LEGAL BASIS OF ENSURING CYBER SECURITY OF UKRAINE: PROBLEMS AND WAYS OF ELIMINATING

Zinaida Zhyvko; Taras Rudyi; Volodymyr Senyk; Liliia Kucharska

doi:10.36690/2674-5208-2020-2-82

Authors

Zinaida Zhyvko Lviv State University of Internal Affairs https://orcid.org/0000-0002-4045-669X
Taras Rudyi Lviv State University of Internal Affairs
Volodymyr Senyk Lviv State University of Internal Affairs https://orcid.org/0000-0002-0428-6443
Liliia Kucharska Lviv State University of Internal Affairs https://orcid.org/0000-0002-8957-6983

DOI:

https://doi.org/10.36690/2674-5208-2020-2-82

Keywords:

information security, cyber security, standards, information and telecommunication systems, computer systems, certification, security management

Abstract

In the study we tested the analysis of modern data on cyber security in Ukraine, we highlighted the main aspects of the regulatory and legal support of the national information security. Identified key reported measures to counteract threats to state information security in the whole and in each individual types and the lack of practical implementation these activities. Found, that at the legislative level had been adopted only two documents on cyber security: Law of Ukraine on “Fundamentals of National Security of Ukraine”, and the Decree of the President of Ukraine № 47/2017 of February 25, 2017 about des approved the Doctrine of Information Security of Ukraine. In these documents cyber security is given priority in the security system. Determined the main problems of ensuring the cyber security: ineffective regulatory and legal support and system of governance; the lack unified strategy of cyber security; low level of government management in cyber defense; temporal inconsistence of state regulation in information area and development of a legal system for the regulation in protection of critical infrastructure seams; the lack of transactional approach to the state cyber security governance by the state part; no requirement for security system(SIS); employment outdated standards. Offered the replacement of technical security information documents (TS ID), more effective and modern basic standards, establish industry standards for information security system (ISS). Amend the Law of Ukraine “Information security and telecommunication system” and provide a new approach of the method for confirming compliance of information system of information security requirements by establishing criteria for compliance; conduct regular audits to ensure compliance with the requirements and proper functioning of the security management process; conduct proven system of security information.

For further development we propose to provide new approach of the method for confirming compliance of information system of information security requirements by establishing criteria for compliance. The purpose of such event is to legislate the requirements of the standards of the family of information security management system (ISMS) for certain categories of information, which is protected by the legislation of Ukraine.

Downloads

Download data is not yet available.

Author Biographies

Zinaida Zhyvko, Lviv State University of Internal Affairs

Doctor of Science (Economics), Professor, Department of Management, Lviv State University of Internal Affairs, Lviv, Ukraine

Taras Rudyi, Lviv State University of Internal Affairs

Ph.D. (Technical sciences), Associate Professor, Associate Professor of Department of Informatics, Lviv State University of Internal Affairs, Lviv, Ukraine

Volodymyr Senyk, Lviv State University of Internal Affairs

Ph.D. (Technical sciences), Associate Professor, Head of Department of Informatics, Lviv State University of Internal Affairs, Lviv, Ukraine

Liliia Kucharska, Lviv State University of Internal Affairs

Postgraduate, Lviv State University of Internal Affairs, Lviv, Ukraine

References

Yankovsky, O. (2019). Ukraine needs a new cyber strategy. Retrieved from: https://www.pravda.com.ua/columns/2019/09/14/7226291/.

Problems of the current domestic legal and regulatory framework for combating cybercrime: the main directions of reform. Analytical note. National Institute of Strategic Studies. Retrieved from: http://www.niss.gov.ua/articles/454/.

Rudy, T.V., Senyk, V.V., Rudy, A.T. & Senyk, S.V. (2018). Organizational, legal, forensic and technical aspects of combating cybercrime in Ukraine. Scientific Bulletin of Lviv State University of Internal Affairs. Legal series, 1, 283-301.

Leonov, B.D. & Serohin, V.S. (n.d.). Challenges of legal and expert law enforcement in countering cybercrime. Retrieved from: http://academy.ssu.gov.ua/ua/page/page_1581430420.htm.

Kostenko, O.V. (2019). Problems of legal regulation and development of cyber security of Ukraine at the present stage. Information and law. Institute of Informatics and Law of the National Academy of Legal Sciences of Ukraine, 3 (30), 96-104.

Tarasyuk, A.V. (2019). Relationship between information and cyber security. Information and law, 4 (31), 73-82.

Hutsalyuk, M.V. (2019). Current trends in organized cybercrime. Information and law. Institute of Informatics and Law of the National Academy of Legal Sciences of Ukraine, 1 (28), 118-128.

Kotlyarov, Yu. (2018). Cybersecurity Law Architecture in Ukraine. Retrieved from: https: //www.reader.com/ukraine/yurydychna-gazeta/20180515/281578061307803

Dovgan, O.D. & Tkachuk, T.Yu. (2019). Conceptual framework for legislation Information security of Ukraine. Information and law. Research Institute of Informatics and Law of the National Academy of Legal Sciences of Ukraine, 1 (28), 86–99.