• A
  • A
  • A
  • ABC
  • ABC
  • ABC
  • А
  • А
  • А
  • А
  • А
Regular version of the site

Research the Issues of Information Security of Mobile Access to Government Information Systems

Student: Gusev Evgeniy

Supervisor: Oleg Kovalev

Faculty: Graduate School of Business

Educational Programme: Information Security Management (Master)

Year of Graduation: 2016

Following master’s thesis is devoted to the organization of safe remote access using mobile devices to government information systems. This paper describes the actual threats and methods of their implementation that are caused by the vulnerabilities of mobile devices. In this paper the requirements of governmental regulators, according to which the procedures of implementation of IT-security for information systems where confidential information is stored and processed are described. On the basis of the FSTEC orders, the opportunities of strengthening the necessary security complex are explored and their correspondence with the existing threats is measured in this paper. Based on the statistical data of threats identification the changes in the number of incidents implementations are assessed and the trends of their development against specific platforms are identified. As an outcome of this thesis the serial list of necessary components for the mobile device protection with the description of vulnerabilities which are overlapped by security complex that forms a comprehensive and multi-borders effect of anti-malware system is designed. This list is compiled on the basis of actual threats and current FSTEC requirements and supplemented with comments about protection products which should provide monitoring functional that matches user actions with the typical behavior patterns for the purposes of implementing proactive protection against information security incidents. On the basis of the processed data, it can be concluded, though a clear adherence to the requirements of governmental regulators ensures a high level of data protection, there is yet another necessary condition for the effective functioning of security system - to maintain the database of threats signatures and means of counteraction to malicious activity up to date, as well as flexible adaptation to the changing requirements of customers and regulatory structures should be organized.

Student Theses at HSE must be completed in accordance with the University Rules and regulations specified by each educational programme.

Summaries of all theses must be published and made freely available on the HSE website.

The full text of a thesis can be published in open access on the HSE website only if the authoring student (copyright holder) agrees, or, if the thesis was written by a team of students, if all the co-authors (copyright holders) agree. After a thesis is published on the HSE website, it obtains the status of an online publication.

Student theses are objects of copyright and their use is subject to limitations in accordance with the Russian Federation’s law on intellectual property.

In the event that a thesis is quoted or otherwise used, reference to the author’s name and the source of quotation is required.

Search all student theses