<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE article PUBLIC "-//NLM//DTD JATS (Z39.96) Journal Publishing DTD v1.3 20210610//EN" "JATS-journalpublishing1-3.dtd">
<article article-type="research-article" dtd-version="1.3" xmlns:mml="http://www.w3.org/1998/Math/MathML" xmlns:xlink="http://www.w3.org/1999/xlink" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xml:lang="ru"><front><journal-meta><journal-id journal-id-type="publisher-id">mireabulletin</journal-id><journal-title-group><journal-title xml:lang="ru">Russian Technological Journal</journal-title><trans-title-group xml:lang="en"><trans-title>Russian Technological Journal</trans-title></trans-title-group></journal-title-group><issn pub-type="ppub">2782-3210</issn><issn pub-type="epub">2500-316X</issn><publisher><publisher-name>RTU MIREA</publisher-name></publisher></journal-meta><article-meta><article-id pub-id-type="doi">10.32362/2500-316X-2020-8-6-34-46</article-id><article-id custom-type="elpub" pub-id-type="custom">mireabulletin-256</article-id><article-categories><subj-group subj-group-type="heading"><subject>Research Article</subject></subj-group><subj-group subj-group-type="section-heading" xml:lang="ru"><subject>ИНФОРМАЦИОННЫЕ СИСТЕМЫ. ИНФОРМАТИКА. ПРОБЛЕМЫ ИНФОРМАЦИОННОЙ БЕЗОПАСНОСТИ</subject></subj-group><subj-group subj-group-type="section-heading" xml:lang="en"><subject>INFORMATION SYSTEMS. COMPUTER SCIENCES. ISSUES OF INFORMATION SECURITY</subject></subj-group></article-categories><title-group><article-title>Разработка технологии контроля доступа к цифровым порталам и платформам на основе встроенных в интерфейс оценок времени реакций пользователей</article-title><trans-title-group xml:lang="en"><trans-title>Development of technology for controlling access to digital portals and platforms based on estimates of user reaction time built into the interface</trans-title></trans-title-group></title-group><contrib-group><contrib contrib-type="author" corresp="yes"><contrib-id contrib-id-type="orcid">https://orcid.org/0000-0001-8560-1937</contrib-id><name-alternatives><name name-style="eastern" xml:lang="ru"><surname>Магомедов</surname><given-names>Ш. Г.</given-names></name><name name-style="western" xml:lang="en"><surname>Magomedov</surname><given-names>S. G.</given-names></name></name-alternatives><bio xml:lang="ru"><p>Магомедов Шамиль Гасангусейнович, кандидат технических наук, доцент, заведующий кафедрой «Интеллектуальные системы информационной безопасности» Института комплексной безопасности и специального приборостроения ФГБОУ ВО «МИРЭА – Российский технологический университет»</p><p>119454, Москва, пр-т Вернадского, д. 78</p><p>ResearcherID: M-5782-2016, Scopus Author ID 57204759220</p></bio><bio xml:lang="en"><p>Shamil G. Magomedov, Cand. Sci. (Engineering), Associate Professor, Head of the Department of Intelligent Information Security Systems of the Institute of Integrated Security and Special Instrumentation MIREA – RussianTechnological University</p><p>78, Vernadskogo pr., Moscow 119454</p></bio><email xlink:type="simple">magomedov_sh@mirea.ru</email><xref ref-type="aff" rid="aff-1"/></contrib><contrib contrib-type="author" corresp="yes"><contrib-id contrib-id-type="orcid">https://orcid.org/0000-0003-3633-5913</contrib-id><name-alternatives><name name-style="eastern" xml:lang="ru"><surname>Колясников</surname><given-names>П В.</given-names></name><name name-style="western" xml:lang="en"><surname>Kolyasnikov</surname><given-names>P. V.</given-names></name></name-alternatives><bio xml:lang="ru"><p>Колясников Павел Владимирович, главный аналитик Дата-центра, ассистент кафедры «Интеллектуальные системы информационной безопасности» Института комплексной безопасности и специального приборостроения ФГБОУ ВО «МИРЭА – Российский технологический университет»</p><p>119121, Москва, ул. Погодинская, 8; 119454, Москва, пр-т Вернадского, д. 78</p><p>ResearcherID: O-1885-2018, Scopus Author ID 57204774687</p></bio><bio xml:lang="en"><p>Pavel V. Kolyasnikov, Chief Analyst of the Data Center, Assistant of the Department of Intelligent Information Security Systems, Institute of Integrated Security and Special Instrumentation MIREA – Russian Technological University</p><p>8, Pogodinskaya ul.,Moscow 119121, 78, Vernadskogo pr., Moscow 119454</p></bio><xref ref-type="aff" rid="aff-2"/></contrib><contrib contrib-type="author" corresp="yes"><contrib-id contrib-id-type="orcid">https://orcid.org/0000-0003-1254-9132</contrib-id><name-alternatives><name name-style="eastern" xml:lang="ru"><surname>Никульчев</surname><given-names>Е. В.</given-names></name><name name-style="western" xml:lang="en"><surname>Nikulchev</surname><given-names>E. V.</given-names></name></name-alternatives><bio xml:lang="ru"><p>Никульчев Евгений Витальевич, доктор технических наук, профессор, профессор кафедры «Интеллектуальные системы информационной безопасности» Института комплексной безопасности и специального приборостроения ФГБОУ ВО «МИРЭА – Российский технологический университет», главный аналитик Дата-центра, Российская академия образования</p><p>119454, Москва, пр-т Вернадского, д. 78; 119121 Москва, ул. Погодинская, 8</p><p>ResearcherID: G-6557-2015, Scopus Author ID: 6504081534</p></bio><bio xml:lang="en"><p>Evgeny V. Nikulchev, Dr. Sci. (Engineering), Professor, Professor of the Department of Intelligent Information Security Systems of the Institute of Integrated Security and Special Instrumentation MIREA – Russian Technological University, Chief Analyst of the Data Center</p><p>8, Pogodinskaya ul.,Moscow 119121, 78, Vernadskogo pr., Moscow 119454</p></bio><xref ref-type="aff" rid="aff-2"/></contrib></contrib-group><aff-alternatives id="aff-1"><aff xml:lang="ru"><institution>МИРЭА – Российский технологический университет</institution><country>Россия</country></aff><aff xml:lang="en"><institution>MIREA – Russian Technological University</institution><country>Russian Federation</country></aff></aff-alternatives><aff-alternatives id="aff-2"><aff xml:lang="ru"><institution>МИРЭА – Российский технологический университет; Российская академия образования, Дата-центр</institution><country>Россия</country></aff><aff xml:lang="en"><institution>MIREA – Russian Technological University; Russian Academy of Education, Data Center</institution><country>Russian Federation</country></aff></aff-alternatives><pub-date pub-type="collection"><year>2020</year></pub-date><pub-date pub-type="epub"><day>17</day><month>12</month><year>2020</year></pub-date><volume>8</volume><issue>6</issue><fpage>34</fpage><lpage>46</lpage><permissions><copyright-statement>Copyright &amp;#x00A9; Магомедов Ш.Г., Колясников П.В., Никульчев Е.В., 2020</copyright-statement><copyright-year>2020</copyright-year><copyright-holder xml:lang="ru">Магомедов Ш.Г., Колясников П.В., Никульчев Е.В.</copyright-holder><copyright-holder xml:lang="en">Magomedov S.G., Kolyasnikov P.V., Nikulchev E.V.</copyright-holder><license xml:lang="ru" license-type="creative-commons-attribution" xlink:href="https://creativecommons.org/licenses/by/4.0/" xlink:type="simple"><license-p>Данная работа распространяется под лицензией Creative Commons Attribution 4.0.</license-p></license><license xml:lang="en" license-type="creative-commons-attribution" xlink:href="https://creativecommons.org/licenses/by/4.0/" xlink:type="simple"><license-p>This work is licensed under a Creative Commons Attribution 4.0 License.</license-p></license></permissions><self-uri xlink:href="https://www.rtj-mirea.ru/jour/article/view/256">https://www.rtj-mirea.ru/jour/article/view/256</self-uri><abstract><p>Статья посвящена разработке технологии контроля доступа к цифровым порталам и платформам на основе встроенных в интерфейс оценок персональных характеристик поведения пользователей. В распределенных цифровых платформах и порталах, использующих персональные данные, осуществляется сбор и обработка данных большого объема с помощью специализированных приложений, использующих компьютерные сети. Согласно законодательству Российской Федерации хранение данных происходит на внутрикорпоративных серверах и центрах обработки данных. Задачам разграничения и контроля доступа в современных информационных системах уделяется особое внимание. Широкая доступность и массовость сервисов должна сопровождаться более тщательным контролем и верификацией пользователя. Обеспечение контроля доступа к таким системам не может быть осуществлено только за счет технологий и средств информационной безопасности, повысить эффективность можно за счет программно-аппаратных архитектурных решений. В работе предлагается расширить развивающуюся в настоящее время SIEM-технологию (Security information and event management), объединяющую концепцию управления событиями безопасности и управление информационной безопасностью, блоками анализа поведения пользователей. В качестве характеристики, которая может быть оценена без перегрузок каналов связи и независима от используемого типа устройств, предложено использовать время психомоторной реакции, измеряемое при выполнении действий с интерфейсом. Разработано технологическое решение, которое может быть реализовано в широком спектре цифровых платформ – банковских, медицинских, образовательных и др. Приведены результаты экспериментов с использованием цифровой платформы массовых психологических исследований. Для анализа использовались данные массового опроса при ответе (в форме выбора из имеющихся вариантов) на анкетные вопросы об уровне образования. Анализ данных о времени реакции показал возможность нормирования и одинаковые показатели конкретных пользователей при ответах на разные вопросы.</p></abstract><trans-abstract xml:lang="en"><p>The paper addresses the development of technology for controlling access to digital portals and platforms based on assessments of personal characteristics of user behavior built into the interface. In distributed digital platforms and portals using personal data, big data is collected and processed using specialized applications using computer networks. In accordance with the law, the data is stored on internal corporate servers and data centers. Special attention is paid to the tasks of differentiation and control of access in modern information systems. Wide availability and mass scale of services should be accompanied by more careful control and user verification. Access control to such systems cannot be ensured only through technologies and information security tools; efficiency can be increased through software and hardware architectural solutions. The paper proposes to expand the currently developing SIEM technology (Security information and event management), which combines the concept of security event management and information security management, with blocks of user behavior analysis. As a characteristic that can be measured without overloading communication channels and is independent of the type of device used, the psychomotor reaction time is proposed, measured as the performance of actions with the interface. A technological solution has been developed for implementation in a wide range of digital platforms: banking, medical, educational, etc. The results of experimental research using a digital platform of mass psychological research are presented. For the research, data from a mass survey were used when answering (in the form of a choice from the available options) to questions about the level of education. Analysis of the reaction time data showed the possibility of standardization and the same indicators of specific users when answering different questions.</p></trans-abstract><kwd-group xml:lang="ru"><kwd>контроль доступа</kwd><kwd>цифровые платформы</kwd><kwd>обработка больших объемов данных</kwd><kwd>управление событиями безопасности</kwd><kwd>информационная безопасность</kwd><kwd>вычислительные комплексы</kwd><kwd>анализ поведения пользователей</kwd></kwd-group><kwd-group xml:lang="en"><kwd>access control</kwd><kwd>digital platforms</kwd><kwd>big data processing</kwd><kwd>security event management</kwd><kwd>information security</kwd><kwd>computing systems</kwd><kwd>user behavior analysis</kwd></kwd-group><funding-group><funding-statement xml:lang="ru">Работа выполнена при финансовой поддержке РФФИ (грант 17-29-02198).</funding-statement></funding-group></article-meta></front><back><ref-list><title>References</title><ref id="cit1"><label>1</label><citation-alternatives><mixed-citation xml:lang="ru">Никульчев Е.В., Ильин Д.Ю., Колясников П.В., Исматуллина В.И., Захаров И.М., Малых С.Б. Разработка открытой цифровой платформы масштабных психологических исследований. Вестник РФФИ. 2019;4(104):99-113. https://doi.org/10.22204/2410-4639-2019-104-04-105-119</mixed-citation><mixed-citation xml:lang="en">Nikulchev E.V., Ilyin D.Yu., Kolyasnikov P.V., Ismatullina V.I., Zakharov I.M., Malykh S.B. Development of the open digital platform for conducting the large-scale psychological research. RFBR Journal. 2019;(104):99-113 (in Russ.). https://doi.org/10.22204/2410-4639-2019-104-04-105-119</mixed-citation></citation-alternatives></ref><ref id="cit2"><label>2</label><citation-alternatives><mixed-citation xml:lang="ru">Khan A., Khan R., Nisar F. Novice threat model using SIEM system for threat assessment. In: 2017 International Conference on Communication Technologies (ComTech). IEEE. 2017. P. 72-77. https://doi.org/10.1109/COMTECH.2017.8065753</mixed-citation><mixed-citation xml:lang="en">Khan A., Khan R., Nisar F. Novice threat model using SIEM system for threat assessment. In: 2017 International Conference on Communication Technologies (ComTech). IEEE. 2017. P. 72-77. https://doi.org/10.1109/COMTECH.2017.8065753</mixed-citation></citation-alternatives></ref><ref id="cit3"><label>3</label><citation-alternatives><mixed-citation xml:lang="ru">El Arass M., Souissi N. Smart SIEM: From big data logs and events to smart data alerts. Int. J. Innov. Technol. Explor. Eng. 2019;8(8):3186-3191.</mixed-citation><mixed-citation xml:lang="en">El Arass M., Souissi N. Smart SIEM: From big data logs and events to smart data alerts. Int. J. Innov. Technol. Explor. Eng. 2019;8(8):3186-3191.</mixed-citation></citation-alternatives></ref><ref id="cit4"><label>4</label><citation-alternatives><mixed-citation xml:lang="ru">Lavrova D.S. An approach to developing the SIEM system for the Internet of Things. Automatic control and computer sciences. 2016;50(8):673-681. https://doi.org/10.3103/S0146411616080125</mixed-citation><mixed-citation xml:lang="en">Lavrova D.S. An approach to developing the SIEM system for the Internet of Things. Automatic control and computer sciences. 2016;50(8):673-681. https://doi.org/10.3103/S0146411616080125</mixed-citation></citation-alternatives></ref><ref id="cit5"><label>5</label><citation-alternatives><mixed-citation xml:lang="ru">Khan T., Alam M., Akhunzada A., Hur A., Asif M., Khan M.K. Towards augmented proactive cyberthreat intelligence. J. Parallel Distrib. Comput. 2019;124:47-59. https://doi.org/10.1016/j.jpdc.2018.10.006</mixed-citation><mixed-citation xml:lang="en">Khan T., Alam M., Akhunzada A., Hur A., Asif M., Khan M.K. Towards augmented proactive cyberthreat intelligence. J. Parallel Distrib. Comput. 2019;124:47-59. https://doi.org/10.1016/j.jpdc.2018.10.006</mixed-citation></citation-alternatives></ref><ref id="cit6"><label>6</label><citation-alternatives><mixed-citation xml:lang="ru">Kufel L. Security event monitoring in a distributed systems environment. IEEE Secur. Priv. 2013;11(1):36-43. https://doi.org/10.1109/MSP.2012.61</mixed-citation><mixed-citation xml:lang="en">Kufel L. Security event monitoring in a distributed systems environment. IEEE Secur. Priv. 2013;11(1):36-43. https://doi.org/10.1109/MSP.2012.61</mixed-citation></citation-alternatives></ref><ref id="cit7"><label>7</label><citation-alternatives><mixed-citation xml:lang="ru">Al-Duwairi B., Al-Kahla W., AlRefai M.A., Abdelqader Y., Rawash A., Fahmawi R. SIEM-based detection and mitigation of IoT-botnet DDoS attacks. Int. J. Electr. Comput. Eng. 2020;10(2):2182-2191. http://doi.org/10.11591/ijece.v10i2.pp2182-2191</mixed-citation><mixed-citation xml:lang="en">Al-Duwairi B., Al-Kahla W., AlRefai M.A., Abdelqader Y., Rawash A., Fahmawi R. SIEM-based detection and mitigation of IoT-botnet DDoS attacks. Int. J. Electr. Comput. Eng. 2020;10(2):2182-2191. http://doi.org/10.11591/ijece.v10i2.pp2182-2191</mixed-citation></citation-alternatives></ref><ref id="cit8"><label>8</label><citation-alternatives><mixed-citation xml:lang="ru">Lee J., Kim J., Kim I., Han K. Cyber threat detection based on artificial neural networks using event profiles. IEEE Access. 2019;7:165607-16562. https://doi.org/10.1109/ACCESS.2019.2953095</mixed-citation><mixed-citation xml:lang="en">Lee J., Kim J., Kim I., Han K. Cyber threat detection based on artificial neural networks using event profiles. IEEE Access. 2019;7:165607-16562. https://doi.org/10.1109/ACCESS.2019.2953095</mixed-citation></citation-alternatives></ref><ref id="cit9"><label>9</label><citation-alternatives><mixed-citation xml:lang="ru">Moukafih N., Orhanou G., El Hajji S. Neural Network-Based Voting System with High Capacity and Low Computation for Intrusion Detection in SIEM/IDS Systems. Security and Communication Networks. 2020; Article ID 3512737. https://doi.org/10.1155/2020/3512737</mixed-citation><mixed-citation xml:lang="en">Moukafih N., Orhanou G., El Hajji S. Neural Network-Based Voting System with High Capacity and Low Computation for Intrusion Detection in SIEM/IDS Systems. Security and Communication Networks. 2020; Article ID 3512737. https://doi.org/10.1155/2020/3512737</mixed-citation></citation-alternatives></ref><ref id="cit10"><label>10</label><citation-alternatives><mixed-citation xml:lang="ru">Sancho J.C., Caro A., Ávila M., Bravo A. New approach for threat classification and security risk estimations based on security event management. Future Generation Computer Systems. 2020;113:488-505. https://doi.org/10.1016/j.future.2020.07.015</mixed-citation><mixed-citation xml:lang="en">Sancho J.C., Caro A., Ávila M., Bravo A. New approach for threat classification and security risk estimations based on security event management. Future Generation Computer Systems. 2020;113:488-505. https://doi.org/10.1016/j.future.2020.07.015</mixed-citation></citation-alternatives></ref><ref id="cit11"><label>11</label><citation-alternatives><mixed-citation xml:lang="ru">Csaba K., Péter H.B. Analysis of Cyberattack Patterns by User Behavior Analytics. AARMS – Academic and Applied Research in Military Science 2018;17(3):101-114.</mixed-citation><mixed-citation xml:lang="en">Csaba K., Péter H.B. Analysis of Cyberattack Patterns by User Behavior Analytics. AARMS – Academic and Applied Research in Military Science. 2018;17(3):101-114.</mixed-citation></citation-alternatives></ref><ref id="cit12"><label>12</label><citation-alternatives><mixed-citation xml:lang="ru">Xi X., Zhang T., Ye W., Wen Z., Zhang S., Du D., Gao Q. An Ensemble Approach for Detecting Anomalous User Behaviors. Int. J. Softw. Eng. Knowl. Eng. 2018;28(11n12):1637-1656. https://doi.org/10.1142/S0218194018400211</mixed-citation><mixed-citation xml:lang="en">Xi X., Zhang T., Ye W., Wen Z., Zhang S., Du D., Gao Q. An Ensemble Approach for Detecting Anomalous User Behaviors. Int. J. Softw. Eng. Knowl. Eng. 2018;28(11n12):1637-1656. https://doi.org/10.1142/S0218194018400211</mixed-citation></citation-alternatives></ref><ref id="cit13"><label>13</label><citation-alternatives><mixed-citation xml:lang="ru">Миронов В.В., Гусаренко А.С., Юсупова Н.И. Применение веб-сервисов на основе ситуационно-ориентированной базы данных для мониторинга просмотра учебного видеоконтента. Моделирование, оптимизация и информационные технологии. 2019;7(3(26): 27. https://doi.org/10.26102/2310-6018/2019.26.3.031</mixed-citation><mixed-citation xml:lang="en">Mironov V.V., Gusarenko A.S., Yusupova N.I. Application of web services based on situation-oriented database for monitoring the viewing of the educational video content. Modelirovanie, optimizatsiya i informatsionnye tekhnologii = Modeling, Optimization and Information Technology. 2019;7(3(26):27 (in Russ.). https://doi.org/10.26102/2310-6018/2019.26.3.031</mixed-citation></citation-alternatives></ref><ref id="cit14"><label>14</label><citation-alternatives><mixed-citation xml:lang="ru">Монахова М.М., Шерунтаев Д.А., Марков И.С., Мазуро Д.В. Модель поведения пользователя корпоративной сети передачи данных. В: Сб. трудов Девятой всероссийской научно-практической конференции по имитационному моделированию и его применению в науке и промышленности. Екатеринбург; 2019. С. 603-608.</mixed-citation><mixed-citation xml:lang="en">Monakhova M.M., Sheruntaev D.A., Markov I.S., Mazurok D.V. Behavior model of the user for a corporate data transmission network. In: Proc. The 9th All-Russian Scientific and Practical Conference on Simulation and Its Application in Science and Industry. Ekaterinburg; 2019. Р. 603-608 (in Russ.).</mixed-citation></citation-alternatives></ref><ref id="cit15"><label>15</label><citation-alternatives><mixed-citation xml:lang="ru">Kim J., Gabriel U., Gygax P. Testing the effectiveness of the Internet-based instrument PsyToolkit: A comparison between web-based (PsyToolkit) and lab-based (E-Prime 3.0) measurements of response choice and response time in a complex psycholinguistic task. PloS ONE. 2019;14(9):e0221802. https://doi.org/10.1371/journal.pone.0221802</mixed-citation><mixed-citation xml:lang="en">Kim J., Gabriel U., Gygax P. Testing the effectiveness of the Internet-based instrument PsyToolkit: A comparison between web-based (PsyToolkit) and lab-based (E-Prime 3.0) measurements of response choice and response time in a complex psycholinguistic task. PloS ONE. 2019;14(9):e0221802. https://doi.org/10.1371/journal.pone.0221802</mixed-citation></citation-alternatives></ref><ref id="cit16"><label>16</label><citation-alternatives><mixed-citation xml:lang="ru">Nikulchev E., Ilin D., Silaeva A., Kolyasnikov P., Belov V., Runtov A., Pushkin P., Laptev N., Alexeenko A., Magomedov S., Kosenkov A., Zakharov I., Ismatullina V., Malykh S. Digital Psychological Platform for Mass WebSurveys. Data. 2020;5(4):95. https://doi.org/10.3390/data5040095</mixed-citation><mixed-citation xml:lang="en">Nikulchev E., Ilin D., Silaeva A., Kolyasnikov P., Belov V., Runtov A., Pushkin P., Laptev N., Alexeenko A., Magomedov S., Kosenkov A., Zakharov I., Ismatullina V., Malykh S. Digital Psychological Platform for Mass Web-Surveys. Data. 2020;5(4):95. https://doi.org/10.3390/data5040095</mixed-citation></citation-alternatives></ref><ref id="cit17"><label>17</label><citation-alternatives><mixed-citation xml:lang="ru">Борисов А.В., Босов А.В., Иванов А.В., Чавтараев Р.Б. Имитационное моделирование пользовательской активности для оценивания вероятностно-временных характеристик программного обеспечения. Системы и средства информатики. 2018;28(2):20-33. https://doi.org/10.14357/08696527180202</mixed-citation><mixed-citation xml:lang="en">Borisov A.V., Bosov A.V., Ivanov A.V., Chavtaraev R.B. Monte Carlo based user activity simulation for software performance evaluation. Sistemy i sredstva informatiki = Systems and Means of Informatics. 2018;28(2):20-33 (in Russ.). https://doi.org/10.14357/08696527180202</mixed-citation></citation-alternatives></ref></ref-list><fn-group><fn fn-type="conflict"><p>The authors declare that there are no conflicts of interest present.</p></fn></fn-group></back></article>
