Annotation:

The complexity of neutralization and the lack of a universal mitigation approach of speculative execution attacks allows potential malware to have an unauthorized access to data being processed by CPU. To provide the confidentiality of such data it`s processing should be transferred from CPU to a microprocessor operating in a trusted execution environment. Paper describes the approach of using Intel DAL technology, which allows to implement application in Intel ME subsystem, thus completely mitigate side channel speculative execution attacks.

Keywords:

side-channel attacks, speculative execution, Meltdown, Spectre, Intel TEE, Intel ME, Intel DAL, cryptoservices

Pages 9-19

Annotation:

The problem of information security in modern conditions of application and functioning of information systems, complicated by the continuous growth of the volume and value of processed information, is considered in the article. A method for ensuring data integrity based on numerical-theoretic Gauss transformations is presented.

Keywords:

information system, information protection, control and restoration of data integrity, complex numbers

Pages 20-29

Annotation:

The article proposes an algorithm for embedding a digital watermark into the executable code of the program. Dynamic memory of the program is used as a stegocontainer. The digital watermark is formed in the memory of the executable program under certain conditions. The embedding parameters are determined by the executable code and the run time of the program. The digital watermark is checked by a separate application using key information.

Keywords:

digital watermark, steganography, dynamic memory, authentication

Pages 30-34

Annotation:

Nowadays, the development of smart city concepts and cyber-physical systems is impossible without considering information security issues. In the conditions of limited computational resources, it is necessary to find a trade-off between the cryptographic strength of the encryption algorithm and its requirements. As part of the study, lightweight modifications of the AES symmetric block cipher are compared to identify the most balanced solution for ensuring the confidentiality of low-power devices communication. The comparison is made both in terms of theoretical indicators that determine cryptographic strength, and in terms of encryption and decryption time, depending on the size of the input data. The obtained results demonstrate that the Modified AES is the most balanced solution in relation to the specified requirements. It outperforms not only other modifications, but also the standard algorithm, improving the diffusion and confusion values by 5% and 30% respectively, and also reducing the average encryption/decryption time by one and a half times.

Keywords:

AES, lightweight modifications, resource-constrained environment, cryptographic protection, smart city

Pages 35-50

Annotation:

This paper presents an adaptive control system for detecting computer attacks in critical information infrastructure based on a neuro-fuzzy analysis of variant cyber-threat spaces and parameters of the protected object using the automatically reconfigurable ANFIS neuro-fuzzy inference system and Takagi-Sugeno-Kanga fuzzy basis. The results of experimental studies have shown that the developed system provides high accuracy and speed of detecting computer attacks in changing decision-making conditions.

Keywords:

Adaptive Control, Critical Information Infrastructure, Neuro-Fuzzy System, Computer Attack Detection

Pages 51-64

Annotation:

This paper discusses new approaches to building models of immunization of modern computer networks. The greatest attention is paid to the consideration of the P2P static model, segment model, as well as models of dynamic representation of cyclic and growing graphs. The main advantages and areas of application of the considered models, the nuances of their use and the novelty of the considered methods are highlighted.

Keywords:

Computer Networks, Immunization, Scale-Free Networks, P2P, Segment Model, Cyberphysical Systems

Pages 65-72

Annotation:

This paper presents a mathematical model for the spread of computer attacks on critical information infrastructure based on the extension of the basic Lotka-Volterra model. Within the framework of the proposed model, the problem to be solved is formulated, the point of stability of the system is determined, and a criterion is proposed for the adequacy of the applied methods for detecting attacks to changing parameters of the critical information infrastructure and existing cyber threats.

Keywords:

Critical Information Infrastructure, Adequacy Criterion, Mathematical Model, Lotka-Volterra Model, Computer Attack Spread Rate, Stability Point, CII

Pages 73-81

Annotation:

A method for identifying signals based on the results of electrocardiogram (ECG) processing performed based on wavelet technologies is considered. The use of digital technologies for processing and diagnostics of ECG signals using wavelet analysis can significantly improve the efficiency and quality of evaluation of pacemaker settings during implantation, as well as in the process of correction of functional modes, diagnostics, in order to eliminate postoperative complications, etc. Digital processing of complex cardiac signals at a qualitatively new level is an indispensable condition for radically improving the processing of the current values of the diagnosed parameters, the widespread use of digital tools for making informed and effective decisions in the field of medical care, as well as for information support of identification processes. A method of approximation is considered and an algorithm for analyzing ECG diagrams obtained during implantation and in the process of choosing the modes of functioning of pacemakers based on the wavelet, transform is given. The presence of high–frequency components and short-term pulses in the spectrum of ECG signals, the evaluation of which is practically impossible by the traditionally used methods of spectral analysis, determined the choice of a method for digitalizing the decomposition of signals into basic frequency rhythms for parametric evaluation of QRS complexes. The approximation method is based on the use of wavelet analysis, which allows deep investigation of such modes. Examples of the use of wavelet analysis for the approximation of ECG diagrams using cubic splines whose interpolation nodes are located on an uneven grid are given. Digital technologies are implemented using the tools of the MATLAB computing environment.

Keywords:

electrocardiogram, parametric estimation, identification, wavelet technologies, Dobshy wavelets, cubic spline, signal reconstruction levels, wavelet decomposition coefficients

Pages 82-97

Annotation:

The possibility of using of Identity and access Management system (IdM/IAM) is considered in the paper to automate users account and access rights management in Industrial Control System (ICS). The main feature of IdM/IAM system is that they require an individual approach and ongoing support when implemented in ICS. The results of the role-based access model development are presented for its implementation in IdM/IAM. An analysis of ICS safety has been carried out and the article provides a list of the information assets and information subjects representing the function, or roles, of industrial network users. A hierarchy of users roles and an access matrix (with possible rights) have been developed.

Keywords:

Industrial control system, information assets, information subjects, access control, user account and rights management, hierarchy of users roles

Pages 98-105

Annotation:

The article describes a method associated with the construction of mathematical models of quality indicators for further evaluation of the process of functioning of an automated system for special purposes, taking into account destructive influences. Methods for calculating the performance indicators of complex systems are presented. The features of the construction of analytical and simulation models are disclosed. Algorithms for modeling of the designed automated systems of special purpose are constructed.

Keywords:

Mathematical Model, Quality Indicator, Method, Algorithm, Destructive Impact, Automated System of Special Purpose

Pages 106-124