Cybersecurity of Critical Infrastructure Facilities

Relevance. The cybersecurity of information systems and services is becoming one of the important criteria for the quality of services and production of goods in modern society, just like the stability and speed of data transfer. Developers of software products and applications are concerned about the increase in the number of attacks on their systems, the increase in the theft of information and assets. The confrontation between Russia and NATO countries has intensified the growth of geopolitical threats and hacker intrusions into the information system of Russia with the aim of destabilizing and deactivating it. At the same time, Rostelecom-Solar noted that hackers are especially attracted to the critical infrastructure of the Russian economy.
The purpose of the study was to evaluate modern technologies for protecting digital services used by companies and to identify new approaches to strengthening security systems.
Objectives. The following tasks were set and consistently solved in the article: to assess the current trends in the transformation of information systems, as well as objects of critical information infrastructure in the light of the increasing attacks of hackers; propose a new approach to solving cybersecurity problems.
Methodology. The methods of graphical, horizontal and logical analysis, generalization and systematization of data were used in the work.
Results. Based on a general review of technologies for protecting critical infrastructure, both from the side of the state and from the side of business, it was concluded that it is necessary to form a triad of visibility of vulnerabilities.
Conclusions. The article considers the directions of restructuring the entire cyber industry and the formation of a new vector for the development of the digital world in the context of changing geopolitical confrontations between developed powers. It is concluded that it is necessary to change the paradigm of the technology market in the direction of transferring all programs to Russian technologies and intensifying their promotion to the EAEU countries, which will allow building a new Eurasian IT market under the guidance of the Russian Federation.

1. O merakh po obespecheniyu tekhnologicheskoi nezavisimosti i bezopasnosti kriticheskoi informatsionnoi infrastruktury Rossiiskoi Federatsii [On measures to ensure the technological independence and security of the critical information infrastructure of the Russian Federation]. Decree of the President of the Russian Federation of March 30, 2022 № 166. Available at: http://publication.pravo.gov.ru/Document/View/0001202203300001. (accessed 11.05.2023)

2. O bezopasnosti kriticheskoi informatsionnoi infrastruktury [On the Security of Critical Information Infrastructure]. Federal Law of July 26, 2017 № 187-FZ. Available at: https://rtmtech.ru/articles/kriticheskaya-informatsionnaya-infrastruktura-2019/. (accessed 11.05.2023)

3. Karasev P. A., Stefanovich D. V. Kiberbezopasnost' kriticheski vazhnoĭ infrastruktury: novye vyzovy [Cybersecurity of Critical Infrastructure: New Challenges]. Rossiya v global'noi politike = Russia in Global Affairs, 2022, no. 20(6), pp. 147-164.

4. Otchet "Kiberataki na rossiiskie kompanii v 2022 godu" [Report "Cyber attacks on Russian companies in 2022"]. Available at: https://rt-solar.ru/upload/iblock/4a4/ghus61x9rd8cv5vczms5ig1svts4tlep/Otchet-o-kiberatakakh-na-rossiyskie-kompanii-v-2022-godu.pdf. (accessed 08.05.2023)

5. Politika gosudarstva v sfere mezhdunarodnoi kiberbezopasnosti [State policy in the field of international cybersecurity]. Available at: https://www.tadviser.ru/index.php/Article:Cybercrime_and_ cyberconflicts_:_Russia. (accessed 08.05.2023)

6. Analiticheskie otchety ob ugrozakh i uyazvimostyakh ASU TP na portale Kaspersky Threat Intelligence [Analytical reports on ICS threats and vulnerabilities on the Kaspersky Threat Intelligence portal]. Available at: https://ics-cert.kaspersky.com/services/. (accessed 11.05.2023)

7. O sozdanii gosudarstvennoi sistemy obnaruzheniya, preduprezhdeniya i likvidatsii po-sledstvii komp'yuternykh atak na informatsionnye resursy Rossiiskoi Federatsii [On the creation of a state system for detecting, preventing and eliminating the consequences of computer attacks on information resources of the Russian Federation]. Decree of the President of the Russian Federation of January 15, 2013 № 31s. Available at: http://www.kremlin.ru/acts/bank/36691. (accessed 08.05.2023)

8. O Natsional'nom koordinatsionnom tsentre po komp'yuternym intsidentam [On the National Coordination Center for Computer Incidents]. Order of the Federal Security Service of the Russian Federation dated July 24, 2018 № 366. Available at: http://publication.pravo.gov.ru/Document/View/0001201809100001. (accessed 08.05.2023)

9. Bezopasnost' ob"ektov kriticheskoi informatsionnoi infrastruktury organizatsii [Security of objects of critical information infrastructure of the organization]. Available at: http://aciso.ru/files/docs/metodichka_2.0.pdf. Accessed 29 March 2023. (accessed 08.05.2023)

10. Tsarev E. O. Kriticheskaya informatsionnaya infrastruktura 2022 god [Critical Information Infrastructure 2022]. Available at: https://rtmtech.ru/articles/kriticheskaya-informatsionnaya-infrastruktura2019/. (accessed 08.05.2023)

11. KiberNEustoichivost' i kak s nei borot'sya [Cyber instability and how to deal with it]. Available at: https://www.itsec.ru/articles/kiberneustojchivost-i-kak-s-nej-borotsya. (accessed 08.05.2023)

12. Kiberbezopasnost' 2022-2023. Trendy i prognozy [Cybersecurity 2022-2023. Trends and forecasts]. Available at: https://www.ptsecurity.com/en-us/research/analytics/ogo-kakaya-ib/#id9. (accessed 08.05.2023)

13. Fedotova G. V., Orlova E. R., Bocharova I. E. Voprosy kiberbezopasnosti tsifrovykh finansovykh servisov [Issues of cybersecurity of digital financial services]. Informatsionnye tekhnologii i vychislitel'nye sistemy = Information technologies and computing systems, 2022, no. 2, pp. 37-45.

14. Akimova G. P., eds. Ob odnom podkhode k obespecheniyu bezopasnosti dannykh v informatsionnoi sisteme sredstvami OS i SUBD [On one approach to ensuring data security in an information system using OS and DBMS]. Informatsionnye tekhnologii i vychislitel'nye sistemy = Information Technologies and Computing Systems, 2022, no. 1, pp. 33-39.

15. Zashchita kriticheski vazhnykh ob"ektov infrastruktury ot terroristicheskikh atak. Sbornik peredovogo opyta [Protecting Critical Infrastructure from Terrorist Attacks. A Compilation of Best Practices]. Available at: https://unrcca.unmissions.org/sites/default/files/eng_compendium_on_critical_infrastructure_0.pdf. (accessed 11.05.2023)

16. Aktual'nye kiberugrozy: itogi 2022 goda [Actual cyber threats: results of 2022]. Available at: https://www.ptsecurity.com/en-us/research/analytics/cybersecurity-threatscape-2022/. (accessed 11.05.2023)

17. Mishustin zayavil, chto Rossii nuzhno dogonyat' zarubezhnye strany v oblasti mikroelektroniki [Mishustin said that Russia needs to catch up with foreign countries in the field of microelectronics]. Available at: https://tass.ru/ekonomika/9025357. (accessed 11.05.2023)

18. Li Y. The Semiconductor Industry: A Strategic Look at China's Supply Chain. The New Chinese Dream. Cham, Palgrave Macmillan Publ., 2021, pp. 121-136.

19. Kapustina Yu. A., Ilyasov R. Kh., Tsitsige. Ekonomika khaktivizma ‒ novyi vektor razvitiya tenevogo biznesa [The economy of hacktivism is a new vector for the development of shadow business]. Izvestiya Yugo-Zapadnogo gosudarstvennogo universiteta. Seriya: Ekonomika. Sotsiologiya. Menedzhment = Proceedings of the Southwest State University. Series: Economics, Sociology and Management, 2022, no. 2(5), pp. 56-67.

20. Trendy digital-transformatsii bankov 2021–2024 [Trends in digital transformation of banks 2021–2024]. Available at: https://vc.ru/future/338072-trendy-digital-transformacii-bankov-2021-2024. (accessed 11.05.2023)

21. Burbach D. T., Watts C. Messing with the Enemy: Surviving in a Social Media World of Hackers, Terrorists, Russians, and Fake News. Naval War College Review, 2020, vol. 73, no. 1, p. 17.