METHOD AND SYSTEM FOR CYBERSECURITY EVENTS SONIFICATION BASED ON ANALYSIS OF ACTIONS OF NETWORK PROTECTION MEANS

摘要

FIELD: information technology.;SUBSTANCE: invention relates to sonification of cybersecurity events. Cybersecurity events are collected, which include information on the type of transport network protocols and IP addresses of network exchange nodes, time for performing connections between nodes and response of network protection means to said connections. Obtained data are aggregated according to the type of actions of network protection means operation and statistical characteristics of connections between network nodes are calculated for each transport protocol, wherein the statistical characteristics reflect the number of attempts of connections with the given action of the security means per unit of time and deviation from the average value of the number of connections for a specific action of the security means. A scheme for event sonification is generated based on said statistical characteristics of connections between network nodes. Sound notifications are generated for incoming notifications of cybersecurity in accordance with said sonification scheme.;EFFECT: high efficiency of responding to emerging events of cybersecurity in network zones owing to application of scheme of events sonification.;8 cl, 6 dwg