9004 2071-8217 3 2024 1-155

RAR RUS 9-19 0000-0001-6178-6420 National Research University Higher School of Economics Bogdanov Dmitry bogdanovds@rambler.ru TVP Laboratory Logachev Alexander 0000-0002-5606-7509 MIREA – Russian Technological University Mironkin Vladimir mironkin.v@mail.ru The probabilitic-theoretic models of physical random number generators This paper presents the main probability-theoretic models describing a wide class of physical random number generators and allowing us to propose general approaches to their synthesis and analysis 10.48612/jisp/m3bn-24ap-6tn8 004.056.55 physical random number generator stochastic process scheme of instantaneous value scheme of intervals scheme of excursion optimal interpolation problem https://jisp.spbstu.ru/article/2024.18.1/ 2024_3-5-6.pdf

RAR RUS 20-29 0000-0001-6695-2328 St. Petersburg State Marine Technical University Garkushev Alexander sangark@mail.ru 0009-0009-1545-8835 St. Petersburg State Marine Technical University Vyvolokina Albina albina.vyvolokina@mail.ru 0009-0007-2389-0789 St. Petersburg State Marine Technical University Fokina Sofia sofiya.fockina@gmail.com 0000-0001-9665-0128 Peter the Great St. Petersburg Polytechnic University Suprun Alexander afs54@inbox.ru

Russia, 195251, St. Petersburg, Polytechnicheskaya str., 29

Application of indicator functions in models of detection and neutralization of malicious information objects The article proposes a new approach to the application of the well-known method of indicator functions, which used to simulate the detection and neutralization of suspicious information objects in the information environment of an industrial enterprise, as well as to simulate a security system during operation. Formula dependencies are given for calculation of stochastic indicators, allowing some objective estimates of values of time parameters and their impact on safe functioning of information systems 10.48612/jisp/26b3-6761-5umb 004.056.57, 629.5.067 indicator function information security information system neutralization identification of the object https://jisp.spbstu.ru/article/2024.18.2/ 2024_3-5-6.pdf

RAR RUS 30-39 0009-0002-7176-7105 Far Eastern State Transport University Rybkina Olesya itis_dvgups@mail.ru Construction of deterministic and stochastic mathematical models of information system protection Mathematical models of information system defense against information security threats are proposed based on the classical model of the struggle between two adversaries - the Lanchester model. Using the method of constructing systems of differential equations with a given set of invariants - first integrals, a deterministic model with invariant control and a stochastic model with Viner perturbations and a model with software control with probability 1 have been constructed. The behavior of the systems has been evaluated by means of mathematical modeling in MathCad. Behavior of the constructed models depending on initial conditions is considered. The existence of the stochastic model of information system protection against information security threats protected with probability 1 is established 10.48612/jisp/g4gd-n9vm-h933 004.056 mathematical model Lanchester model information security deterministic model of information protection stochastic model of information protection invariant control program control with probability 1 https://jisp.spbstu.ru/article/2024.18.3/ 2024_3-5-6.pdf

RAR RUS 40-57 0009-0000-0786-415X Zaitzeva Valeriya valeriazaic@mail.ru 0000-0001-9659-1244 Peter the Great St. Petersburg Polytechnic University Poltavtseva Maria potavtseva@ibks.spbstu.ru Security assessment of Big Data systems The article deals with the task of the security assessing of big data systems. The authors define the main features of big data systems as an object of security assessment and analyze the known methods of assessment, including methodologies for assessing the security of information systems. Based on the results obtained, a new method of assessment is proposed, taking into account such factors as the state of the access control system in the considered heterogeneous systems and the number of privileged users. A mathematical formalization of the assessment is proposed, the main stages of its implementation are described, and a test case is presented 10.48612/jisp/zuv1-6ufz-v6v6 004.056.5 information security Big Data heterogeneous data processing systems security assessment https://jisp.spbstu.ru/article/2024.18.4/ 2024_3-5-6.pdf

RAR RUS 58-68 0000-0002-6419-0072 St. Petersburg State University of Aerospace Instrumentation Tatarnikova Tatiana Tm-tatarn@yandex.ru 57200960264 0000-0001-6289-3295 Russian State Hydrometeorological University Sikarev Igor sikarev@yandex.ru

Russia, 192007, St. Petersburg, Voronezhskaya str., 79

Russian State Hydrometeorological University Rychikhin Daniil Ways to obtain evidential information from a computer using Open Source The current task of obtaining evidentiary information as a direction for the development of digital forensics is considered. The procedure for collecting evidentiary information from computer storage devices is given, including the basic requirements for collecting evidence, its safety and ensuring integrity. An overview of methods for obtaining evidentiary information from a computer is given, among which an accessible and effective method is highlighted using Open Source software to form a snapshot of RAM. The results of an experiment to study the possibility of obtaining and analyzing a snapshot of a computer's RAM using Open Source tools are presented and approximate information is determined that can be obtained when using them in the interests of computer technical expertise 10.48612/jisp/k8d8-uu31-54za 343.98 digital forensics evidentiary information obtained from a computer the procedure for collecting evidentiary information methods for obtaining evidentiary information an experiment on obtaining evidentiary information from a computer https://jisp.spbstu.ru/article/2024.18.5/ 2024_3-5-6.pdf

RAR RUS 69-79 0000-0002-8627-4947 Peter the Great St. Petersburg Polytechnic University Busygin Alexey a.busygin@ibks.spbstu.ru 0000-0002-9732-0099 Peter the Great St. Petersburg Polytechnic University Kalinin Maxim max@ibks.spbstu.ru

Russia, 195251, St. Petersburg, Polytechnicheskaya str., 29

Application of distributed ledger technology to protect smart city information systems The article discusses the application of the distributed ledger technology to secure information systems of the smart city. The authors identified the limitations of existing solutions in this area and considered the main directions for the development of distributed ledger technology, ensuring successful integration into the smart city ecosystem 10.48612/jisp/tuu4-6exx-8r6x 004.056 smart city internet of things distributed ledger technology information security https://jisp.spbstu.ru/article/2024.18.6/ 2024_3-5-6.pdf

RAR RUS 80-87 13103571000 0000-0002-0232-7248 Peter the Great St. Petersburg Polytechnic University Zegzhda Dmitry zegzhda_dp@spbstu.ru

Russia, 195251, St. Petersburg, Polytechnicheskaya str., 29

0000-0001-9665-0128 Peter the Great St. Petersburg Polytechnic University Suprun Alexander afs54@inbox.ru

Russia, 195251, St. Petersburg, Polytechnicheskaya str., 29

0000-0002-6527-2352 Peoples’ Friendship University of Russia named after Patrice Lumumba Anisimov Evgeny anis.an‑33@yandex.ru 0000-0003-1736-7178 Peter the Great St. Petersburg Polytechnic University Anisimov Vladimir an‑33@yandex.ru Assessment of the possibility of upgrading information security systems in the planned time frame In the interests of sound planning for the modernization of information security systems, approaches to constructing methods for assessing the possibility of developing and introducing within the planned time frame innovations necessary for the timely detection, prevention and elimination of the consequences of information security threats are considered. As an indicator for assessing this possibility, it is proposed to use the probability of modernizing the information security system over a certain specified period of time. To quantify this indicator, approaches based on a generalization of Chebyshev’s inequality and the principle of stochastic dominance are proposed 10.48612/jisp/254r-88eu-dxxe 519.854.2 information security system modernization planning assessing the likelihood of meeting the deadlines for introducing innovations https://jisp.spbstu.ru/article/2024.18.7/ 2024_3-5-6.pdf

RAR RUS 88-93 0000-0001-7199-6384 Special Technology Center LLC Kurakin Alexander akurakin@stc-spb.ru An integral indicator of the effectiveness of the use of a group of unmanned aerial vehicles in solving aerial photography tasks The paper evaluates the effectiveness of a group of unmanned aerial vehicles in performing aerial photography tasks in solving heterogeneous tasks and various payload variants. The modeling of options for equipping the elements of the group when performing various tasks is carried out. The integral indicator is defined as a combination of particular performance indicators, efficiency and resource intensity. The relationship between task options and payload options has been established. Numerical modeling of combinations of group equipment options and task options is carried out 10.48612/jisp/nu3p-36v9-263z 004.021 efficiency resource intensity integral indicator group of unmanned aerial vehicles flight task efficiency comparative assessment aerial photography https://jisp.spbstu.ru/article/2024.18.8/ 2024_3-5-6.pdf

RAR RUS 94-108 0000-0003-1345-1874 Peter the Great St. Petersburg Polytechnic University Pavlenko Evgeny pavlenko_eyu@spbstu.ru Analysis and prediction of states of industrial networks with adaptive topology based on network motifs An approach to investigating the states of complex industrial networks with adaptive topology using network motifs - statistically significant subgraphs of a larger graph - is proposed. The analysis presented addresses the ability of network motifs to characterize system performance and the possibility of their application to short-, medium-, and long-term prediction of system states. Using the Smart Grid network structure as an example, a directed graph is modeled, in which the most common motifs are searched, several attack scenarios on network nodes are simulated and a network state prediction is built. The results of experimental studies confirmed the correctness and validity of the application of this mathematical apparatus for the set tasks 10.48612/jisp/39u8-prha-62z7 004.056 dynamic graph network motive target function network with adaptive topology forecasting https://jisp.spbstu.ru/article/2024.18.9/ 2024_3-5-6.pdf

RAR RUS 109-126 0000-0002-0924-6221 Saint Petersburg State University of Aerospace Instrumentation Bezzateev Sergey sergey.bezzateev@gmail.com

Russia, 190000, St. Petersburg, Bolshaya Morskaya str., 67, liter A

0000-0001-7126-6787 Peter the Great St. Petersburg Polytechnic University Zhemelev Georgiy wws.dev@gmail.com 0000-0003-1284-0915 Fomicheva Svetlana levikha@mail.ru Research on the performance of AutoML platforms in confidential computing The paper examines the performance indicators of automatic machine learning platforms when they function in standard and confidential modes using the example of a nonlinear multidimensional regression. A general protocol of distributed machine learning trusted in the sense of security is proposed. It is shown that within the framework of confidential virtualization, when optimizing the architecture of machine learning pipelines and hyperparameters, the best quality indicators of generated pipelines for multidimensional regressors and speed characteristics are demonstrated by solutions based on Auto Sklearn compared with Azure AutoML, which is explained by different learning strategies. The results of the experiments are presented 10.48612/jisp/abff-du38-v739 004.056 automatic machine learning confidential computing confidential virtual machines optimization of the architecture of the machine-learning model hyperparameters https://jisp.spbstu.ru/article/2024.18.10/ 2024_3-5-6.pdf

RAR RUS 127-141 0009-0000-3249-4103 Peter the Great St. Petersburg Polytechnic University Bogina Vasilisa bogina_vm@spbstu.ru LLC “NeoBIT” Velichko Kirill 0009-0008-9034-1365 Peter the Great St. Petersburg Polytechnic University Makeeva Anna makeeva.aa@edu.spbstu.ru 0000-0001-9862-1507 Peter the Great St. Petersburg Polytechnic University Dakhnovich Andrey add@ibks.spbstu.ru 13103571000 0000-0002-0232-7248 Peter the Great St. Petersburg Polytechnic University Zegzhda Dmitry zegzhda_dp@spbstu.ru

Russia, 195251, St. Petersburg, Polytechnicheskaya str., 29

Approach to creating personalised LLM agents based on MBTI personality traits This article describes an approach to creating target characters based on LLM agents. Agents use personal memory to access biographical and personal data assigned to them. In order to increase the integrity of the characters being created, a short life biography is generated based on the initial target data, corresponding to the original set and enriching the reactions of the agents. The personal traits inherited by agents are formulated on the basis of descriptive information of MBTI types, and the paper presents a study of the correspondence of characters to their target personality type 10.48612/jisp/4pum-m1b1-96kh 004.056 LLM social simulation personalization social modeling cyberpsychology https://jisp.spbstu.ru/article/2024.18.11/ 2024_3-5-6.pdf

RAR RUS 142-154 0000-0003-0623-9891 Peter the Great St. Petersburg Polytechnic University Gololobov Nikita gololobov_nv@spbstu.ru Analysis and forecasting the states of industrial networks with adaptive topology based on network motives The most vulnerable nodes of any information system are those that depend on the human factor. Such nodes, for example, include user electronic computers (PCs), which are susceptible to attacks using malicious software (malware). Modern malware detection tools can effectively identify known instances, but their effectiveness for zero-day threats is at a suboptimal level. One of the potential ways to identify malware is a method based on behavioral analysis and analysis of their activity on a personal computer, but its creation requires systematization of known information about the activity of various types of malwares. This scientific work systematizes malicious software to determine the types of activity they exhibit to use the resulting system to create a method for identifying malware based on behavioral analysis 10.48612/jisp/npp7-45tr-em48 004.056 information security malicious software systematization malware activity https://jisp.spbstu.ru/article/2024.18.12/ 2024_3-5-6.pdf