9004 Problems of information security. Computer systems Проблемы информационной безопасности. Компьютерные системы 2071-8217 4 10.48612/jisp/78up-h9mu-rmxt Using entropy metrics to detect data integrity attacks in real-time Использование энтропийных метрик для выявления атак на целостность данных в режиме реального времени 0009-0008-8810-6307 Bondarenko Timur bondarenko.ta@edu.spbstu.ru 0000-0002-2009-5460 Ovasapyan Tigran otd@ibks.spbstu.ru 0009-0009-5163-9975 Piskov Aleksandr brontosd2@gmail.com Peter the Great St. Petersburg Polytechnic University 25 08 2025 Спецвыпуск 48 57

Existing methods of detecting attacks on data integrity on file systems are investigated. A method of detecting such attacks based on the use of several entropy metrics is proposed. The efficiency of the proposed method is evaluated on the example of detection of existing ransomware.

 Data integrity entropy dynamic analysis ransomware encryptor driver filter