<!DOCTYPE article PUBLIC "-//NLM//DTD JATS (Z39.96) Journal Archiving and Interchange DTD v1.0 20120330//EN" "JATS-archivearticle1.dtd">
<article xmlns:xlink="http://www.w3.org/1999/xlink">
  <front>
    <journal-meta>
      <journal-title-group>
        <journal-title>Cyber Hygiene, Kyiv, Ukraine, November</journal-title>
      </journal-title-group>
    </journal-meta>
    <article-meta>
      <title-group>
        <article-title>Experimental Identification of the Critical Information Infrastructure Objects in Aviation</article-title>
      </title-group>
      <contrib-group>
        <aff id="aff0">
          <label>0</label>
          <institution>European University</institution>
          ,
          <addr-line>Kyiv</addr-line>
          ,
          <country country="UA">Ukraine</country>
        </aff>
        <aff id="aff1">
          <label>1</label>
          <institution>Kyiv College of Communication</institution>
          ,
          <addr-line>Kyiv</addr-line>
          ,
          <country country="UA">Ukraine</country>
        </aff>
        <aff id="aff2">
          <label>2</label>
          <institution>National Aviation University</institution>
          ,
          <addr-line>Kyiv</addr-line>
          ,
          <country country="UA">Ukraine</country>
        </aff>
        <aff id="aff3">
          <label>3</label>
          <institution>Satbayev University</institution>
          ,
          <addr-line>Almaty</addr-line>
          ,
          <country country="KZ">Kazakhstan</country>
        </aff>
        <aff id="aff4">
          <label>4</label>
          <institution>State Scientific and Research Institute of Cybersecurity Technologies and Information Protection</institution>
          ,
          <addr-line>Kyiv</addr-line>
          ,
          <country country="UA">Ukraine</country>
        </aff>
        <aff id="aff5">
          <label>5</label>
          <institution>Yessenov University</institution>
          ,
          <addr-line>Aktau</addr-line>
          ,
          <country country="KZ">Kazakhstan</country>
        </aff>
      </contrib-group>
      <pub-date>
        <year>2019</year>
      </pub-date>
      <volume>30</volume>
      <issue>2019</issue>
      <fpage>0000</fpage>
      <lpage>0003</lpage>
      <abstract>
        <p>Today there are many various disasters, pandemics, weapon conflicts, acts of terrorism and global crimes. Up-to-date information and communication technologies implementation generates new vulnerabilities, threats and intrusions in cyberspace. Besides, the amount of data is increasing as well as critical data may be at risk. The world leading states have formed their state cybersecurity policy and critical information infrastructure protection principles. One of the main tasks is objects of the critical information infrastructure identification (defining) for state critical infrastructure system forming. The loss or operational breakdown of these objects can cause significant or irreparably damage for national security of the state. In previous work authors have developed a method for objects identification in critical information infrastructure; it gives a possibility to define the critical infrastructure elements, their mutual influence and influence on functional operations of the information systems. This paper presents experimental study of proposed method in aviation using developed specialized software tool. Investigation of satellite navigation system (one of the critical aviation information systems) pointed on the efficiency of developed method.</p>
      </abstract>
      <kwd-group>
        <kwd>critical information infrastructure protection</kwd>
        <kwd>critical aviation information system</kwd>
        <kwd>objects identification</kwd>
        <kwd>aviation</kwd>
        <kwd>satellite navigation system</kwd>
        <kwd>experimental study</kwd>
      </kwd-group>
    </article-meta>
  </front>
  <body>
    <sec id="sec-1">
      <title>-</title>
      <p>
        Modern trends in information and communication technologies (ICT) have caused
phenomenal dependence of people in different states form various electronic services.
The quality and security of these services are the main indicators of digital
Copyright © 2020 for this paper by its authors. Use permitted under Creative Commons
development level of the state. Digitalization in every industries and up-to-date ICT
implementation generates new vulnerabilities, threats and intrusions in cyberspace.
Finansial limitations and infrastructures quantity qrowing had necessitated ranking of
infrastructure objects, choosing the most important of them for security ensuring
and creating new concept “critical infrastructure” (CI) [
        <xref ref-type="bibr" rid="ref1">1</xref>
        ]. Typically, this category
relates to energy, oil and gas lines, transportation (air- and seaports, smart cars and
trains), communications channels, life-saving systems of megacities, high-technology
enterprises and enterprises of the military-industrial complex, central government
authority and others. Table 1 shows CII indusries of EU states [
        <xref ref-type="bibr" rid="ref2">2</xref>
        ].
y
g
r
e
n
E
r
e
t
a
W
d
o
o
F
h
t
l
a
e
H
e
c
n
a
n
i
F
t
r
o
p
s
n
a
r
      </p>
      <p>T
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
.
n
i
m
d
a
c
i
l
b
u
P
+
+
+
+
+
+
+
+
+
+
+
+
+
+</p>
      <p>
        T
C
I
+
+
+
+
+
+
+
+
.
n
i
m
d
a
l
i
v
i
C
+
+
h
c
r
a
e
s
e
R
&amp;
e
c
a
p
S
The aviation industry [
        <xref ref-type="bibr" rid="ref3">3</xref>
        ], given the need to ensure sustained communication and
strong cooperation between ground-based and aircraft systems, are required special
attention. Therefore, identifying the objects which are critical for ensuring the system
information continuing operation is the first priority. Nevertheless, an unlimited
number of objects and system parameters that constantly varied and unforeseen
behaviors of objects with lots of interlink ages are the main reason for difficulties
with the identified objects of state CI.
      </p>
      <p>
        CI contains one value component related to informational part – so-called CII
(critical information infrastructure) [
        <xref ref-type="bibr" rid="ref4">4</xref>
        ]. The main reasons for the CII importance are
the widespread usage in all areas of human activity of ICT, dependence on them of
citizens, society and the state, as well as increasing vulnerabilities and potential
threats of different nature. In Ukraine, the law framework for regulating the CII
protection (CIIP) still in an early development stage, particularly, continuing the
process of identifying the objects of state CI in different industries [
        <xref ref-type="bibr" rid="ref5">5</xref>
        ].
2
      </p>
      <p>
        Related Works Analysis and Problem Statement
Up-to-date society totally depends on ICT and their services. The dysfunction and
breakdown of these may lead to chaos, significant financial losses and even mass
deaths of people. The truth is, much of mankind inclined to take the most important
services (in particular, their quality) as a matter of course until something or someone
breaks their work. World leading states formed their own cybersecurity policy and
have developed principles and practical guidelines for CIIP. The analysis of criteria
by which it is possible to choose or identify the CII objects was performed in [
        <xref ref-type="bibr" rid="ref6 ref7">6-7</xref>
        ]. It
was found that one of the firsts criteria for identification of the CI was specified in the
EU Directive [
        <xref ref-type="bibr" rid="ref8">8</xref>
        ]. In the USA, regarding to [
        <xref ref-type="bibr" rid="ref10 ref9">9-10,13</xref>
        ], adapted to divide the CI into
those that related to international organizations (energy, transport, banking and
financial system, ICT objects) and those that are not related to them (for example,
water supply, rescue services, public administration and others).
      </p>
      <p>
        According to [
        <xref ref-type="bibr" rid="ref5">5</xref>
        ] today, in Ukraine are continuing the development of a proposal
about forming the list of ICT objects of state CI. Unfortunately, this list has not been
formed in any sector of the CI. In Ukraine just one list of criteria exists [
        <xref ref-type="bibr" rid="ref11">11</xref>
        ], which
can be used for CII objects identification is the List of negative effects that a
cyberattack could cause to the ICT. As it was already noted, the loss or operational
breakdown of CII objects can cause significant or irreparably damage for national
security of the state. From this viewpoint, CII objects defining and identification is the
urgent and important task. In [12] multi-criteria analysis of approaches to the CII
objects defining and identification was carried out. This analysis contains various
industries and fields. The following methods and models were defined: K. Clausewitz
theory for network architectures; A. Barabasi self-organizing networks; graphs
theory; priority asset model; identification of the CI objects based on categorization;
simulation (critical infrastructure interdependency modeling system; “Afina”
simulation model). The analysis has shown that the most successful (in terms of CII
application) are approaches based on the graphs theory and the simulations (CI
modeling system and “Afina” simulation model), which, like many other approaches,
are based on the graphs theory. In addition, the knowledge of A. Barabasi
selforganizing networks theory and the identification of the CI objects based on
categorization are also widely used.
      </p>
      <p>
        On this basis, authors in [
        <xref ref-type="bibr" rid="ref7">7,14</xref>
        ] have developed a method for objects identification in
CII as well as specialized software tool was developed. This method gives a possibility
to define the CI elements, their mutual influence and influence on functional operations
of the information systems. But this method didn’t verificated using real objects of CI.
The main task of this work is experimental study of proposed method in aviation using
developed specialized software tool.
      </p>
      <p>The Main Part of the Study
Mentioned method for CII objects identification, which was previously developed by
authors, combines six following stages: defining of CII elements (stage 1); defining
the possible factors of influence on the CII elements (stage 2); identifying the extent
of damage and the weight of the factor's influence on the CII elements (stage 3);
defining the functions of CII elements influence (stage 4); the graph-analytical
mapping of the functional processes of the CII system (stage 5); assessment of the CII
system functioning quality (stage 6).</p>
      <p>
        Investigation object in aviation is satellite navigation system (critical aviation
information system [
        <xref ref-type="bibr" rid="ref3">3, 14</xref>
        ]) SSNS (level of system detailing l  2 ). SSNS includes
three following sub-systems: artificial satellites of Earth, control-observation stations
and GPS-receivers.
      </p>
      <p>
        Let’s analyse mentioned method step-by-step performing for critical aviation
information system SSNS using [
        <xref ref-type="bibr" rid="ref6 ref7">6-7,12-15</xref>
        ]:
      </p>
      <p>Stage 1. Defining of CII elements</p>
      <p>For system SSNS , on stage 1, at N  3, the matrix of the possible CII elements (EII)
was formed:</p>
      <p>L   LL1112
are SPS-receivers, F8 are PPS-receivers.</p>
      <p>Then, a set of coincidences, at N  3 and d  8 , VSNS  {</p>
      <p>Vbi }  V1,V2 ,,V8 
8
bi1
3,1, 3,1, 2, 2,1,1 , and an agreed EII set are allocated:
4
am }  a1, a2 ,..., a4 ,
(1)
(2)
(3)
where a1 is the artificial satellite, a2 is control and observation station, a3 is the
additional station, a4 are receivers.</p>
      <p>For system SSNS , at b  4 , the graph vertices Г is a1 the artificial satellite, a2 is
control and observation station, a3 is the additional station, a4 are receivers, and the links
between these elements are edges: p12, p21, p13, p31, p14, p41, p23, p32, p24, p42, p34, p43 (see Fig. 1).
a1
a2
di1
where Ф1 is geometric factor (GDOP); Ф2 is horizontal factor (НDOP); Ф3 is relative
factor (RDOP); Ф4 is time factor (TDOP); Ф5 is vertical factor (VDOP); Ф6 are
situation factors (PDOP); Ф7 is communication factor (СDOP), which shows the value
of network connection records according to the NLS-KDD database [16].</p>
      <p>Moreover, for factor Ф , at z  5 , the set of parameters of the influence factor
7
represented as follows:</p>
      <p>OФ7  {
5
ei1</p>
      <p>OeФi 7 }  O1Ф7 , O2Ф7 ,..., O5Ф7 ,
where</p>
      <p>OФ7 are basic parameters, OФ7 are content parameters, OФ7 are time
1 2 3
parameters, OФ7 are hardware parameters, OФ7 is presence / absence of attack .</p>
      <p>4 5
After that, the possible sets of parameters
Ф7  Z1, O1Ф7 , O2Ф7 , O3Ф7 , O4Ф7 , O5Ф7  ,
Ф7 Z2 ,O1Ф7 ,O2Ф7 ,O3Ф7 ,O4Ф7 ,O5Ф7  to form for a factor Ф .
7</p>
      <p>Stage 3. Identifying the extent of damage and the weight of the factor's influence on
the CII elements
(4)
(5)
(6)</p>
      <p>For system SSNS , at b  4 and s  7 (agreed by the experts), according to [14-15],
values of the extent of damage and the weight of the factors are indicated in the Table
2 (the value of limit score t0  1 and t1  1, 5 ).
where a1 is artificial satellite, a2 is control-observation station, a3 is additional station,
a4 are receivers. Results of the implementation stage 6 are shown in the Table 4.</p>
      <p>For assessment the adequacy of studied method in practice, its response to the
change in input data must be verified. For the studied system SSNS , the number of
EIIs and CII elements of KII are changed (decreasing and increasing), which
respectively indicated a change in the output data. It is optimal experimental
technique in situation without objective real statistical open data in aviation. This will
describe in next section of the work.</p>
      <p>Results and Discussion
The verification of the studied method for system SSNS , at b  3 and b  6 , are shown in the
Table 6 in accordance to studied method order of stages. Table 5 shows that changes of
input data cause output data changing. It means that proposed method works correctly
and can be used for objects identifying in aviation and other industries.
Also specialized software tool was developed (see Figure 3) and this tool implements
all features of method stages.
Two additional experiments were carried out using specialised softwsre tool and
simulating changeable environment. Given results verified proposed method and
approvet its efficiency in aviation.
5</p>
      <p>Conclusions and Future Work
This paper presents experimental study of authors` previously proposed method for
identification CII objects in aviation using developed specialized software tool.
Investigation of satellite navigation system (one of the critical aviation information
systems) pointed on the efficiency of studied method for defining the CI elements,
their mutual influence and influence on functional operations of the critical aviation
information systems. The changing environment of CI functioning approved
efficiency of proposed method and possibility of its using in aviation and other
industries. Future research studies can be related to developing new flexible tools for
accurate identification for various objects as well as CII objects identifying in various
industries (energy, medicine, communications and others). After identifying CII
objects should be evaluated and ranked by using quantitative metrics.
12. S. Gnatyuk, Z. Hu, V. Sydorenko, M. Aleksander, Yu. Polishchuk and
Kh. Yubuzova. “Critical Aviation Information Systems: Identification and
Protection”, Cases on Modern Computer Systems in Aviation, USA: IGI Global,
pp. 423-448, 2019.
13. Ted G. Lewis, Critical Infrastructure Protection in Homeland Security:</p>
      <p>Defending a Networked Nation, Wiley; 3 edition, 449 p., 2019.
14. Gnatyuk S., Sydorenko V., Polozhentsev A., Fesenko A., Akatayev N.,
Zhilkishbayeva G., “Method of cybersecurity level determining for the critical
information infrastructure of the state”, CEUR Workshop Proceedings, vol. 2616,
pp. 332-341, 2020.
15. Syerov Y., Shakhovska N., Fedushko S. Method of the Data Adequacy
Determination of Personal Medical Profiles. Proceedings of the International
Conference of Artificial Intelligence, Medical Engineering, Education
(AIMEE2018). Advances in Artificial Systems for Medicine and Education II.</p>
      <p>Volume 902, 2019. pp. 333-343. https://doi.org/10.1007/978-3-030-12082-5_31
16. Shershakov, V., Trahtengerts, E. &amp; Kamaev, D.: Network-centric methods of
computer support for the management of emergency response. LENAND, 160 p.,
2015.
17. NSL-KDD dataset [Online], URL: https://www.unb.ca/cic/datasets/nsl.html</p>
    </sec>
  </body>
  <back>
    <ref-list>
      <ref id="ref1">
        <mixed-citation>
          1.
          <string-name>
            <surname>Wenger</surname>
            ,
            <given-names>V.</given-names>
          </string-name>
          <string-name>
            <surname>Mauer</surname>
          </string-name>
          , M. Cavelty, “
          <article-title>International critical information infrastructure protection hand-book 2008-2009”, Center for Security Studies</article-title>
          , ETH Zurich,
          <year>2009</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref2">
        <mixed-citation>
          2.
          <string-name>
            <given-names>Critical</given-names>
            <surname>Information Infrastructures Protection approaches in</surname>
          </string-name>
          <string-name>
            <surname>EU</surname>
          </string-name>
          [Online], URL: https://resilience.enisa.europa.eu/enisas-ncss-project/CIIPApproachesNCSS.pdf
        </mixed-citation>
      </ref>
      <ref id="ref3">
        <mixed-citation>
          3.
          <string-name>
            <given-names>S.</given-names>
            <surname>Gnatyuk</surname>
          </string-name>
          , “
          <article-title>Critical Aviation Information Systems Cybersecurity”, Meeting Security Challenges Through Data Analytics and Decision Support, NATO SPS Series, D: Information</article-title>
          and
          <string-name>
            <given-names>Communication</given-names>
            <surname>Security</surname>
          </string-name>
          .  IOS Press Ebooks, vol.
          <volume>47</volume>
          , №3, рр.
          <fpage>308</fpage>
          -
          <lpage>316</lpage>
          ,
          <year>2016</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref4">
        <mixed-citation>
          4.
          <string-name>
            <given-names>S.</given-names>
            <surname>Tyurin</surname>
          </string-name>
          ,
          <string-name>
            <given-names>V.</given-names>
            <surname>Kharchenko</surname>
          </string-name>
          , “
          <article-title>Redundant Basises for Critical Systems and Infrastructures General Approach and Variants of Implementation”</article-title>
          ,
          <source>Proceedings of the 1st Intrenational Workshop on Critical Infrastructures Safety and Security</source>
          , Kirovograd, Ukraine, May
          <volume>11</volume>
          -13,
          <year>2011</year>
          , vol.
          <volume>2</volume>
          . pp.
          <fpage>300</fpage>
          -
          <lpage>307</lpage>
          ,
          <year>2011</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref5">
        <mixed-citation>
          5.
          <string-name>
            <surname>Resolution</surname>
          </string-name>
          <article-title>on approval of the procedure for the formation of the list of information and telecommunication systems of critical infrastructure objects of the state</article-title>
          .
          <source>Resolution of the Cabinet of Ministers of Ukraine of 23.08</source>
          .
          <year>2016</year>
          , №
          <volume>563</volume>
          .
        </mixed-citation>
      </ref>
      <ref id="ref6">
        <mixed-citation>
          6.
          <string-name>
            <given-names>S.</given-names>
            <surname>Gnatyuk</surname>
          </string-name>
          ,
          <string-name>
            <given-names>V.</given-names>
            <surname>Sydorenko</surname>
          </string-name>
          , Yu. Polishchuk and Yu. Sotnichenko, “
          <article-title>Determining the Level of Importance for Critical Information Infrastructure Objects”</article-title>
          ,
          <source>Proceedings of 2019 Intern. Scientific-Practical Conf. on the Problems of Infocommunications. Science and Technology (PIC S&amp;T</source>
          <year>2019</year>
          ), Kyiv, Ukraine,
          <source>October 08-11</source>
          ,
          <year>2019</year>
          , рр.
          <fpage>829</fpage>
          -
          <lpage>834</lpage>
          ,
          <year>2019</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref7">
        <mixed-citation>
          7.
          <string-name>
            <given-names>S.</given-names>
            <surname>Gnatyuk</surname>
          </string-name>
          ,
          <string-name>
            <given-names>V.</given-names>
            <surname>Sydorenko</surname>
          </string-name>
          , M. Aleksander, “
          <article-title>Unified data model for defining state critical information infrastructure in civil aviation”</article-title>
          ,
          <source>Proceedings of the 2018 IEEE 9th International Conference on Dependable Systems, Services and Technologies (DESSERT)</source>
          , Kyiv, Ukraine, May
          <volume>24</volume>
          -27,
          <year>2018</year>
          , pp.
          <fpage>37</fpage>
          -
          <lpage>42</lpage>
          .
        </mixed-citation>
      </ref>
      <ref id="ref8">
        <mixed-citation>
          8.
          <article-title>On the identification and designation of European critical infrastructures and the assessment of the need to improve their protection:</article-title>
          <source>Council Directive</source>
          <year>2008</year>
          /114/EC,
          <year>2008</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref9">
        <mixed-citation>
          9.
          <string-name>
            <surname>Tsigichko</surname>
            <given-names>V.</given-names>
          </string-name>
          ,
          <string-name>
            <surname>Smolyan</surname>
            <given-names>G.</given-names>
          </string-name>
          and
          <article-title>Chereshkin D. “Ensuring the safety of critical infrastructures in the USA”</article-title>
          ,
          <volume>27</volume>
          p.,
          <year>2006</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref10">
        <mixed-citation>
          10.
          <string-name>
            <surname>Fekete</surname>
            ,
            <given-names>A.</given-names>
          </string-name>
          :
          <article-title>Common criteria for the assessment of critical infrastructures</article-title>
          .
          <source>International Journal of Disaster Risk Science</source>
          ,
          <volume>2</volume>
          (
          <issue>1</issue>
          ),
          <fpage>15</fpage>
          -
          <lpage>24</lpage>
          ,
          <year>2011</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref11">
        <mixed-citation>
          11.
          <string-name>
            <surname>Biriukov</surname>
            <given-names>D.</given-names>
          </string-name>
          and
          <string-name>
            <surname>Kondratov</surname>
            <given-names>S. “</given-names>
          </string-name>
          <article-title>Critical infrastructure protection: problems and prospects of implementation in</article-title>
          <source>Ukraine: analytical report”</source>
          , 96 p.,
          <year>2012</year>
          .
        </mixed-citation>
      </ref>
    </ref-list>
  </back>
</article>