The article proposes algorithms for assessing the effectiveness of security of confidential data of an enterprise in a distributed information system, based on a model for determining current threats to the security of confidential data in a distributed information system, on fuzzy inference algorithms and the theory of fuzzy neural systems, and on a method for assessing the effectiveness of security of confidential data in a distributed information system. Unlike known approaches, sufficient and necessary indicators are used, and expert errors are eliminated, the identification of current threats to the security of confidential enterprise data is increasing, the following factors are taken into account: the IT infrastructure of the distributed information system, the capabilities of attackers and their level of motivation in the enterprise's distributed information system. The proposed approach to assessing the effectiveness of security of confidential data of an enterprise of a distributed information system differs from existing ones in the following: lack of involvement of highly qualified specialists in the field of information security; the process is automated, has low computational complexity; allows determining the list of current threats to information security in information systems of different classes and types. The developed algorithms for assessing the effectiveness of information security will allow owners of distributed information systems to assess the effectiveness of the protection system in real time, reduce financial costs for developing a protection system. The algorithms proposed in the research for assessing the effectiveness of the system for protecting confidential information of distributed information systems allow: to minimize unnecessary and redundant steps in assessing the protection system; to take into account all aspects of the process of assessing the effectiveness of the system for protecting distributed information systems; to take into account the requirements in the field of ensuring information security when assessing the effectiveness of the system for protecting protection; can be adapted to the conditions of the owners of distributed information systems. Improving the quality of assessing the effectiveness of distributed information systems protection systems by determining sufficient and necessary evaluation indicators using promising information technologies will allow the following tasks to be most effectively solved: determining the operating parameters of adaptive production fuzzy neural systems, applying Data Science technologies in data processing, and fuzzy inference algorithms. The results of the study on assessing the effectiveness of the distributed information systems protection system can be used to manage the life cycle of information systems, assess the state of IT infrastructure, and the fleet of automated workplaces - in order to assess the compliance of enterprises with approaches to information technology management.
Ленков et al. (Wed,) studied this question.