Notation and modification of a methodology for detecting computer incidents in accordance with the GOST 59709-59712
DOI: 10.21293/1818-0442-2025-28-3-45-52
Abstract: The paper describes the regulatory framework governing the operation of the state system aimed at identifying, preventing and eliminating the consequences of cyberattacks on the infor-mation resources of the Russian Federation. The authors pre-sent a notation of the process ащк detecting such attacks in accordance with the GOST 59709-59712 standards. A modifi-cation of the methodology for identifying computer attacks is proposed, which – unlike existing approaches based on signa-ture analysis – incorporates the use of machine learning algo-rithms. As a result of the study, a hybrid methodology for de-tecting computer incidents has been formulated, containing a formalized process notation that ensures compliance with the national standards, as well as mechanisms for predictive analy-sis based on machine learning.
Keywords: machine learning, idf0 notation, method-ology, computer incident, gost 59709-59712, gossopka
Authors and copyright holders:
—
For citation:
Pavlychev A. V. Notation and modification of a methodology for detecting computer incidents in accordance with the GOST 59709-59712. Doklady Tomskogo gosudarstvennogo universiteta sistem upravleniya i radioelektroniki, 2025, vol. 28, no. 3, pp. 45–52. DOI: 10.21293/1818-0442-2025-28-3-45-52
Last issue
-2025-1.jpg)
Editorial office address
Executive Secretary of the Editor’s Office
Editor’s Office: 40 Lenina Prospect, Tomsk, 634050, Russia
Phone / Fax: + 7 (3822) 701-582
Viktor N. Maslennikov
Executive Secretary of the Editor’s Office
Editor’s Office: 40 Lenina Prospect, Tomsk, 634050, Russia
Phone / Fax: + 7 (3822) 51-21-21 / 51-43-02
Subscription for updates
