Alexandr Sergeevich Basan
+7(988) 537-09-68
Associate Professor
Institute of Computer Technologies and Information
Security
Research interests:
Ensuring information security of automated information systems
Research projects:
Development of the Hierarchal Trust management System for Mobile Cluster-based Wireless Sensor Network
An Energy-efficient System of Counteraction against Attacks in the Mobile Wireless Sensor Networks
Trust evaluation method for active attack counteraction in wireless sensor networks
Teaching:
-
Security of personal data
The purpose of studying the discipline is to receive special training to carry out the design, organizational, managerial and operational types of professional activities related to the security of personal data processed in ISDN, as well as without means of automation. In the discipline, including the following sections are considered: Basic concepts, terms and definitions. Classification of confidential information and identification of the category of personal data. Brief review and analysis of regulatory and methodological documents of the Russian Federation in the field of personal data protection. Brief review and analysis of legal requirements for the operator of personal data. Basic principles of personal data processing. Review and analysis of the results of inspections of organizations by state regulators in the field of information security. The organization of the processing mode PDN and, the corresponding development of organizational and administrative documents for the protection of information. Classification of personal data processing systems. Determining the level of security. Development of a model of a likely violator and a model of actual security threats. Determination of the requirements for the information security system. The choice of technical means of information protection when designing a system for protecting personal information. The issues of setting up information protection tools and developing related documentation. Conducting an assessment of the effectiveness of the measures taken to protect information in the ISDN, the certification of the information system. Drawing up of the technical task for performance of works on creation of system of protection of the information in an information system of the personal data. Features of the bidding.
-
Development and operation of secure automated systems
The purpose of studying the discipline: is to receive special training to carry out the design, organizational, managerial and operational types of professional activities related to the development and operation of automated information systems in a protected manner. In the discipline, including the following sections are considered: Basic definitions, normative and methodological documents in the field of protection of automated information systems, the stages of creating a secure automated system. Pre-project stage of creation of a protected information system (including analytical justification, modeling of the intruder and threats, technical task) Requirements to technical means of information protection. The choice of technical means of protecting information and the formation of a specification for their purchase. Design of a secure automated system and design of project documentation Commissioning of a protected automated system and its operation
