LEGAL BASIS OF ENSURING CYBER SECURITY OF UKRAINE: PROBLEMS AND WAYS OF ELIMINATING
DOI:
https://doi.org/10.36690/2674-5208-2020-2-82Keywords:
information security, cyber security, standards, information and telecommunication systems, computer systems, certification, security managementAbstract
In the study we tested the analysis of modern data on cyber security in Ukraine, we highlighted the main aspects of the regulatory and legal support of the national information security. Identified key reported measures to counteract threats to state information security in the whole and in each individual types and the lack of practical implementation these activities. Found, that at the legislative level had been adopted only two documents on cyber security: Law of Ukraine on “Fundamentals of National Security of Ukraine”, and the Decree of the President of Ukraine № 47/2017 of February 25, 2017 about des approved the Doctrine of Information Security of Ukraine. In these documents cyber security is given priority in the security system. Determined the main problems of ensuring the cyber security: ineffective regulatory and legal support and system of governance; the lack unified strategy of cyber security; low level of government management in cyber defense; temporal inconsistence of state regulation in information area and development of a legal system for the regulation in protection of critical infrastructure seams; the lack of transactional approach to the state cyber security governance by the state part; no requirement for security system(SIS); employment outdated standards. Offered the replacement of technical security information documents (TS ID), more effective and modern basic standards, establish industry standards for information security system (ISS). Amend the Law of Ukraine “Information security and telecommunication system” and provide a new approach of the method for confirming compliance of information system of information security requirements by establishing criteria for compliance; conduct regular audits to ensure compliance with the requirements and proper functioning of the security management process; conduct proven system of security information.
For further development we propose to provide new approach of the method for confirming compliance of information system of information security requirements by establishing criteria for compliance. The purpose of such event is to legislate the requirements of the standards of the family of information security management system (ISMS) for certain categories of information, which is protected by the legislation of Ukraine.
Downloads
References
Yankovsky, O. (2019). Ukraine needs a new cyber strategy. Retrieved from: https://www.pravda.com.ua/columns/2019/09/14/7226291/.
Problems of the current domestic legal and regulatory framework for combating cybercrime: the main directions of reform. Analytical note. National Institute of Strategic Studies. Retrieved from: http://www.niss.gov.ua/articles/454/.
Rudy, T.V., Senyk, V.V., Rudy, A.T. & Senyk, S.V. (2018). Organizational, legal, forensic and technical aspects of combating cybercrime in Ukraine. Scientific Bulletin of Lviv State University of Internal Affairs. Legal series, 1, 283-301.
Leonov, B.D. & Serohin, V.S. (n.d.). Challenges of legal and expert law enforcement in countering cybercrime. Retrieved from: http://academy.ssu.gov.ua/ua/page/page_1581430420.htm.
Kostenko, O.V. (2019). Problems of legal regulation and development of cyber security of Ukraine at the present stage. Information and law. Institute of Informatics and Law of the National Academy of Legal Sciences of Ukraine, 3 (30), 96-104.
Tarasyuk, A.V. (2019). Relationship between information and cyber security. Information and law, 4 (31), 73-82.
Hutsalyuk, M.V. (2019). Current trends in organized cybercrime. Information and law. Institute of Informatics and Law of the National Academy of Legal Sciences of Ukraine, 1 (28), 118-128.
Kotlyarov, Yu. (2018). Cybersecurity Law Architecture in Ukraine. Retrieved from: https: //www.reader.com/ukraine/yurydychna-gazeta/20180515/281578061307803
Dovgan, O.D. & Tkachuk, T.Yu. (2019). Conceptual framework for legislation Information security of Ukraine. Information and law. Research Institute of Informatics and Law of the National Academy of Legal Sciences of Ukraine, 1 (28), 86–99.
Downloads
Published
How to Cite
Issue
Section
License
This work is licensed under a Creative Commons Attribution-NonCommercial 4.0 International License.