As is well known, functioning of almost modern technical means and systems of information processing and transfer related with quantized electromagnetic energy which circulating by its circuit implementations using electromagnetic fields, electric currents, optical energy, etc. Its – energy, which is the carrier of discrete data or information in a continuous environment and, actually, within its own properties as energy conservation law, almost always accompanied by a list of adverse effects [1-7]. These effects are: unwanted radiation of electromagnetic fields to the environment, which can spread over long distances from hardware of information processing; the impact of these fields to technical means, which have galvanic and other connections with the world; leakage of information to conductive conductors of electric currents: power supply network, grounding system, connecting lines or subscriber network of free access [8].

During processing of information with restricted access by technical means mentioned above is a certain class of threats, which is implemented by using of special means of interception. These special means may have different degrees of complexity and efficiency depending on the value of the information and the interest in outsiders knowing. The value of information is a determining factor for possible efficiency involved in interception technical means and the degree of protection of information from leakage.

The balance of protection and threats determine the security of information, and a measure of balance – its safety guarantee, which as a result of the natural factors influence may be characterized by a probability of safety risk [9-11]. This probability is an integral part, which is used by the Bayesian criterion for direct risk assessment [1215]. A separate case of this criterion is the Kotelnikov criterion, which uses the construction of an optimal receiver and the mathematical justification of its decisive scheme as the best of all possible receiver circuits [16-19]. The decisive scheme provides an opportunity to substantiate the relationship of probabilistic indicators of the channel with the energy indices of carriers (the signal/noise ratio) at the input of the idealized receiver. Accordingly, the application of this approach to protecting information from leakage through technical channels may allow the justification of signal/noise ratio limitations that are permissible in places of possible interception and provide the desired probability of a security risk.

However, the existing assessments of receivers quality, as rule, have orientation on communication channels. It is hypothetically considered, that the best channels and channel sources are the sources and channels that respectively produce and transmit the largest amount of information [16, 17]. It is obvious that under these circumstances, the assumption concerning the equivalence of source symbols, which uses the existing substantiation of the solving schemes, is quite feasible and permissible.

For receivers that can be considered as means of interception, such an assumption is inadmissible, since for information leakage channels in comparison with communication channels is set the opposite task, namely, the impossibility of leakage of information [16, 17]. The real sources may have a different probability distribution. Therefore, the security of information should be based not only on the equivalence of source symbols, but also on uneven distribution.

So, the actual task is analyzing the protection of information from leakage by technical channels for uneven distribution of source probabilities, which should provide reliable protection of modern technical means and systems of information processing and transmission. 2.

Let the technical channel of leakage be given as a discrete-continuous one (Fig. 1). Let for simplicity as a source of information leakage is used a binary discrete source X, which produces signs xr, where r = 1 and 2. Each of the signs in the technical processing means is represented by the intermediation of some continuous-time signals implementation s1(t) and s2(t). The implementation of each other is different in that, so that the technical means can distinguish them and, accordingly, identify them with signs x1 and x2. On the channel scheme on Fig.1 an element of this identification appears by "modulator". Let the implementation s1(t) та s2(t) are finite in spectrum and have the same duration T. In the environment of the spreading a dangerous signal, forming a technical channel of leakage, there is a noise that distorts it and prevents interception of information. Noises can have a variety of characters of origin and influence and different degrees of chance and the associated masking properties. The analysis of the literature shows that most distorting effect has additive noise with normal distribution of probabilities [1, 2, 6-8, 14-17]. Unlike the others, this type of noises is quite common in natural environments of signal propagation, has a mathematical description of the density of probability distribution and allows the justification of the security with a proven guarantee of reliability [6, 7, 16, 17].

Other noises also can distort signals, revealing masking property. However, the effect of masking by them is still determined by the proximity with normal distribution law. Otherwise, their presence is defined as a protection margin. Including this, the masking efficiency of these noises is not taken in calculations.

Let the normally distributed noise has additive action to a dangerous signal in the channel, in ideally – white noise n(t). At the output of the channel is formed a mixture which enters the receiver input: u t    sr t    n t   cr t   n t  , ( 1 ) where cr t    sr t   is attenuated signal with time delay;  is channel transmission ratio;  is signal delay time in the channel.

The task of the receiver of interception is to analyze u(t) and making a decision yr about the sign xr at the output of the leakage source. Obviously, that the more true this solution, then interception will be more effective and the source of information leakage will be less protected.

Probability of security risk prisk. can match the fate of information, that, without violating of information security, is permissible can flow through by technical channels. In accordance, this part can be providing by bandwidth - the ability of the technical channel of leakage, expressed in relative units: prisk. 

CTCL ,

CTCLmax where for a discrete symmetric channel with transmission reliability q bandwidth is equal to [16, 17, 20, 21]:

СTCL  1 q log2 q  (1 q) log2 (1 q) [bit] ,

At that, the maximum bandwidth per expression ( 3 ) is achieved on condition q = 1 or q = 0 and equals, minimum, which is desirable for the technical channel of leakage, provided that the probability of the false and correct character transfer is equal 1 – q = q (Fig. 2).

Compliance with minimum transmission reliability q = 0 and the maximum of bandwidth can be explained by the fact that on the receiving side can be used inverter. It will result in the redistribution of arrows on Fig. 2 and will cause compliance x1  y2 and x2  y1. At that q must be replaced 1 – q and become equal to 1. Equality same p = q makes the output of the channel completely uncertain, similar to the random character generator.

As follows, having the maximum permissible probability of information security risk, it is possible to determine the maximum allowable bandwidth СTCL max.per. the technical channel of leakage and by solving the equation ( 3 ) – the maximum allowed probability of correct interception qmax. per. of one binary sign xr , r = 1 and 2. ( 2 ) ( 3 ) Relative to the decisive scheme of the ideal receiver, by the theory of potential noise immunity for a discrete-continuous channel, the probability of an error, which is determined by the formula:

 1 p  F    2

P T    , N0  where F(…) – Laplace integral:

F    1    2 

 exp  d , 2   2  Р is the power of the difference signal c (t )  c1 (t)  c2 (t) :

P  1 T

 c2 (t)dt , T 0

 1 q  1  p  F   2

P T    , N0  ( 4 ) ( 5 ) ( 6 ) ( 7 ) where N0 – spectral density of noise in the technical channel of leakage.

In accordance, the authenticity of receiving a binary sign will be based on the formula:

But the formula of estimation of probability of error ( 4 ) predicts the equivalence of source symbols p(x1) = p(x2). As already noted above, for the modern means of information processing and transmission, such an assumption can not always be performed, and therefore founded by the formula ( 4 ) probability is not always correct.

Provided p(x1)  p(x2) the decisive scheme must be built by implementing inequality:

p ( xl ) l / 0 (u )  p ( xr ) r / 0 (u ) , where k r/0 (u)  r/0 (u1, u2 ,..., uk ) – k-dimensional relation of plausibility: k r/0 (u)  k (u / xr ) ,

k (u / x0 ) where l is the index of the correct decision, х0 is mark of no sign on the output of the source, k(u/xr) = k(u1, u2, u3,…, uk,/xr) is conditional k-dimensional density of distribution of counts receiver reading.

If the frequency spectrum of signs realizations is finite in time and is completely concentrated in the band of frequencies F, then by the Kotelnikov theorem, the number of readings counts can be limited to the number k = 2FT, therefore:  r /0 (u1, u2 , ..., u2 FT )   (u1 , u2 , ..., u2 FT / xr ) .

 (u1 , u2 , ..., u2 FT / x0 ) For r-th implementation using additivity properties of noise in the channel: (u1,u2,...,u2FT / xr ) (u1  cr1,u2  cr2,...,u2FT cr2FT / x0)  

1 ( 2 )2FT  1 2FT   2 2  (ui  cri )2  . exp  i1  Substituting ratio ( 12 ) and ( 13 ) into the formula ( 10 ), we will get: ( 8 ) ( 9 ) ( 10 ) ( 11 ) ( 13 )

If in the "modulator" for sign х0 is associated with so-called zero implementation c0(t), for example, input channel gets nothing, in accordance with the formula ( 1 ) at the output there will be only a noise process:

u (t )  c0 (t )  n(t )  n(t ) .

Due to the properties of white noise on the statistical independence of its conditional density of its reading counts, the denominator of the ratio ( 10 ) can be expressed in the form of a product of one-dimensional densities of the normal distribution law: 2FT 1  (u1, u2,..., u2FT / x0 )   i1 σ 2

 ui2 e 2 2 

1 (σ 2 )2FT  1 2FT   2σ2 i1 ui2  , ( 12 ) exp 

  1 2FT   1 2FT  r/0 (u1, u2 ,..., u2FT )  exp   2 2  (ui  cri )2  .  2 2  ui2  exp  i1  i1 

Taking advantage of the property the noise ergodicity, its dispersion can be replaced by the power expressed in terms of spectral density N0 in the bandwidth F:  2  Pz  N0 F .

After inclusion in the ratio ( 14 ) replacement ( 15 ) and direction t  0 the plausibility ratio will look: ( 15 ) ( 16 )  1 2FT   λr/0 (u)  lim exp   ui2t  exp  t0  N0 i1   1 2FT 

 (ui  сri )2 t  

N0 i1   1 T T   exp   u2 (t)dt   (u(t)  cr (t))2dt  .

 N0  0 0 

Substituting ( 16 ) into inequality ( 8 ) and applying a logarithm for the right and left parts of the inequality by a natural logarithm, we get:

 1 T T   1 T T  p(xl )exp u2(t)dt (u(t)cl (t))2dt p(xr)exp u2(t)dt (u(t)cr(t))2dt N0 0 0  N0 0 0  or 1 T P

 u(t)cl (t)dt  l  T 0 2

N

0 ln p( xl )  2T 1 T P

 u(t)cr (t)dt  r  T 0 2

N

0 ln p( xr ) . 2T ( 17 )

In accordance with the inequality ( 17 ) the decisive scheme of an ideal receiver for all r must calculate and compare the right and left parts and for the maximum of found result make a decision yl about the sign xl produced by the source. Since the right and left sides of the inequality contain random components, there are probabilities of the existence of this and the opposite inequalities. Obviously, the probability of inequality ( 17 ) is the probability of a correct solution, and the probability of the opposite inequality is the probability of error.

The probability of a correct solution on average can be found as a expected value for all realizations r: q  p  x1  p  y1 x1   p  x2  p  y2 x2  .

For a binary source, if the correct solution is x1 , inequality ( 17 ) can be converted to the form: or where   1 T P

 c (t)n(t)dt     T 0 2

N0 ln p(x1) 2T p(x2 )  P p( y1 / x1)  p       2

N0 ln p( x1)  , 2T p(x2 )  T 0 1 T c (t)n(t)dt is a normally distributed random variable with expected value М [ ]  0 and dispersion D[ ]  3.

Let's analyze the nature of throughput for the general case and justify communication of maximum throughput and needed for ensure probability of errors. In this case will suppose, that data, which simultaneously can be processed by technical means and flow by technical channels, can have very different origins, that is generated from Q different information sources with a different syntax and different semantics (Fig. 2).

Expressed with the help of Laplace integrals [19, 20]: ( 19 ) ( 20 ) ( 21 ) and

 1 p( y1 / x1)  F   2

PT  1 N0 2

PN T0 ln pp((xx12))   1 p( y2 / x2 )  F   2

P T   N0 1 2

PN T0 ln pp((xx12))  .

It should be noted that if p  x1   p  x2  the formula ( 18 ) in conjunction with ( 20 ) and ( 21 ) will match the formula ( 7 ).

In the case of p  x1   p  x2  were obtained the quantitative values of the probability of correct reception for multiply-polar, orthogonal signals and signals with zero realization. The character of the probability dependence of the correct receiving from the attitude p( x1) presented on Fig. 3.

p( x2 ) As can be seen from the graphs, with the same energy conditions on the channel input, provided equal probability symbols on the source output p( x1)  1 the security p( x2 ) of the multipolar signals is less (the probability of correct receiving is greater) than for orthogonal signals and signals with zero realization. Provided unequal probabilities of signs p( x1)  1 there is a tendency to decrease security (increases of probabilp( x2 ) ity of correct receiving). At that a large variation of the signs probability, for example p(x1)  20 for signals with zero realization, leads to increased probability of correct p( x2 ) reception compared to orthogonal and different polar signals. Probabilities is receiving for the last two with this distortion are same.

It should also be noted, that with an increase in the distortion of probabilities of signs of the probability of correct receiving approaching the greater probability of signs. This is not difficult to explain using the formula ( 18 ), taking p  y1 x1   1 and p  y2 x2   0 . So, according to the formula ( 18 ):

q  p  x1  1  p  x2   0  p  x1  .

An analysis of the dependence of the probability of a correct reception on the signal/noise ratio under the condition of strong distortion of the signs probabilities (Fig. 4). It is shown that with increasing the level of noise in relation to the signal under the ability of correct receiving usually decreases. In the case of strong distortion of signs probabilities, for example, when p(x1)  20 , under the same conditions with an inp( x2 ) crease in the level of noise in relation to the signal there is an opposite effect – increasing of correct receiving probability. That is, with a strong distortion of the signs probability increasing the noise over the signal does not improve the masking of a dangerous signal, but on the contrary - improves the conditions for interception.

Thus, made reasoning of the information protection from leakage through technical channels for uneven distribution of source probabilities and set the negative sequences in case of its non-consideration. Shown relations of probability information security risk conditions with power at the input of intercept receiver and given requires analytical values. These resulting formulas provide for the use of intermediate indicators: the throughput of the technical channel of information leakage and the probability of correct reception of messages relative to the ideal receiver.

The resulting ratios allow estimating the information security risk related on the current signal/noise ratio for the given probability of risk the required values of the maximum allowable indicators, for example, the throughput of the technical channel of leakage, the probability of correct receiving with possible interception and the signal/noise ratio. These ratios differ from previously known by those that take into account the uneven distribution of the signs probability on output of the source of leakage. This unequal signs probability can take place in practice, and therefore should be taken into account in the calculation of the protection of real hardware, information processing and transmission systems.

Ratios allow automated analysis of information security risk in real time with the use of modern information systems and technologies. Their use has obtained practical results that show the dependence of the probability of true interception from ratio of probabilities of signs at the source output and the signal/noise ratio at the input of the ideal receiver. It is shown that in the case of a strong distortion of the signs probabilities, the masking influence of the noises changes to the opposite than for the equal probabilities of these signs. That is, increasing the level of noise does not increase, but reduces security.

The above is advisable to take into account in the calculation of security information from its leaks.