articles in quality management. As a result, it was found that certification time in Russia for industrial cyber security systems is significantly longer than in other analyzed countries, up to three-fold. Product development and life time are also longer. However, the most important result is that certification in Russia adds from 32.1 to 40 percent of time to the development of a new version or a new product, correspondingly, whereas in other investigated countries these numbers are about 17 percent. Reduction of certification time will increase new product development efficiency in the field of cyber security, which will improve positions of Russian products at the international mark et.</p></trans-abstract><kwd-group xml:lang="ru"><kwd>кибербезопасность</kwd><kwd>промышленная система кибербезопасности</kwd><kwd>антивирусное программное обеспечение</kwd><kwd>сертификация</kwd><kwd>Россия</kwd></kwd-group><kwd-group xml:lang="en"><kwd>cyber security</kwd><kwd>industrial cyber security system</kwd><kwd>antivirus software</kwd><kwd>certification</kwd><kwd>Russia</kwd></kwd-group></article-meta></front><back><ref-list><title>References</title><ref id="cit1"><label>1</label><citation-alternatives><mixed-citation xml:lang="ru">Kabali H.K., Rigoyen M.M., Nunez-Davis R., Budacki J.G., Mohanty S.H., Leister K.P., Bonner R.L. Jr. Exposure and use of mobile media devices by young children // Pediatrics. 2015. V. 136. № 6. P. 1044-1050. doi: 10.1542/peds.2015-2151</mixed-citation><mixed-citation xml:lang="en">Kabali H.K., Rigoyen M.M., Nunez-Davis R., Budacki J.G., Mohanty S.H., Leister K.P., Bonner R.L. Jr. Exposure and use of mobile media devices by young children. Pediatrics. 2015; 136(6): 1044-1050. doi: 10.1542/peds.2015-2151.</mixed-citation></citation-alternatives></ref><ref id="cit2"><label>2</label><citation-alternatives><mixed-citation xml:lang="ru">Schoitsch E., Schmittner C., Ma Z., Gruber Th. The need for safety and cyber-security co-engineering and standardization for highly automated automotive vehicles // In: Advanced Microsystems for Automotive Applications / Schulze T., Müller B., Meyer G. (eds). Springer, 2015. P. 251-261.</mixed-citation><mixed-citation xml:lang="en">Schoitsch E., Schmittner C., Ma Z., Gruber Th. The need for safety and cyber-security co-engineering and standardization for highly automated automotive vehicles. In: Advanced Microsystems for Automotive Applications. Schulze T., Müller B., Meyer G. (eds). Springer, 2015: 251-261.</mixed-citation></citation-alternatives></ref><ref id="cit3"><label>3</label><citation-alternatives><mixed-citation xml:lang="ru">Ni J.Z., Melnyk S., Flynn B.B., Ritchie W. Why be first if it doesn’t pay? The case of early adopters of C-TPAT supply chain security certification // Int. J. Operat. &amp; Product. Management. 2016. V. 36. №. 10. P. 1161-1181.</mixed-citation><mixed-citation xml:lang="en">Ni J.Z., Melnyk S., Flynn B.B., Ritchie W. Why be first if it doesn’t pay? The case of early adopters of C-TPAT supply chain security certification. Int. J. Operat. &amp; Product. Management. 2016; 36(10): 1161-1181.</mixed-citation></citation-alternatives></ref><ref id="cit4"><label>4</label><citation-alternatives><mixed-citation xml:lang="ru">Gcaza N., Von Solms R. A A strategy for a cybersecurity culture: A South African perspective // The Electronic Journal of Information Systems in Developing Countries. 2017. V. 80. №. 1. P. 1-17.</mixed-citation><mixed-citation xml:lang="en">Gcaza N., Von Solms R. A strategy for a cybersecurity culture: A South African perspective. The Electronic Journal of Information Systems in Developing Countries. 2017; 80(1): 1-17.</mixed-citation></citation-alternatives></ref><ref id="cit5"><label>5</label><citation-alternatives><mixed-citation xml:lang="ru">Mourtzis D., Vlachou E. Cloud-based cyber-physical systems and quality of services // The TQM Journal. 2016. V. 28. № 5. P. 704-733.</mixed-citation><mixed-citation xml:lang="en">Mourtzis D., Vlachou E. Cloud-based cyber-physical systems and quality of services. The TQM Journal. 2016; 28(5): 704-733.</mixed-citation></citation-alternatives></ref><ref id="cit6"><label>6</label><citation-alternatives><mixed-citation xml:lang="ru">Raisinghani M.S. Can total quality management exist in cyber security: Is it present? Are we safe? // In: Handbook of Research on Digital Crime, Cyberspace Security, and Information Assurance. IGI Global, 2015. P. 350-359.</mixed-citation><mixed-citation xml:lang="en">Raisinghani M.S. Can total quality management exist in cyber security: Is it present? Are we safe? In: Handbook of Research on Digital Crime, Cyberspace Security, and Information Assurance. IGI Global, 2015: 350-359.</mixed-citation></citation-alternatives></ref><ref id="cit7"><label>7</label><citation-alternatives><mixed-citation xml:lang="ru">Cherdantseva Y., Burnap P., Blyth A., Eden P., Jones K., Soulsby H., Stoddart K. A review of cyber security risk assessment methods for SCADA systems // Computers &amp; Security. 2016. V. 56. P. 1-27.</mixed-citation><mixed-citation xml:lang="en">Cherdantseva Y., Burnap P., Blyth A., Eden P., Jones K., Soulsby H., Stoddart K. A review of cyber security risk assessment methods for SCADA systems. Computers &amp; Security. 2016; 56: 1-27.</mixed-citation></citation-alternatives></ref><ref id="cit8"><label>8</label><citation-alternatives><mixed-citation xml:lang="ru">Kent A.D. Cyber security data sources for dynamic network research // In: Dynamic Networks and Cyber-Security. Publisher WSPC, 2016. P. 37-65.</mixed-citation><mixed-citation xml:lang="en">Kent A.D. Cyber security data sources for dynamic network research. In: Dynamic Networks and Cyber-Security. Publisher WSPC, 2016: 37-65.</mixed-citation></citation-alternatives></ref><ref id="cit9"><label>9</label><citation-alternatives><mixed-citation xml:lang="ru">Ефремова М.А. Уголовно-правовое обеспечение кибербезопасности: некоторые проблемы и пути их решения // Право и кибербезопасность. 2014. № 2. С. 33-38.</mixed-citation><mixed-citation xml:lang="en">Efremova M.A. Criminal-legal ensuring of cyber security: Problems and ways of their solution. Pravo i kiberbesopasnost’ (Law and Cyber Security). 2014; 2: 33-38. (in Russ.)</mixed-citation></citation-alternatives></ref><ref id="cit10"><label>10</label><citation-alternatives><mixed-citation xml:lang="ru">Зиборов О.В., Иванов М.А., Чекунов И.Г. Состояние кибербезопасности современного информационного общества // Вопросы кибербезопасности. 2017. № 52(20). С. 15-18.</mixed-citation><mixed-citation xml:lang="en">Ziborov O.V., Ivanov M.A., Chekunov I.G. The state of cyber security in modern information society. Voprosi kiberbesopasnosti (Questions of Cyber Security). 2017; 52(20): 15-18. (in Russ.)</mixed-citation></citation-alternatives></ref><ref id="cit11"><label>11</label><citation-alternatives><mixed-citation xml:lang="ru">Карцхия А.А. Кибербезопасность и интеллектуальная собственность. Часть 1 / Вопросы кибербезопасности. 2014. № 1(2). С. 61-66.</mixed-citation><mixed-citation xml:lang="en">Kartskhiya A.A. Cyber security and intellectual property. Part 1. Voprosi kiberbesopasnosti (Questions of Cyber Security). 2014; 1(2): 61-66. (in Russ.)</mixed-citation></citation-alternatives></ref><ref id="cit12"><label>12</label><citation-alternatives><mixed-citation xml:lang="ru">Knowles W., Hutchison D., Prince D., Diss J.P. A survey of cyber security management in industrial control systems // Int. J. Critical Infrastructure Protection. 2015. V. 9. P. 52-80.</mixed-citation><mixed-citation xml:lang="en">Knowles W., Hutchison D., Prince D., Diss J.P. A survey of cyber security management in industrial control systems. Int. J. Critical Infrastructure Protection. 2015; 9: 52-80.</mixed-citation></citation-alternatives></ref><ref id="cit13"><label>13</label><citation-alternatives><mixed-citation xml:lang="ru">Gopalakrishnan S., Zhang H. The link between vendor certification and performance in IT outsourcing: A tale of two stories // Academy of Management Proceed. 2018. № 1. P. 129-167.</mixed-citation><mixed-citation xml:lang="en">Gopalakrishnan S., Zhang H. The link between vendor certification and performance in IT outsourcing: A tale of two stories. Academy of Management Proceed. 2018; 1: 129-167.</mixed-citation></citation-alternatives></ref><ref id="cit14"><label>14</label><citation-alternatives><mixed-citation xml:lang="ru">Kantardjieva M. The relationship between total quality management (TQM) and strategic management // J. Economics, Business and Management. 2015. V. 3. № 5. P. 537-541.</mixed-citation><mixed-citation xml:lang="en">Kantardjieva M. The relationship between total quality management (TQM) and strategic management. J. Economics, Business and Management. 2015; 3(5): 537-541.</mixed-citation></citation-alternatives></ref><ref id="cit15"><label>15</label><citation-alternatives><mixed-citation xml:lang="ru">Shin J. , Son H., Rahman K.U., Heo G. Development of a cyber security risk model using Bayesian networks // Reliability Engineering &amp; System Safety. 2015. V. 134. P. 208-217.</mixed-citation><mixed-citation xml:lang="en">Shin J. , Son H., Rahman K.U., Heo G. Development of a cyber security risk model using Bayesian networks. Reliability Engineering &amp; System Safety. 2015; 134: 208-217.</mixed-citation></citation-alternatives></ref></ref-list><fn-group><fn fn-type="conflict"><p>The authors declare that there are no conflicts of interest present.</p></fn></fn-group></back></article>
