Application of NATO standards for the creation of information protection systems in the area of a national security
DOI №______
Abstract
The article analyzes the NATO standards, discusses the possible application of NATO standards in the creation and implementation of integrated information security systems at the stages of the life cycle of information systems in the area of national security. There is a difference in the provisions of the normative acts of Ukraine and NATO regarding the definition of information security. NATO ‒ multi-element education, respectively, all regulatory regulation of information security is aimed at ensuring the interoperability of member countries systems while maintaining significant autonomy. NATO's regulations emphasize that the national regulatory framework remains the responsibility of each NATO member state, but does not require the transition to NATO regulations. Only minimal requirements are available, but they are identical to those adopted globally and specified in international standards and in Ukraine.
When it comes to information systems for defense purposes, for them ensuring the availability of the system and the security of communications and communications during tactical operations are just the most important. We have defense information systems in the legislation, as well as any information systems, with only increased protection requirements. The use of separate provisions set by NATO standards, which specifically addresses the increased requirements for system availability and secure communication, would help to narrow the focus of national legislation on the increased requirements for information systems. Since the provisions of NATO standards are directed, first of all, to uniting a large number of legal rules of the Alliance member countries, some principles may be applied for the unification (establishment of information exchange) between the information systems of different structures of our state.
Keywords: integrated information security systems, information security, NATO standards, information systems, national security.
References
1. STANAG 5067 C3B Standard For Interconnection Of Іpv4 Networks At Mission Secret And Unclassified Security Levels.
2. AC/322-D(2014)0008-FINAL. Consultation, Command And Control (C3) Board. Minimum Requirements Of CIS Security (including Cyber Defence) For National CIS Critical For NATO Core Tasks.
3. AC/35-D/1014-REV3 SECURITY COMMITTEE Guidelines For The Structure And Content Of Security Operating Procedures (SecOPs) For Communication And Information Systems (CIS).
