IMPROVED METHOD FOR THE FORMATION OF LINGUISTIC STANDARDS FOR OF INTRUSION DETECTION SYSTEMS

Due to intensive development of digital business, malicious software and other cyber threats are becoming more common. To increase the level of security necessary special remedies that can be effective when new types of threats and allow fuzzy conditions to detect cyberattacks targeting multiple resources of information systems. Different attacking effects on related resources give rise to different sets of parametric anomalies in a heterogeneous environment. Known tuple model of the formation of a set of core components that allow to detect cyberattacks. For its effective application requires a formal approach to the formation of fuzzy (linguistic) standards. To this end a method is developed that focuses on the tasks of identifying cyberattacks on computer systems, which is based on mathematical models and methods of fuzzy logic and is implemented through six basic stages: the formation of subsets of identifiers linguistic assessments, forming the base matrix of frequencies, the formation of the derivative matrix of frequencies, the formation of fuzzy terms, the formation of the reference fuzzy numbers, visualization of linguistic standards. The method allows to improve the process of formalization of linguistic standards receive options to improve the efficiency of construction of the corresponding intrusion detection systems.