004.05 67.408 266 : . , ..,, . B.C. . .. , ... . . .. , . .. .. .. 266 : . : , 2005. 448 . ISBN 5-94178-070-2 . , . . , , . . , . , , . , , , , , , . 004.05 67.408 .. , , 2005 "" , 2005 ISBN 5-94178070-2

1 1 2 3 3.1. - 3.1.1. 3.1.2. 3.1.3. 3.2 3.3 3.4 3.5 3.6 3.6.1 3.6.2 - 3.6.3 3.6.4 3.6.5 220 3.6.6 4 4.1.

4.2 4.3 4.4. 5 5.1. 5.2 5.3 5.4 5.5 . 5.6 5.7 5.8 5.9 6 6.1 6.1.1 ISO 17799: Code of Practice for Information Security Management 6.1.2 ISO 15408: Common Criteria for Information Technology Security Evaluation 6.1.3 SysTrust 6.1.4 BSI\IT Baseline Protection Manual rd 6.1.5 COBIT 3 Edition 6.1.6 SCORE SANS/GIAC Site Certification 6.2 2 -

7 7.1 . 7.2 7.3 7.4 8 () 8.1 8.2 8.3 9 9.1 9.2 9.3 9.4 10 10.1 10.2 , 10.3 11 11.1 , 11.2 11.2.1 11.2.2 11.2.3 3 12 12.1 12.1.1

12.2 12.3 12.4 12.4.1 12.4.2 12.4.3 Bluetoot h 13 13.1 13.2 4 - 14 15 15.1 15.2 15.3 15.4 16 16.1 16.2 16.2.1 16.2.2 16.3 17 17.1

17.2 17.3 1 2 3

. , , , , . - . . , , . . , , , . - . , , , . , , . 7 12 . , , , . ,

- , , , , , .

90- . . , , , . , , () , , . . 2000 . , , , , , . , , , . , , . , . 11- . ( IS O 15408:19991-3), . 2000 . . , , . , : , , , ,

. - . , , , . , , . , 9 . . 140 . . , 20% , 40% 16% , 33% 2 -5 , 50% - 2 - 3 [42]. (, . ) . , , , , , , .

1 - , . , , , , . , . . , , - . , . : , ; , , ; . . , , . , . . . , , - , , . Internet-, -- . , , ,

[1]. 90% Web, , . 2003 . , - , , , - . : , , , . 2002 . 2,7 4,2 . . [1]. : , . , . . : - ; - 24 7; - ; - . : .

. : , ; ; ; .

1 - , , . . [104], , , , , , , , . , , - . : ( )? : . . , , . , . : , - . , , - ( , ). . , , . - , . - , , . , - , , - . , , , [116].

? - . () : , , , , . , , , . . , , , , , , . , , . - . . - . , , , , . , . - , , , . , , . , , . . , - - . - . - . , , . . ( ) , , . .

. , , , , . . , - . . , [ 106]:" , , , , , . . , , . ? , . ( , ..) . . , - , . . Int ernet-, , Web-, ( ) . . , , . ( , ,

..). , . , , - . . " , , . , , , . Web- , , . ? , : . , , , , , , .. , . . , . . , . , , . ? - . . - . - , .. . , , . (, ), , - , , , . , , , . ,

, , . , , , , , , , . , , , , , . , , , , . . , , , ? , [2]: - ; - ; - . , : ) : - ; - ( , , , ); - ; - ; - , , , ; - , , ; - , ; - ; - ; - , ; - , -

; - , ; - ; - , , ; - ; - , ) : - ; - , ; - ; - - ; - ; - ; - ; - ; - ; - , , , ; - ; - ; - ; - . , : - ; - ; - ; - , Gartner Group [31] 4 : 0- : - , ; - ; - , ( , ). 1- :

- , (, ) () ; - - ; - , IK , , VPN ( ), .. 2- : - , , - ; - ; - , web-, IDS ( ), , SSO ( ), PK I ( ) ( , , , , , ). 3- : - , CISA ( ); - ; - , CS IRT ( ), SLA ( ). Gartner Group ( 2001 ) : 0 - 30%, 1 - 55%, 2 - 10 %, 3 - 5 %. Gart ner Group 2005

: 0 - 20%, 1 - 35%, 2 - 30 %, 3 - 15 %. [2], (55%) (1 ). ( 2 3) . , , . , . . [31]: - ( , ); - ; - ; - , ; - ; - . : - ( ); - (, , , ERP); - (, , ); - ( , www ..). . , , ,

(, - ). , , . 1.1: 1.1 / 7 6 5 4 6 5 4 3 5 5 3 2

, ( ) ( ). , . ISO TR 13335 [129]. - : - (, , , ..); - ( , ); - ( , , ); - (, , ); - ( , ); - ( ). -

- ( ). , . - , . , : - ; - ; - ; - ; - ; - . - . . . : ( ). . . : - ; - . , . . - . , , ( ) ( ).

. : - ; - ; - ; - ; - ; - ; - ; - ; - . , , . . , . , , , , . , , , , .. . , . , , , . , , ,

.

2 , , , , , , , , , , , , . , . , , , , , - . , , . . [109]: - - (, , , , , , , ..); - - , , , ; (, .) , ..; - - , , , , ..; - - . [50]. : - ; - ; - ; - ;

- , . : - ; - ( , , , .); - ; - ; - , , , ; - - ; - , , . [42]: 1. . ( , ), . , , . , , . . , , , . , . 2. , , . , ,

, , . ( ) . , . 3. . , ( ) . , . , , . 4. . , , , . , . , - . : (, , , ) (, , ). , : - , , , , (, , ); - , ; - -

; - , (, , ). - : . , : - , (, , , , , , .); - - ; ( - , , , ). . : - , ( , , : , , , , , ); - , ( , , ( ), - , . .). , , . , , , , [2]: - () , , , (-, , .); , , , , ,

.. , ; , , (, , . .); - () , () . ) , . , , . . , -, , , , , . , . - . , . , , . , , , . , , . , . , - , . , , , . .

, , .. , , .. ) , . : - , , , ; - , ( , , , , ); - (, , , ); - , , . , , [42]: - () ; - ; - (); - ; - ; - ; - ; - ; - ; - ; - ( );

- ; - ; - . : - ( , , , , ) ; - ; - ; - ; - , ; - , , , . , , , -. : - , ; - ; - (, ); - ; - . : - ; - ; - . : - ; - , ; -

; - ; - . : - ; - ; - , ; - - ; - . - : - - ; - , . , , , , [45]. , , , , ( , ; ). , , , , . , . . , , , . . ,

. . , . , . , ( TCP ). TCP . TCP , , . TCP . , , . , , , TCP, : - ; - , ; - . . , TCP . USD, USD. TCP. , . , , , TCP .

, TCP. - . : 1) . 2) . 3) . 4) . . , , . . , - . . : ?: 1. . 2. . 3. . 4. . 5. . , , , . , () , . , ( ). , ( ) , . TCP .

3 [101]. 1- - , , , , : - ; - ; - .. 2- - , , . : - ; - ; - , ; - ; - , .. , ; - ; - ; - , ; - , , . . , ( , .) . 3- - : - ( ); - ,

; - . 4- - : - ; - , , , . () , , [109]: : - ; - ; - . : - ; - ; - . : - , ; - , , .. . 3.1. - : , , , , . , , . , , , ,

. 3.1.1. , , , . 2,5 10-15 . , , . 500 , , ( ), . , , * ( 2- 32-) . . , , . , , , , , . , , . ,

. (.. - ) , ( , , , ..). , , . - . , , . . , , . , 43 , , 1 . 3.1.2. , , , , : , , , . , , . , , , . - . 30 , (VOX, VAS), , , , . . Olympus, Sony, Pans onic, Uher,

. - , , . , , , . 3.1.3. . , , . , , . : - ; - . - , ( , ). . : - ; - , ; - ; - . , . . 1-2 . ( ,

). , : - , ; - , ; - , . , . , . , , : - ( ); - ( , ). , 40 1,5 . , , , , , , .., , , . : - ( 20 1.5 ); - ( 30 25 ); - ( 15 10 ); - . . , , ,

(, , , ..). , , . . 220 , , , , . , ( ), () . , , . , , , , . , , . , , , . . FM - . (), . , .. . - -. , , . , , .

: - ; - , , , ; - ; - ; - ; ; - ; - ; - ( ); - . 3.2 -, -, . . , , , . . , 200 1 . .

3.3 () . . , , . , , , . . (- ), , , ?, 250 . , , SIPE LASER 3-DA S UPER . , : - (, , , ); - ( , , - , .); - ; - . , , . . , , . 3.4

, , . , . , . : - , ; - , ( ). . , , , : - , ( ; - . ; - ; - ; - ; - () ; - ; - ; - ; - ; - ; - (); - ;

- ; - ; - ; - . . , , , . , , , , . . . , , : - , ; - , , ; - , .

3.5 (), . ( ) , . , , . , , . , 500 -1500 , 100-

150 . . . ( ) . 3.6 , , , . : - ; - - ; - ; - ; - 220 ; - . . 3.6.1 : - ( ( )); - ( ()); - ( ). - . , , ,

. - . . , , , . , . ( ), . , . , . , . . , . , . . , , , . , . . , . .

3.6.2 - , , , . . , . , , , , . - , , . , , . , . , , , , .. , , , , () . . - , , - . , , , .

3.6.3 - . . : - , -; - ; - (SoundBlaster); - (). ( ) , - . 3.6.4 . () , . , . AMPS, DAMPS, NAMPS, NMT450, NMT-4501, . * , , . 16 . , , , , .

5 60 . GSM- . GSM (Groupe Speciale Mobile), (European Telecom munications Standard institute), - 79 . , . , GSM , , , , . , GSM- , . . . 3.6.5 220 . , , 220 . (, ..). , . 10 350 . , , . , , . , , . 3.6.6 -

, POCSA G, FLE X, . ( ) ( -I ). , , .. , . () , . , , -. . , , , , , , . , . , , .

4 . , . . , . ( , , , . .), , , , . . , , , , , , . - , . , . , , , , . , , ISO 17799, 9001, 15408, BSI , . ,

- [59]. -, , , -, , . -, . : - , ; - ; - - ; - , , ; - , - , . . , , , . ( , ,

), , , . , , , , , , . 4.1. [59]: 1) , , -, . . 2) , -, , - , 3) - ; 4) . 5) - . 6) , . 7) . . - , ISO .

, ( , Internet). , , , . ( , , , ), . ( , , -, , ). - , , . , , .. 128 139 , , , . - . -- . - ,

, : - , , ; - - - . , , , : - , ; - ( ISO 15408, IS O 17799, ISO 9001 ); - ; - - - ; - - - . . , , . .

( ) [32]: - ; - ; - . 4.2 . , , , - , . , . , , , ( ). , . , : - & ; - - , ; - ; - , . , . , -

. . i. . , , , . , , : - ; - ; - , ; - ; - , , ; - , ; - ; - - ; - ; - ; - ; - - , ; - ; - , , ; - . ,

, . : - ; - ; - - - ; - - , ; - ; - ; - , ; - . , , - . , , , . : - / , ; - ; - ; - ; - ( , , ..); - , ; - , ; - ;

- . , . , , . , , . , , , , , . . : . 4.3 , , . . , . . : - ; - ; - ; , ; - ,

. : - ; - ; - ; - ; - . . (Cobit, ISO 13335, NIS T SP 800-30). , , . 4.4. : ) : - , - - ; - ; - , ; - , ; - , , ; - ; - ; - . ) - :

- ; - , , , ; - ; - , , ; - ; - ; - ; - ; - , . ) , : - , , ; - , ; - , ; - , ; - . ) , : - , , ; - .* ; - -

; - , ; - - , . ) , : - ; - ; - , ; - ; - . : - ; - ; - ; - ; - ; - - - ; - ; - ; - ; - ; - .

, , , . . , , . . , , , . .

5 , . , , , [43]. [50]. . , , , . , Internet , . , , , . , , . , P rincipiis obsta- . . 5.1.

, . ? ? ? ? , , ? , . , : - , ; - (, , , , ..); - , ; - , ; - , , ; - , (, , , ..); - . . , ? ? ? . , , , , , . , ?, .. , .

, , , , . , , , , . , , , . , , 4 , . , , - [50]. , , , . , , , , [ 43]. ( ) , . . , ( , ) , , . , .

, , , , , . - . . , [43]: - , ; - - ISO 17799; - IS O 15408 ; - , . , (, , ), , . , . , , , , , , , . , , , .

. . . , , . : - ; - ; - ; - ; - ; - . , . , . , , : - ; - ; - , , ; - ; - .

, , , , . , . , , . ( , ) , - , . , , , , - . , , , , . , , , . 5.2 , , , , . , , , , , , [43]. . -

, , , . , , III , . 5.1 VII VI V IV III II I -

, , ( , .) III VI - , , , -. . , , , , . , , , . V II . , .. . - ,

, , . , , (, , , Internet) , , . - , , . . , , , . ? . , . . , , . . , , , , , .. . : , . - , , , , . , . , , , . . , I VII

. , , , , , , ? . . , - . , , . . , . III . , . . . III , , , -. . , , . , , , . , , , , , . ,

, . - , , . , , , , . , , , , , , . , , , - . , , , '* . , . 5.3 [5]: . , . . . . . . , , . ( ) .

. , , , . ( ) ( , ). . - . . , . . , . . , ( , , , . .) . . , , , . 5.4 , ( , ..) [6]: - ( ). (, ) . 10 . ,

(, ). - . . , ( ), , , . - . ( ) . , (, 10 -- ) . - . , . , . , ( , . ) . 100 , . - . -, , . , - - , . , , , . : , , , . , , , . - . , . , , (, , )? , , - , . : 90%, ( ) 99,9%. , , :

. . 5.5 . [42]: - ; - ; - ; - ; - ; - . - ( , . .). . : - , . ( ); - ( ) ; - ( , , ); - ; - () ; - (, , , ) . - . - ,

, , . - , , , . - , . , : - , - , - , - -, - , - , - , - - . , . , , , , ; ; . , , . : , , , ..

, , , , : , , , . , , , , . 5.6 . 20 , : - , , , , ; - , , , , ; - . : , , , , . . : - ( );

- , , , , ; - ; - , , ; - , , . (,5), (ISO 15408) (ISO 17799) [59]. , , ISO/ IEC 15408 , ISO/IE C 17799 .

. 5.1. . : - , ; - ( ), ; - - , : ( ). . . () , . :

- , ; - , ; - ; - ; - ; - ; - . . , . , . , , , . 2 , - - , (, , , , ). ( . 2 ), .. . , - . . , , : , , , , .. , . , .

. . . , () . , , , . , . , , , , , . 5.7 - , . , . , , . , , .

. , , , . ( ). , , , , [59]. . , . , , , , , . , . , , ( ), , , , . : - ; - ; - ( ); - ; - . . , . ,

. : - , ; - ; - , , . 5.8 , , , [89]. ( ) , : , , , , , , . . , . , , . , - , - . , : - ; - ; - .

, , . - , . , , . , , . , : . , : - ( , , ); - ( - , , , ); - ( , , ); - ( , - , ). . , , , , . . . , ( - ). , - , -

. , , - , , , , . , , , , , , . , , , , , . 5.9 , , . - , , . , - . . , . . ,

, , - . ( ) , . [14]. , , . , , . ? ( ). : ? , , . ( ) ? . , - . - . , . , , , . . , . , . . , ,

, . , . , . , . , , : , , , , . . , , , , . . . , . , () . , . , , (), , .

6 6.1 140 [81]. 30 . , , , , , . , . , , ISO 15408, ISO 17799 (BS 7799), BS I; COB IT, SAC, COS O, SAS 78/94 , . ISO 15408, ISO 17799 (BS7799), BSI; COB IT, SAC, COS O, SAS 78/94 [60]. -, . -, . , , . , . , , .

, . , . , , . , . [22]: - . - . - . IS017799 ISO15408 . , [4]. IS017799 , ISO 15408 , - . SysTrust , .. , . BS I\IT Baseline Protection Manual , , , . , S CORE, .

SANS/GIAC Site Certific ation, SA NS, . 6.1.1 ISO 17799: Code of Practice for Information Sec urity Management ISO 17799: Code of Practice for Information Security Management ( ), 2000 . ISO 17799 BS 7799. , , - , , , . ISO 17799 [51] , . IS O 17799, , , , , , , , , , . , [4]. ISO 17799 , , . ISO 17799 [51]. 1.

2. : - ; - , ; - ; 3. : - ; - . 4. : - ; - ; - . 5. . 6. : - ; - ; - (, ); - ; - ; - ; - . 7. : - ; - ; - ; - () ; - ; - ; - ; - . 8. : - ; - ; - ; - ; - . 9. : - ; - ; - ;

- , . 10. : - ; - ; - ; - . , ISO 17799 ( ), [4]. . , , , , , -. , , IS O 17799. , , , , , , , . . : - ; - ; - ; - ; - ; - ; - , ; - ; - ; - . ,

, , . . ISO/IE C 17799:2000 (BS 7799 1:2000) [60] : - . - . - . - , - . - . - . - . - . - , . - - . - . BS 7799-2:2000 -Information security management P art 2: S pecification for information sec urity management systems, . . - British Standards Institution(BS I) [103], 1995-2003 : - -

-Information security managment: an int roduction. - BS 7799 -Preparing for BS 7799 sertification. - BS 7799 -Guide to BS 7799 risk assessment and risk management. - BS 7799-Are you ready for a BS 7799 audit. - -BS 7799Guide to BS 7799 auditing. - -Code of practice for IT management. , BS 7799 Joint Technical Committee IS O/IEC JTC 1 - British Standards Institution(BSI), UK AS (United Kingdom Accredited Servic e). BS ISO/ IEC 7799:2000 (BS 77991:2000). , , . , ISO 9001 ISO 9002 BS ISO/IE C 7799:2000 (BS 77991:2000) ISO 9001 9002 , . BS IS O/ IE C 7799:2000 (BS 7799-1:2000). , . 2002 IS O 17799 (BS7799) . , . ,

IS O 17799 (BS 7799) , . ISO 17799 . IS O 17799 , [83]. , , , . , , , . ISO 17799. , - ISO 17799 . , ISO 17799. , IS O 17799? , : , , . , , .

BS 7799 (ISO 17799) , , . , , ISO 17799, . , ISO 17799. ISO 17799, IS O 17799 , , . . , , , , , . , , ISO 17799, (KPMG .), UKAS (United Kingdom Accreditation Service) - . 6.1.2 ISO 15408: Common Criteria for Information Technology Security Evaluation / 1540899 ( ),

ISO 15408: Common Criteria for Information Technology Security Evaluation . ( ) (security functional requirements) (security assurance requirements). . , , 2001 , , 50 % [61]. () , , . , [60]. - , . , . , () , , . , . . , , , / 15408 99. -

[81]: - ; - ; - ; - ; - . - , . , , . , , . - , , [4]. , , . , . . , , AVA: Vulnerability Assessment. , , : - ; - , ,

; - ( ) , ; - () , . , . [60]. . , , , , . 6.1.3 SysTrust , , , , , . , . . , (American Institute of Certified Public Accountants (AICPA)) (Canadian Institute of Chartered Accountants (CICA)) SysTrust , . SysTrust , . SysTrust (A vailability), (Security), (Integrity) (Maintainability),

, , , . . . , , , . , . AICPA/CICA S ysTrust Principles and Crit eria for Systems Reliability, Version 2.0 ( - ). SysTrust (SysTrust engagement) , , (SysTrust Principles and Criteria), . . SysTrust, (unqualified attestation report). . , . (management's assertion) , Sys Trust. SysTrust (Statement on Standards for Attestation E ngagements (SSAE) No. 10, Attestation Standards, AT sec. 101 Attest Engagements.)

Sys Trust Ernst&Young BeeOffice, [119]. 6.1.4 BSI\IT Baseline Protection Manual (IT B aseline Protection Manual) (BS I - B undesamt fbr Sicherheit in der Informationstechnik (German Information Security Agency). , , . , . . BS I [60]: - ( , ). - . - ( , , ). - ( , , , ). - ( , DOS, Windows UNIX). - , Novell NetWare, UNIX Windows ). - , Cisco Systems. -

( 600 ). , : - . Web- BSI (www.bci.de). 1600 [4]. BSI\IT B aseline P rotection Manual . , . 6.1.5 COBIT 3 Edition , , , , , ISACA, , . 1969 23000 100 , [60]. ISACA 26000 (CICA - Certified Information System Auditor), , , , . ISA CA , , , , . ISACA , , rd

. , , . , . rd COB IT 3 Edition (Control Objectives for Information and related Tec hnology), . 1: (Executive Summary). 2: (Framework). . 3: (Control Objectives). 4: (A udit Guidelines). BS ISO/ IEC 17799:2000 (BS 77991:2000). , . COBIT (Control Objectives for Information and related Technology - ) , 1996 . COBIT : . COB IT , , - . . -, , . ,

. , , , : , . - , . . -, - , , , . , - , . 6.1.6 SCORE SANS/GIAC Site Certification SCORE (Security Consensus Operational Readiness E valuation) SANS (Center for Internet Security(CIS)). - SCORE ( ) . , , SCORE, , CIS, , (minimum standards benchmarks) . CIS. (GIAC Site Certification program), SANS, , , SCORE.

GIAC Site Certification . , , . , , . . . , . , . , . , , , , , . , , , , , , . IS017799 ISO15408 , . IS017799 , ISO15408 , - . Sys Trust ,

. BS I\IT Baseline Protection Manual , . , S CORE, . SANS/GIAC Site Certific ation, SA NS, , . BSI, , ISO 15408, ISO 17799 COB IT , . . BSI , . IS O 17799 COB IT . , . ,

, . 6.2 . , 2000 , ( ) [61]. , . [41]: - 26 ( ); - 8 () ; - 40 . , , , . , : - ;

- , ( 60- /, 30 - , 50- , , ). 2001 : 1. / 15408-2002 ( 1, 2, 3), , ( / 15408 -2000 ( 1, 2, 3), ). 2. , 6 , [61]: - ; - ; - . 3. [41]: - ; - . : - ; - . 4 /.

- 6 , , , . , . 4. , . . 5. 2003 : - ( , , ); - , , , . , , , . 6. : I. 2002 2002 2010 , . : - ; - ; - . 38 . II. , , , ,

. , , . 35 . III. 2003-2010 . : - ; - ; - , . , . : 2004-2005 . , : - , ; - , , ; - , , ; - , , . ( , , , , ) , .

, 2003~ 2010 , , : - / 15408-2002 ( ); - / 15408-2002; - , ( ), . , , , . .

2 , . , . , . , , , , , Int ernet (, .) . , . . , , , , . , , . Internet , , , , , . , , , . , . , ,

, , . [17] . 158 , - , - 90, - , -. , , 3,5 8 . , , ( ) . , 150 . , , , , - , , , , . - , , [87]. , , . , 400 . 12 , 250 . Internet , . - , ( ), , , . , , - . , , . ,

, . [40] - , , , , , . - , , . - . - , . , , , , . - , .

7 7.1 . : -, , , -, - . . , , . . , , . . , ( ), , . . [74]: - - , ; - - , , ; - - - , : , , , .. - - () . (. 7.1) ,

. , . , .

. 7.1 . , () , , . , . , / . . .

1. , , : - ( ), ; - ; - ; - ; - . 2. : . 3. . 4. : , , . , . , , , , .. . , . , , . , : - ; - , ; - ; - . . , , , . . , .

(, ) . , . , , : - - ; - ; - - , , ; - - , . , , . , . 7.2 [58]: 1. - . 2. - , . 3. - , - . 4. - . . . .

: - ; - ; - ; - ; - ; - . , ( ), - , , . , [16]: - , ; - - , , . , : - ; - (). , , , , , . , ( ) , , . , . ,

. , : - , , , ( , , ..); - , ; - - (, , ..). , , . , , , . , , . , , . . , , , , ,

. : - ( ); - ; - ; - , ( ), , ; - , , , ; - . , , , . . - . () , . : 1) .

. 2) . . 3) . - , . , , , ( , ..), - , , ( , , ) . . , [84]: - - , ; - ; - . , , , . ( , , , ..), (- , , ), . . : - ; - ( , ,

); - ( , ..). 7.3 [78] - . , . . ( ), , . , , . . . , . , -, , , . , UNIX VMS, , , . - , . , . , (, -). .

( , , , ). , . . , , . . . . . , . , , . . , . , . - , USB , , ( USB - , ). Windows , . USB- , PIN- . , , - . USB-, PIN-, -

. USB- -, , . . ( ). , . , DES - (HMA C-MD5). , . PIN-, . . - , , - , , . , . . , . (, , ), ( , ). (, ) . () , . ( )

. , - - . , 200 -400 . ( ). , . , . , . . ,, . ( iButton, -, USB--) . 7.4 . , . , . , . [30]: 1) , , , ? 2) - ? 3)

? ( , , ), ( ) . , , . , : - (, ); - ( , ); - (web- ). . , , , (VLA N) IPSec. , . , . . [70]. - , . , , , , ( , ) , . , , , .

. , : , ( ). ( ) , , , (). , : , , . , , .. . , ( ). . , ( ). . , . , , , (, , ) . , . . ( , .) , ( ).

. . , . , . , . , , ( ). , , , , , . , . , , . , , - , , .. : , , , . , . , , , . ( ). ( ) , . ,

, . , , , , , , . , , : - , ( , ); - , , ; - , ; - . , , , Novell [84]. , , NetWare, ( , ), . , , .. , . - - . ( - -) - , , .. , - , - , , ,

, . , , , Kerberos, : - , , , , ..; - (authentication server), . , . , , ; - Ticket-granting server ( ) , , . , , . , . , , ( ) . . , , . - , . . , . . , A T& T

Remote Port Securiti Device (P RSD), : RPS D Lock (), , RPS D Key (), , RPSD Key Lock : - , ; - .

8 () ( ) , , , - . , , (, ), , . -, , . 8.1 firewall. firewall (.- ) , . , - , , , , . , . , . , ; , , , . - . , , , . . 8.1.

8.1 , ^ , ? , ^** , xiaxo . , , , , . , . , , (, ) [26]: - ( packet-filtering firewall); - (circuit-level gateway); - (application-level gateway); - (stateful inspection firewall). , - , . , , . . . . : , - [27].

, , . , IP . , , ( ), : - ; - ; - ; - ; - . ( , ), ., , . , , , , . , , . , , , , . , . , , , . , , , ( Internet- ), IP . , , , , - , - . , , . TCP UDP (User Datagram Protocol).

(, Telnet FTP), ( Telnet FTP ). , , TCP/ IP: TCP/IP ( , .. ), . , Telnet TCP/IP 23. Telnet , , , 23 123.45.6. 7 (IP- Telnet), , . , , . , , Cisco, Internet. [28]: - ; - . [28]: - ( ) ; - , TCP UDP; - ; - IP- IP- , , IP -. ( ) ( ), , . , IP- TCP, .. , . , -

, . , , , (, DNS- IP- ). , , TCP TCP-, SYN () ( ). TCP, SY N , 1000, . , , , , , ( 1001), , , SY N . : SYN (, 2000), , 2001. . , SY N , , TCP -, . , TCP, , . , . , , , . , , . , ( pipe proxies), , , ( TCP/IP) . -

: - (proxy server). , - ( ), . - , (address translation), IP- IP -. , . , () ( ). IP- IP -, . , spoofing ( ). , , . . , , . , , Web-, . , * , . , , . , , -, - , - , .

, , : -, , -, . , , , . , - Telnet , , . , , . , FTP Telnet, , . , , . , . , (FTP, Telnet, HTTP .). , , FTP P ut, , FTP -, . , FTP , . , , . , BorderWare Firewall Server Secure Computing , , , . Black Hole Milkyway Networks ,

. [28]: - Internet; - , ; i't - . [28]: - , ; - , . . , , IP- . , , . , , , , . , , , P ut Get FTP. , , - . : - , - . . , , . . . -, .

, , , . , , , . . , , , , , . , 100% - . 8.2 , , . , , , , ( , ). , [35]. , CRM- . , KMI (remote method invocation) , Java, , . . , , VPN (virtual private net work), , , ,

Internet/Intranet. , VPN - , . , VPN . VPN , Web . VPN, , . , eTrust Firewall , VP N, .. eTrust Firewall , , VPN, , . , , VPN. VPN , . VPN , 60%, - Cisco Systems Check Point. , . Cisco - Cisco. Check Point , [24]. 8.3 , IP-, , , SYN, (Denial of Service, DoS). , , HTTP, DNS, ftp, NetMeeting [24]. . . . . , , ITSEC (Information Technology Security Evaluation and Certification Scheme) IASC (Information

Assurance and Certification Services ), Common Criteria Standard. , Gartner Group, Checkpoint Software, Cisco Systems, Microsoft, NetScreen Technologies Symantec Corporation [112]. , Check Point Software Tec hnologies, Cisco Systems NetScreen Technologies - , Microsoft Symantec - , . 8.1 URL Check Point Software Technologies http://www.checkpoint com VPN-1 ( Nokia IP330)

Cisco Systems, Inc.

http://wwwxisco.com/

VPN-1; Windows PIX Device Cisco PIX Firew all Manager ( 500 Series, Cisco PIX Firew all 500 Series) Internet Security and Acceleration NetScreen Server 5000 Windows NetScreen 5000, Windows, Solans

Microsoft NetScreen Technologies

http://www microsoft.com/ http.//www.netscreen,com/

Symantec Corporation

http://www Symantec com/

Enterprise Firew all 7.0

Nok ia IP330 Nokia IP330 , Internet.

Nokia IP Network Security, 1 330 , . 1U . . Nokia IP330 IP- , RIP vl/ RIP v2, IGRP, OSPF, RIP ng BGP 4 unieast-, PIM-DM, PIM-SM DVMRP (multicast) . [94]. IP330 Nokia Voyager, Nokia Horizon Manager, . , . , , Nokia. , Internet , . [95]. Cisco PIX Firewall ( ), , . PIX (Private Internet Exchange) Firewall Cisco Systems [95] . P IX Firewall , UNIX; . PIX Firewall

, UNIX. , . PIX Firewall Internet. ; . P IX Firewall , , . . PIX Firewall Internet . P IX Firewall (stateful) NA T (Network Address Translation - ). Internet, , , , TCP TCP. PIX Firewall Internet . PIX Firewall , TCP/IP, , IP. NA T IP , Internet (IA NA -Internet Assigned Numbers Authority) ( RFC 1918). Cisco P IX Firewall Privat e Link, Internet PIX Firewall DES (DES -Data Encry ption Standard). NetScreen 5000 Juniper Net works (NetScreen Technologies) , (firewall), (VP N),

(bandwidth manager) [52]. . , (. . ), , (.. IpS ec) NetScreen (AS IC). 10 , (systems) ( applianc es), , , ScreenOS, , GigaScreen ASIC . - 5000 - ; NetScreen-5200 5400 [24]. NetScreen1000: , . . NetScreen-5000 - DoS-, JPSec VPN, . 12 / 5400 4 / 5200; VP N, Triple-DES 128- , - 6 2 / . NetScreen 5400 mini-GBIC (S X LX) 72 10/ 100 / 24 mini-GB IC (S X LX); 5200 mini-GB IC (S X LX) 24 10/100 /, mini-GB IC. . 1. (firewall). 2. (Denial of Servic e, DoS). 3. (Virtual Private Networks, VPN). 4. (High A vailability). 5. . 6. . 7. DHCP /. 8. .

Symantec Enterprise Firewall 7.0 , , , , Symantec Enterprise Firewall [158] J . , , , , , . , , Symantec Enterprise Firewall 7.0 Advanced Encryption Standard (AES) , 1.5 /. Windows NT/2000 Solaris, Symantec Enterprise Firewall , - , . , : - ; - / ; - ; ; - DoS . ( ) Agnitum Outpost Firewall [97]. 2004 2.1. , , ,

, : : 1.0, Pro 500 [6]. . Outpost Firewall : . - , : , , , . Outpost Firewall : , , cookies, . (plug-in) , . Outpost Firewall, Kaspersky Anti-Hacker [112]. Anti-Hacker , . PortsLock - [6]. PortsLock - , Windows NT/ 2000/ Windows Server 2003. TCP/ IP . IP- - NTFS . , . PortsLock ( , , . .) , , . VipNet Office, VipNet Tunnel VipNet Corporate [46]. -f ,

VPN [46]. - - VPN [46]. , VP N [46]. , , , .

9 9.1 (Intrusion Detection Systems - IDS)* 1997 ISS. , , , , . - . . , , 80- . . , - . , , . , , , . , , , . . , - , . . . . , . , . , . , . , , - .

. , . . . . ? ? ? ? ? ? , , (, ) , , . . . , . . . , . , . , - . . - . . , , . , . , . , . , [19]. , , : - ; - . . , , . -

, . , . -. . , , , . , . . , . . : - ; - ; - . , , . . - , , . , . . , , , - . . , . , , . . . : - ; - ; - .

- . . . , IP-. , . . , . , . , IP - . , . , , . 9.2 , ( ) , TCP/IP. , , . , CE RT, , 2004 , , 2003 . 2003 , , , . , [73].

. : - ; - ; - SNMP -trap (, HP Open View, IBM Tivoli, CA Unicenter .). , , : - TCP- , . TCP- RS T; - . , ; - , . () , . OPSEC Checkpoint FW-1; - , . . , , . , , . , ,

, . : , , . , . , , . , , . . , . , . , , Web- Apache, Linux, Nimda, web- Microsoft IIS, , , Web- . , , . 9.3 , Gartner Group [38], Cisco Systems, Internet Security Systems, Enterasys Net works Symantec. Butler Group, Computer Associates Entercept Security Technology. , , Symantec Ent ercept Security Technology. Cisco IDS 4210 - , - ,

. 9.1 [112]. 9.1 URL Cisco IDS 4210, Windows Windows Windows, Solaris Windows, RedHat Linux, Solaris, ADC, HP- UX, Nokia Windows, Linux, Solaris, AIX Windows, Novel NetWare, UNIX; | Tivoli En terprise, BMC Patrol, HP Open View

Cisco Systems, inc.

http://www.cisco.com/

Cisco IDS 4210 eTrust

Computer Associates Entercept Security Technology Internet Security Systems

http://www.cai.com/ http://www.entercept.co m/ http://www.is s.net/

Intrusion Detection 2.0 Entercept 2.5 RealSecure Netw ork Protection Dragon Intrusion Detection System Symantec Host Intrusion

Entcrasys Netw orks

http://www.enterasys.co m/

Sjmantec Corporation

http://www.Symantec.co m/

Detection System, Symantec Intruder Alert

Cisco Secure IDS Cisco Secure IDS : Cisco Secure IDS Sensor, Cisco IDS Host Sens or, Catalyst 6500 IDS Module [79]. Cisco IDS Network Sensor - , . IDS Sensor Cisco Secure IDS

Director. Cisco IDS Host Sensor , , , , - . , Cisco IDS Host Sensor , . Catalyst 6500 I DS Module , IDS , Catalyst 6500. Cisco IDS 4210 45 / 1/1, , Ethernet . Cisco IDS 4235 200 /, , . Cisco IDS 4250 500 / . Cisco , [91]. . Cisco IDS . Cisco IDS : - . Cisco IDS Sensor S oft ware Version 4. 0 . - . Cisco Threat Response , . - . - , . - . .

Cisco IDS . , , - . eTrust Intrusion Detection Computer Associates , eTrust [39]. - eTrust intrusion Det ection, (denial of service - DoS). , eTrust Firewall, Checkpoint Firewall-i, Cisco Systems. - - . Entercept 2.5 Entercept [56]. , , . Entercept API , . , . , . , (, ). - Entercept, . Entercept . .

. . , . . . : , , , . , Entercept , . Entercept , , . , . () , . . , Enterc ept . GirlFriend, UniCode, LOphtCrack. Entercept , . , - , . RealS ecure RealSecure Int ernet Security Systems, Inc. [72]. RealSecure , . , , - ,

Ethernet, Fast Ethernet, FDDI, TokenRing Gigabit Ethernet, , Windows 2000, Windows NT, Solaris, linux, HP UX AIX. RealSec ure , , , Web-, , , , .. , : - ; - e-mail, , ; - ; - SNMP - ; - ; - ; - ; - ( .. Internet); - ; - . RealSecure , , . Dragon Dragon - , , [75]. Dragon (), . . , . . Dragon.

Dragon , , . . Network Intrusion Detection System (NIDS), Host Based Intrusion Detection System (IIIDS ). . , , Policy Manager . , . , . - MD5 ( ), , , S NMP, Windows NT. , ( , -, UNS - FTP -). - log- , , SNMP SYSLOG. , , syslog-, -, syslog-co- Dragon . (Checkpoint FW-1, Symantec Raptor, Rapidstream, Netscreen, Cyberguard, Cisco P IX) . , - . . , , : Secure Shell, Sendmail, Qmail, Bind, Internet Information Server Apache. - log- ,

, SSH- -, SSL. , . SSH, , .. - , , , . E nterprise S ensor, E vent Flow P rocessor, Policy Manager . . Dragon . () . - . , , . Dragon (policy manager, rtlormt ool config, real time console, forensics console, trending console), -. Policy Manager . ( ). . Policy Manager . . Alarmtool . : , , S NMP, SMTP (e-mail), SYSLOG. , Alarmtool , , , . .

, . , , . . 24 . , , , , . 1, 5 15 . / Forensics Trending-. , , . . MySQL, . MySQL. , Oracle, Sybase MS-SQL. : , , . (E vent Flow Processor - EFP) . EFP , . Dragon , , . , EFP , , EFP, , . Dragon Dragon : - ; - , , , , , ; -

, , . . : 1. , . , , . 2. , . , IP- . 3. , . , , . Symantec Intruder Alert Symantec Intruder Alert (ITA ) IDS (hostbased), [67]. . , . ITA . , 14 . . ITA 35 - , UNIX, Windows NetWare. . ITA . IT A

- . -. 400- . ITA : ITA Admin View. ITA Admin , , . IT A Admin : - ; - ; - Web- Symantec; - ; - ; - ; - ITA . ITA View , ITA . ITA, , , , , ; ITA Manager. , , , . , . UNIX ITA Manager . Windows NT NLM-

NetWare. ITA Agent , , . , ITA. , . . . UNIX Windows NT , , (syslog, wtmp, process accounting, btmp, 2 . . UNIX , Windows NT). ITA A gent , . NetWare ITA Agent , . 9.4 (: ) , , . , . , . [76]: - , ; - , ; - ;

- . , TCP/IP. , . - . , . , . , . . . . , . . : - ; - , ; - , ; - ; , , .

: - , . , , . - , . , , Web-, . . - -, , . - , , , . , . - , , . , . 1) . 2) . 3) , 4) , 5) - . , .

SE CRET NET - SECRE T NE T ( ) , , [69]. Secret Net Windows 95, Windows 98, Windows NT Windows 2000 , . Secret Net , . SECRE T NE T [68]; - (Touch Memory, Smart Card, Smarty, Proximity ..); - 16 ; - ; - CD-ROM ; - ; - ( ); - ; - ; - ; - Config.sys Autoexec.bat; - ; - , ; - , -

. : - ; - ; - . Secret Net Sec ret Net, , , . - - ( ) - (VPN) , TCP/IP (, Internet), [69]: - , ; - ; - - . VP N , ( ). 3 , . ( CSP), - ( ) .

10 10.1 , . , 2002 12 34 , (Linux, Microsoft .NE T, FreeBS D, , Microsft SQL Server) [112]. , : , , .., . - 96,4% , (Web-, FTP-, 2-, IRC .) - 2,3% ( , CD-ROM, 1 .) - 1,3%. , . , , - - . . , ( ) , . , , , - , , - . : - ; - . ( ) - , (!)

, , ( ) . . : ( ), ( ). : , , . -, know-how . : ( ), . . : - , . , , . . , : , : -, . - . , ? - . - 3060% ( , ). ,

- . , , , , . : - ( ) ; - ; - () ; - . , - . , . , . Intel , [84]. , . 1 , . 10.2 , , , , , , , . , , , .

. , , . , , . , , . , , . [112]: - ; - ; - , (, , ). [112] , : 1. - , . 2. , - /, . . . (. ), , (), .. . 3. , , , . 4. , , .

, , , , . , - [] [Cancel] , , . , , , () . . , - . , . , 100% - , ( 99 %) . 1%, , 99 %, , . 1,99 %. , . , , , .. , , , , , , . , ,

, . , . , OneHalf Windows95 WindowsNT. ( ) DOS -, : , Windows 95/ NT () . , Windows, . . 100%- , , , . , - Novell NetWare, Windows NT, , -, , / . , . . , . , , . , , - . . , . , , . Gartner Group, Network Associates, Symantec, TrendMicro.

S ophos, Computer Associates, FSecure. , , SMTP- , Web- FTP -, . , , . 10.1 , URL Windows, Linux, Solaris , Novell NetWare; Microsoft Exchange, Lotus Notes/Domino Windows, Lmux, Microsoft Exchange, Windows e Linux,

Computer Associates Stune

http://www.cai.coin/

http://www.f-secure.com/

eTrust Antivirus 6.0 eTrust Antivirus Groupware F-Secure AntiVirus Total Suite

Netw ork Associates Sophos

http://www.mcafeeb2b.co m http://www.sophos.com/

McAfee Activ e Vi- Windows Microsoft Exchange, rus Defence Lotus Notes/Domino Sophos Anti-Virus, Mail Monitor, Enterprise Manager Windows, Novell, NetWare, Linux, Solaris, FreeBSD, SCO UnixWare, SCO OpenServer, HP-UX, AIX, Compaq True64 UNIX, OS/2, OpenVMS Windows, Novell, NetWare, Microsoft Exchange, Lotus Notes/Domino Windows, Linux, Solaris, HP UX, ADC; Cisco, Microsoft, Lucent, NetScreen, Check Point Windows, Linux, Solaris , FreeBSD/OpenBSD/B SDi,OS/2, Novell NetWare; Microsoft Exchange, Lotus Notes/Domino, Linux, Solaris, FreeBSD/OpenBSD/B SDi

Symantec Corporation TrendMicro

http://www.symantec.com/ Symantec Antivirus Enterprise Edition 8.5 http://www.trendmicro.com InterScan / VirusWall

http://www.kaspersky.ru/

Business Optimal

htttp://www.dials ru/

Dr. Web Dr. Web Novell NetWare, Enterprise Suite ( Linux, Solaris, FreeBSD )

. eTrust Antivirus eTrust Antivirus Computer Associates international, Inc. (CA ) , . , eTrust A ntivirus , . , , eTrust TA RGE T (Threat A nalysis and Response Global Emergency) (! [130]. eTrust Antivirus . . , eTrust Antivirus . . (Virus Block) . , . . eTrust Antivirus. eTrust Antivirus

. , eTrust Antivirus . . 100% eTrust TA RGE T, eTrust Antivirus , . eTrust A ntivirus , . . eTrust Antivirus , . . eTrust Antivirus : - ; - , ; - , Internet/ Intranet; - , ; - , , ; , , , ; - Lotus Notes Microsoft Exchange Server; - Computer Associates. eTrust Antivirus: . . . . : .

. eTrust Antivirus . , Microsoft Exchange Lotus Notes/Domino; ; ( roaming us ers); (Virus Block); . . . , . , , .. . , . SMTP, , HTTP , . eTrust TARGE T. eTrust TARGE T , , , . eTrust Antivirus . . eTrust Antivirus ICSA Labs, West Coast Labs Virus Bulletin 100 % . . Report Builder, LDAP ODB C , . .

, , , , . eTrust Audit . Sophos Anti-Virus Sophos Anti-virus (SAV) , . SAV , , West Coast labs, ICSA Labs Virus Bulletin [93]. . Sophos Anti-Virus , . Sophos Anti-Virus , LZE XE, PKLITE, UUENCODE DIE T. Zip, ARJ, TA R, GZIP, RAR, Unix ELF, , Unix- compress, Binhex MacBinary Macintosh, Windows NT/2000/ XP NetWare. InterCheck . , , - , CD-, , , , . InterCheck, . , . , . ,

. Sophos Anti-Virus , , , . , , , . Enterprise Manager SAV # , . Ent erprise Manager , SAV , ( Remote Updat e). Enterprise Manager . Sophos Anti-Virus , , . Enterprise Manager Enterprise Manager , Sophos [128]. . , Sophos Anti-Virus, E nterprise Manager . , 10 Q0 Windows . Reporter . , , . Report er , Sophos Anti-Virus,

, . Sophos Anti-Virus, . Sophos Enterprise Manager , Sophos Anti-Virus . Enterprise Manager Sophos Anti-Virus , web S ophos databank. Sophos Anti-Virus , , . S ophos (, , ) . Remot e Update web- , . , ( ), . Enterprise Manager : 1. Sophos Databank web-, S ophos Anti-Virus . Enterprise Manager . 2. Library , . (CID), . 3. Reporter , . , . 4. Console Library Reporter .

5. SAVAdmin Windows. , , . Symantec Antivirus Enterprise Edition Symantec A ntivirus Enterprise Edition , , [126]. Digital Immune System . NAVE X Norton Antivirus , . Symantec Antivirus Enterprise Edition Windows, Solaris NetWare, . Symantec Antivirus Enterprise Edition , . Symant ec System Center IT- Symantec A ntivirus , , . Symantec System Cent er , . Central Quarantine LiveUpdate . Symantec Security Response Symantec Antivirus Enterprise Edition. . InterScan Virus Wall Trend Micro Int erScan Virus Wall for Small and Medium

Business -, [100]. , , -, . , InterScan Virus Wall for Small and Medium Business , , , , . InterScan Virus Wall for Small and Medium Business , SMTP, HTTP FTP, -. , , , . -. -. InterScan Virus Wall for Small and Medium Business , - - . , . , SMTP, HTTP, FTP , , . . , SMTP, . InterScan Virus Wall for Small and Medium Business , , . . InterScan

Virus Wall for Small and Medium Business , , . , SMTP . . InterScan Virus Wall for Small and Medium Business , . , , . . InterScan Virus Wall for Small and Medium Business , . ( , Java), , . Kaspersky Anti-Virus , - , , - . , , , , ( ) , [112]. P ersonal, Personal Pro K aspersky Security PDA . Business Optimal , - , - , .

Kaspersky Security Corporate Suite - , . Business Optimal Business Optimal . . Business Optimal - , , . . Business Optimal , . . Business Optimal . , , -. . Business Optimal , . . Kas persky Updater . , . ; , Kaspersky Updat er . . . . Business Optimal . B usiness Optimal

, , 24 . Kaspersky Corporate Suite , Kaspersky Corporate Suite. 1) . 2) . 3) , . 4) , . Kaspersky Corporate Suite 24 , 7 , . , Corporate S uite , . Kaspersky Anti-Spam Kaspersky Anti-Spam - , , ISP-, , , . , , , , , , . ( !) , .

Kaspersky SMTP-Gateway Linux/Unix. Kaspersky SMTP -Gateway Linux/Unix , , SMTP-. , , . Kaspersky SMTP-Gateway () . Dr. Web Enterprise Suite Dr. Web Enterprise Suit e - Dr. Web , [92]. Dr. Web Enterprise Suite , , ( ), : - Dr. Web , ; - , ; - Dr. Web, Dre Web; - ; - ( , ) . Dr. Web Enterpri se Suite :

- Dr. Web Enterpri se Suite , ; - , , , , IP, IP X NetBIOS ; - , ; - Dr. Web Enterpri se Suite, , , ; - ; - , Windows, UNIX-; - ( ) . 1996 Doctor Web . , . , . : . . Virus Bulletin 2002 . VB100% - [3]. VB100% , , 100% In the Wild, ,

. (In the Wild), , , . Doctor Web Virus Bulletin, VB100%. 2003 : Doctor Web 100% . 4*100% ( , ) Doctor Web 2001. 10.2 2008 Virus B ulletin, Doctor Web , VB100%. 10.2 In the Wild % 100 100 100 100 100 100 99,66 99,99 100 % 100 99,94 100 99,35 97,50 96,49 95,48 93,86 93,33 % 100 100 99,81 100 99,81 98,65 99,50 99,83 99,81

% iDialode Science Doctor Web EsetNOD32 Symantec Norton FntiVirus CA Vet Anti-Virus FRISK F- Prot Norman Virus Control Sophos Anti Virus Trend PC-cillin Virus Buster 100 100 100 100 100 100 100 100 100

Doctor Web , . , SpIDer Guard Doctor Web SpIDer Netting .

- , . 2000 Doctor Web . , . , , Doctor Web . 2004 - , Adware/Spyware [127]* , , , , , , - . Dr.Web , Adware/Spyware , . Dr.Web, , Dr. Web , Doctor Web . 10.3 [112] . 1.

Word/Excel, . , (), . - , ( Internet ). , , Int ernet. 2. . : ; ( , ) .. , , . , . . , , , . 3. , . , . ( ), . , (, WWW- Microsoft , - Wazzu). 4. , . , . . , -

BBS - . , , , , - . , - . , . , . , . 5. . ( ) ( , , , ..) , , , . 6. , . backup-. , , , , . - backup . , , .

11 11.1 , , - , . , , , , - .. . , , . , . . , MIME , . . , , , , .. MessageLabs . Scotsman, , 2004 , . , 2003 208 , 2002 392 [107]. , . , .

. , , (exe, com, bat) , OLE- (, MS Office). . , , . . , , ( Denial of Service) (mail-bombs), , , , . 2004 63,5 , . 37, 9 , 2002 - 1,5 - , [107]. . . , , , . , , , , (, - , , , ..). , : - ( );

- ( ); - ( ). , (, , , ..). , , , . , . , . . , , , , , , , , , . , , , , , , . 30% , . , , , , , , (, , ..). . , ,

, .. . , , . , , , , . , , . , , , , . - ( , , (), ). , . , . , , , . , . , . , . . , .

, . , , , , - . , ( , ..), , , . , , . , . , , , , , . , , , , .. ( ). -, - , . . , . . -, , - , , .

. - . , . , , , . . , . . , , , , , .

11.2 , , . - . . , . , , . , , , ,

. , (content security software). . : - ; - : - ; - ; - ( ); - ; - ; - ; - . . : - ( , ); - ; - ; - .. 11.2.1 - , . , . . , , . . . , ,

- , , . , , . , , . , , , . , , . . : - , ; - ; - ( , , ); - , .. , , , ; - ; - , ; - ; - . , , - , . : 1. , -

. 2. , . 3. . 4. . 5. , . 11.2.2 , . . . . - , . : 1. . 2. . 3. ( , ..). 4. . 5. . 6.

. . . , , . . - . , . , , . , , , . , . : ( ). , , , , . , . , . . , .

. (MIME -, , ..), , (, ). , (, ). , . , . , , . . () . . . , . , , . . . . . : IP- , (