摘要:The article is devoted to an urgent problem related to the security of critical information infrastructure. The introduction of digital technologies in all spheres of society is in line with the priority policy for the development of the digital industry. At the same time, the number and quality of cyberattacks on significant objects of critical information infrastructure is constantly increasing in the world. But not all subjects of information relations, even understanding the presence of threats, are able to adequately assess and organize an effective security system for these objects. In this regard, ensuring the security of significant objects of critical information infrastructure is currently the primary task of the state - both the Russian Federation and other countries. The article provides a comparative analysis of approaches to ensuring the security of critical information infrastructure in Russia and in foreign countries. The problems of legal regulation of critical information infrastructure in Russia are identified and solutions are proposed to overcome them. There are traced the shortcomings associated with the implementation of legislation on the security of critical information infrastructure in Russia: in the digital industry, it becomes difficult to differentiate information infrastructure objects and classify some of them as critical; not all relevant legal entities have provided information on critical information infrastructure facilities, and therefore the register of facilities was not compiled in full, cyberattacks on which would create dangerous consequences for the country; some subjects of the critical information infrastructure deliberately underestimate the importance of their objects.
