9004 Problems of information security. Computer systems Проблемы информационной безопасности. Компьютерные системы 2071-8217 8 10.48612/jisp/mr9d-5tum-xmdp A network access definition method to ensure network infrastructure security based on removal of excessive network connectivity Метод разграничения сетевого доступа для обеспечения безопасности сетевой инфраструктуры на основе устранения избыточной сетевой связности 0000-0001-7271-8343 Shilova Anastasiya Bondareva.AD@yandex.ru 0000-0001-6691-6167 Vorobeva Alisa alice_w@mail.ru ITMO University 29 09 2023 3 103 116

The purpose of this work is to increase the security of the network infrastructure. A network infrastructure model has been developed, an access control method based on the elimination of excessive network connectivity between subjects and objects of access has been proposed and evaluated, the directions of its development have been described. The method can be used for network segmentation

 information security access control network infrastructure firewall