9004 2071-8217 1 2022 1-133

RAR RUS 11-17 0000-0003-1736-7178 Peter the Great St. Petersburg Polytechnic University Anisimov Vladimir an‑33@yandex.ru 0000-0002-6527-2352 Peoples’ Friendship University of Russia named after Patrice Lumumba Anisimov Evgeny anis.an‑33@yandex.ru Saurenko Tatyana LOS Vladimir ASSESSMENT OF THE EFFICIENCY OF PROTECTION SYSTEMS OF COMPUTER NETWORKS FROM VIRAL ATTACKS Computer networks are an important part of modern civilization. They are used literally in all spheres of human activity. Significant losses due to failures of these networks cause high require ments for the stability of their operation. Ensuring the necessary resilience, in particular, relies on the protection of computer networks from virus attacks. In its interests, appropriate protection sys tems are being created. As an indicator of the effectiveness of such systems, it is proposed to use the number of network computers that a virus manages to infect before it is detected and removed. The empirical basis for assessing the effectiveness of systems for protecting computer networks from virus attacks is the data obtained as a result of field tests and (or) previous operating experience. These data are random in nature, and their volume, as a rule, is significantly limited. An approach to assessing the effectiveness of systems for protecting computer networks from virus attacks, taking into account the indicated features of empirical data, is considered in this article. The approach is based on the presentation of empirical data in the form of a small sample from the general pop ulation of values of a random variable of the number of computers on the network that the virus managed to infect before it was detected and removed. The distribution function of this quantity is taken as a test model. The construction of the distribution function is based on the principle of maximum uncertainty. Shannon’s entropy is taken as a measure of uncertainty. 10.48612/jisp/z4at-58k4-tbp6 004.056.57 computer network virus attack network protection system protection efficiency https://jisp.spbstu.ru/article/2022.6.1/ 2022_1_rus.pdf

RAR RUS 18-31 Poltavtsev DATABASE PROTECTION AGAINST INSIGHT ATTACKS REACTIVE AND PROACTIVE METHODS If the data is not available to the outside world, it is useless. The data must be available so that the necessary processing and planning can be carried out. Regulating and monitoring user access to a database is one of the important tasks of the database security community. Database pro tection against inference attacks is a part of information security that tries to prevent the disclosure of sensitive information through available information (tables, individual records). It is necessary to have methods capable of maintaining a balance between the use of information and the protection of data. The purpose of this work is to compare different inference control methods in order to evaluate the methods results to minimize both the loss of information and the risk of information disclosure. 10.48612/jisp/pmmp-3uhf-npad 004.056 Information Security Security Monitoring Security Control Data Structuring Data Engineering https://jisp.spbstu.ru/article/2022.6.2/ 2022_1_rus.pdf

RAR RUS 32-40 Kriulin Artur kriulin@mirea.ru 0000-0002-5511-4000 MIREA – Russian Technological University Eremeev Mihail POTERPEEV German 10.48612/jisp/3d3r-etdx-nfu9 004.056 computer security Mitre APT malware executable file statistical analysis. https://jisp.spbstu.ru/article/2022.6.3/ 2022_1_rus.pdf

RAR RUS 41-50 Fatin Aleksander sasha-fatin@mail.ru 0000-0003-1345-1874 Peter the Great St. Petersburg Polytechnic University Pavlenko Evgeny pavlenko_eyu@spbstu.ru IMMUNIZATION OF COMPLEX NETWORKS: TOPOLOGY AND METHODS This paper discusses the main methods of immunization of modern computer networks. The greatest attention is paid to topologies and types of graph structures under consideration. An assessment and comparison of existing immunization strategies and methods for solving the prob lems of optimal selection of nodes for immunization in the context of the considered topologies is also carried out. The main advantages, disadvantages and areas of application of the selected topologies and methods for solving immunization problems are highlighted. 10.48612/jisp/mp53-t3hn-1pt3 004.056 computer networks immunization cyber-physical systems network security scale-free networks. https://jisp.spbstu.ru/article/2022.6.4/ 2022_1_rus.pdf

RAR RUS 51-57 0000-0002-6419-0072 St. Petersburg State University of Aerospace Instrumentation Tatarnikova Tatiana Tm-tatarn@yandex.ru 0000-0002-2447-2737 SVERLIKOV Alexander 57200960264 0000-0001-6289-3295 Russian State Hydrometeorological University Sikarev Igor sikarev@yandex.ru

Russia, 192007, St. Petersburg, Voronezhskaya str., 79

METHODOLOGY FOR DETECTING ANOMALIES IN THE TRAFFIC OF THE INTERNET OF THINGS It is shown that data protection technologies used in wired communication networks are not available for low-power devices of the Internet of things. Therefore, the search for an attack on IoT devices can be implemented by means of analyzing the traffic that carries the attack and, as a result, is classified as anomalous. A technique for searching for an anomaly in the network traffic of the Internet of things is proposed. A sequence of steps is considered to isolate a random compo nent from the traffic generated by the IoT sensor devices, remaining after the exclusion of the main characteristics and which may contain an anomaly. The software implementation of the proposed technique can become part of the intrusion detection system for the Internet of things. 10.48612/jisp/vxp5-pvhu-m4a2 № 004.056 Internet of things anomalous traffic data security traffic analysis technique intrusion detection system https://jisp.spbstu.ru/article/2022.6.5/ 2022_1_rus.pdf

RAR RUS 58-67 0000-0001-5895-5385 STARIKOV Timofey tvs_7@mail.ru 0000-0002-0546-7801 SOPIN Kirill sopin.kirill2010@yandex.ru 0000-0002-0644-4353 Krasnodar Higher Military School named after General of the Army S. M. Shtemenko Dichenko Sergei dichenko.sa@yandex.ru 0000-0001-9665-2174 Krasnodar Higher Military School named after General of the Army S. M. Shtemenko Samoilenko Dmitry 19sam@mail.ru CRYPTOGRAPHIC CONTROL OF DATA INTEGRITY ACCORDING TO THE RULES OF CONSTRUCTION OF THE REED-SOLOMON CODE The actual problem of optimization of information integrity control in data storage sys tems functioning in conditions of continuous growth of its volumes and destructive influences of an attacker is considered. A method of cryptographic integrity control of multidimensional data arrays based on the rules for constructing Reed-Solomon codes is presented. 10.48612/jisp/b94e-kfnm-8atd 519.718 information protection data integrity control cryptographic methods Reed-Solomon code https://jisp.spbstu.ru/article/2022.6.6/ 2022_1_rus.pdf

RAR RUS 68-76 0000-0002-7348-9287 Dostoevsky Omsk State University Vilkhovsky Danil vilkhovskiy@gmail.com METHOD OF DETECTING LSB INSERTS IN LOW STEGO-PAYLOAD COLOR PHOTOGRAPHIC IMAGES The paper presents a compact method of detecting LSB inserts in color photographic im ages that proves high efficiency when dealing with low stego-payload images. The method is based on an analysis of signatures of pairwise similarity the zero and first layers, an algorithm for largest empty rectangles, white (black) pixel dominance pattern and image moments analysis. 10.48612/jisp/f7z9-ttke-gv81 004.932.2 Steganalysis steganographic analysis stegocontainer analysis LSB-insert detection. https://jisp.spbstu.ru/article/2022.6.7/ 2022_1_rus.pdf

RAR RUS 77-84 SOKOLOV Alexander sokolov2.as@edu.spbstu.ru CHERNOV Andrey chernov@ibks.spbstu.ru Peter the Great St. Petersburg Polytechnic University Konoplev Artem konoplev_as@spbstu.ru SPECULATIVE EXECUTION ATTACK-RESISTANT CRYPTOSERVICES  The appearance of Meltdown/Spectre attacks exploiting the vulnerabilities in Intel pro cessors via misuse of speculative executions has destroyed confidence in the security of user’s con f idential data which includes cryptoservices secret parameters. The developed Meltdown/Spectre countermeasures demonstrated ineffectiveness in neutralizing the newly designed speculative execution attacks. Paper highlights a fundamental solution of specified issue via Intel ME technolo gy usage. The dedicated Intel ME processor is immune to Meltdown/Spectre attacks, which makes it effective to be used as a cryptoprocessor. Implementation of the proposed approach can be achieved through the usage of Intel Dynamic Application Loader (Intel DAL) technology. 10.48612/jisp/bt14-g255-73ma 004.56 side-channel attacks speculative execution Meltdown Spectre Intel ME Intel DAL cryptoservice https://jisp.spbstu.ru/article/2022.6.8/ 2022_1_rus.pdf

RAR RUS 85-95 0000-0002-0546-7801 SOPIN Kirill sopin.kirill2010@yandex.ru 0000-0002-0644-4353 Krasnodar Higher Military School named after General of the Army S. M. Shtemenko Dichenko Sergei dichenko.sa@yandex.ru 0000-0001-9665-2174 Krasnodar Higher Military School named after General of the Army S. M. Shtemenko Samoilenko Dmitry 19sam@mail.ru CRYPTOGRAPHIC DATA INTEGRITY CONTROL BASED ON GEOMETRIC FRACTALS  New complex tasks related to information security when scaling data storage systems are considered. A method of cryptographic integrity control of large data arrays based on geometric fractals is presented. 10.48612/jisp/ktu1-1632-n54t 519.718 data storage system information protection data integrity control hash function Sierpinski triangle. https://jisp.spbstu.ru/article/2022.6.9/ 2022_1_rus.pdf

RAR RUS 96-109 0000-0002-6370-123X DANILOV Vladislav danilov.wrk@gmail.com 0000-0002-2009-5460 Peter the Great St. Petersburg Polytechnic University Ovasapyan Tigran otd@ibks.spbstu.ru 0000-0001-8206-2915 Peter the Great St. Petersburg Polytechnic University Ivanov Denis ivanov@ibks.spbstu.ru Peter the Great St. Petersburg Polytechnic University Konoplev Artem konoplev_as@spbstu.ru SYNTHETIC DATA GENERATION FOR HONEYPOT SYSTEMS USING DEEP LEARNING METHODS This article presents research aimed at analyzing methods for generating synthetic data to populate honeypot systems. To select the generated data types, the relevant target objects in the context of honeypot-systems are identified. Existing generation methods are investigated. Methods for evaluating the quality of generated data in the context of honeypot systems are also analyzed. As a result, a layout of an automated system for generating synthetic data for honeypot-systems is developed and its performance is evaluated. 10.48612/jisp/5xdh-23hk-dmhm 004.56 honeypot system deep learning methods synthetic data generation machine learning inference attacks. https://jisp.spbstu.ru/article/2022.6.10/ 2022_1_rus.pdf

RAR RUS 110-120 0000-0003-2233-811X Krasnodar Higher Military School named after S. M. Shtemenko Sukhov Alexander 19am87@mail.ru 0000-0003-1404-6125 Krasnodar Higher Military School named after S. M. Shtemenko Krupenin Alexander 19am87@mail.ru 0000-0002-6071-8087 Mozhaisky Military Aerospace Academy Yakunin Vladimir Yavi1957@mil.ru METODS OF CONSTRUCTING MATHEMATICAL MODELS OF QUALITY INDICATORS OF THE RESULTS OF THE PROCESS OF FUNCTIONING OF THE INFORMATION SECURITY SYSTEM A new approach is considered related to the construction of mathematical models of quality indicators for further evaluation of the process of functioning of the information security system, taking into account the requirements for the results of the operation. The vector of quality indicators of the results of the process of functioning of the system. Under consideration is sub stantiated, models of the virtual indicator and the required quality of the results of the process of functioning of the information security system are presented. 10.48612/jisp/xvx1-7ppr-2prx 519.718 mathematical model quality indicator destructive impact scenario unified information space information security system. https://jisp.spbstu.ru/article/2022.6.11/ 2022_1_rus.pdf

RAR RUS 121-131 0000-0001-6695-2328 St. Petersburg State Marine Technical University Garkushev Alexander sangark@mail.ru 0000-0001-9665-0128 Peter the Great St. Petersburg Polytechnic University Suprun Alexander afs54@inbox.ru

Russia, 195251, St. Petersburg, Polytechnicheskaya str., 29

SYSUEV Sergey sysuev1971@mail.ru PROCEDURE FOR INTEGRATION OF INFORMATION PROTECTION MODULES INTO DOMESTIC AUTOMATED DESIGN SYSTEMS IN SHIPBUILDING The article is devoted to the development of a model and algorithm for solving the problem of ensuring information security in promising domestic computer-aided design systems based on a modified method of branches and boundaries using the duality of solutions to linear programming problems. As a result, an algorithm was obtained that allows the developer to ensure the informa tion security of shipbuilding projects at a sufficient level. 10.48612/jisp/5tuk-48fz-zmx5 65.011.56 information security ship design mathematical model. https://jisp.spbstu.ru/article/2022.6.12/ 2022_1_rus.pdf