Shopina I. The concept of information security: conceptual approaches to definition

DOI: 10.33098/2078-6670.2022.13.25.133-140

Purpose. The purpose of the study is to systematize approaches to building a definition of information security and characterize their essence. Methods. The methodological basis of the study was a set of general scientific and industry-legal methods, united by an integrated approach, thanks to which it was possible to consider the phenomenon of information security in different aspects. The methods of analysis and synthesis, deduction and induction, the formal legal method, as well as the modeling method made it possible to build a system of conceptual approaches to the problem of information security. Results. Ten conceptual approaches to information security are identified and characterized: status, differential, relational, instrumental, protectionist, savings-providing, procedural, conceptual approach, in which information security is identified with opportunities, activity and efficiency. Attention is focused on the interdisciplinary of the study of information security problems. Interdisciplinary promotes a multidimensional understanding of information security, but does not allow all efforts to be directed towards creating an appropriate legal and regulatory framework. Scientific novelty. The methodological approaches to information security that exist in theoretical sources are systematized, their essence is characterized, the idea is substantiated by the negative impact of the lack of a normative approach to the phenomenon under study on the development and legal consolidation of this category. Practical significance. The results of the study can be used in further information and legal research as a methodological basis for further processing of information security problems, as well as in the educational process.

Key words: information security, conceptual approaches, activity approach, status approach, differential approach, instrumental approach, procedural approach.

References

1. Khoffman, L. Dzh. (1980). Sovremennye metody zashchyty ynformatsyy [Modern methods of information protection] / per. s anhl. Moskva: Sovetskoe radyo, 57 p. (in Russian)

2. Kormych, B.A. (2004). Organizational–Legal Basis of the Information Security Policy of Ukraine: Thesis for doctor of law. Odesa, 427 p. (in Ukrainian)

3. Information security strategy: Decree of the President of Ukraine № 685/2021 (2021, December 12.). Retrived from: https://zakon.rada.gov.ua/laws/show/685/2021#n7 (in Ukrainian)

4. On the national security of Ukraine: Law of Ukraine № 2469-VIII (2018, June 21). Retrived from: https://zakon.rada.gov.ua/laws/show/2469-19 (in Ukrainian)

5. Foros, A. V. (2019). Informatsiina bezpeka yak skladova natsionalnoi bezpeky Ukrainy. [Information security as a component of national security of Ukraine].  Pravova derzhava, 2, pp. 222-226. (in Ukrainian)

6. Kaliuzhnyi, R.A., Tsymbaliuk, V.S. (2002). Koordynatsiia diialnosti orhaniv vlady u borotbi z orhanizovanoiu kiberzlochynnistiu. [Coordination of government activities in the fight against organized cybercrime]. Borotba z orhanizovanoiu  zlochynnistiu i koruptsiieiu (teoriia i praktyka),  6, pp. 105−111. (in Ukrainian)

7. Kriukov, O.I. (2007). Informatsiina bezpeka derzhavy v umovakh hlobalizatsii. [Information security of the state in the conditions of globalization].  Derzhavne budivnytstvo,  2. Retrived from: http://nbuv.gov.ua/UJRN/DeBu_2007_2_12. (in Ukrainian)

8. Landina, A. V. (2016). Informatsiina bezpeka yak obiekt zlochynu. [Information security as an object of crime]. Pravova derzhava, 27, pp. 354-361. (in Ukrainian)

9. Nalyvaiko, L.R. (2003). Informatsiina bezpeka ta informatsiina polityka v Ukraini: konstytutsiino-pravovyi aspekt. [Information security and information policy in Ukraine: constitutional and legal aspect].  Visnyk Zaporizkoho derzhavnoho universytetu, 1, pp. 60–65. (in Ukrainian)

10. On approval of the Regulations on the organization of the internal control system in banks of Ukraine and banking groups: Resolution of the National Bank of Ukraine; Regulations, List № 88 (2019, July 02). Retrived from: https://zakon.rada.gov.ua/laws/show/v0088500-19/ed20190702#n25. (in Ukrainian)

11. Alkhudhayr, F., Alfarraj, S., Aljameeli, B., Elkhdiri, S. (2019). Information security: A review of information security issues and techniques. 2nd International Conference on Computer Applications & Information Security (ICCAIS), pp. 1-6. (in English)

12. Kirillova, E. A., Yakhutlov, U. M., Wenqi, X., Huiting, G., Suyu, W. (2020). Information Security in the Management of Personnel in a Modern Organization. International Conference Quality Management, Transport and Information Security, Information Technologies, pp. 107-109. (in English)

13. Dzoban, O. P.; Manuilov, Ye. M. (2017). Informatsiina bezpeka: ekzystentsiini aspekty i merezhevi praktyky. [Information security: existential aspects and network practices]. Visnyk NIuU imeni Yaroslava Mudroho. Seriia: Filosofiia, filosofiia prava, politolohiia, sotsiolohiia, 2 (33), pp. 42-54. (in Ukrainian)

14. Mukundan, N. R., Prakash, Sai L. (2014) Perceived information security of internal users in Indian IT services industry. Information Technology and Management, 15 (1), pp. 1-8. (in English)

15. Lytvynenko, O.V. (1997). Problems of information security in post-Soviet countries (on the example of Ukraine and Russia): PhD thesis abstract, Kyiv, 18. (in Ukrainian)

16. Provisions on information protection and cybersecurity in payment systems] Resolution of the National Bank of Ukraine; Position № 43 (2021, May 19). Retrived from: https://zakon.rada.gov.ua/laws/show/v0043500-21/ed20210519#n24 (in Ukrainian)

17. Shumeiko, O.O. (2019). Informatsiina bezpeka [Informational security]: Navch. posib. Dnipro: Dniprovskyi derzhavnyi tekhnichnyi universytet, 155 p. (in Ukrainian)

18. Zakharenko, K. (2017). Osnovni subiekty ta instytuty informatsiinoi bezpeky. [The main subjects and institutions of information security]. Visnyk Kharkivskoho natsionalnoho pedahohichnoho universytetu imeni H.S. Skovorody. Seriia Filosofiia, 48 (1), pp. 212-219. (in Ukrainian)

19. Potejko, P. (2009). Information security in: Wojtaszczyk, K., Materska-Sosnowska, A. (ed.), State security, ASPRA-JR publishing house, Warsaw, 194 p. (in English)

20. Chellappa, Ramnath K., Paul, A. Pavlou (2002). Perceived information security, financial liability and consumer trust in electronic commerce transactions. Logistics Information Management, pp. 358-368. Retrived from: https://www.emerald.com/insight/content/doi/10.1108/09576050210447046/full/pdf?title=perceived-information-security-financial-liability-and-consumer-trust-in-electronic-commerce-transactions. (in English)