Theoretical and Applied Cybersecurity: scientific journal, Vol. 7, No. 1
Постійне посилання зібрання
Переглянути
Нові надходження
Документ Відкритий доступ Stealthy cyberattacks on control systems using an adaptive soft-constrained optimization method(Igor Sikorsky Kyiv Polytechnic Institute, 2025) Novikov, Oleksii; Ilin, Mykola; Stopochkina, Iryna; Duduladenko, VolodymyrThis paper presents a novel approach for designing stealthy cyberattacks on automated control systems of critical infrastructure. The core idea lies in employing an adaptive soft-constrained optimization method, which simultaneously maximizes the impact functional of the attacker while keeping the attacked trajectory within the invisibility range of a standard fault detection mechanism. The proposed approach is based on a variational problem formulation, the construction of adjoint equations, and a gradient-based procedure with dynamic penalty parameter updates. Numerical simulation is conducted on a second-order test dynamic system. The results demonstrate the algorithm's effectiveness and convergence, as well as the feasibility of generating a controlled attack that successfully bypasses WLS-based detection methods. The method can be used to test the resilience of industrial systems to cyber threats through security scenario modelingДокумент Відкритий доступ A Review of modern methods for steganalysis and localization of embedded data in digital images(Igor Sikorsky Kyiv Polytechnic Institute, 2025) Yatsura, Pavlo; Progonov, DmytroThe article provides a systematic review of modern steganalysis methods for digital images based on artificial neural networks. The primary stages of development of advanced cover-image models, from widely used artificial neural networks to contemporary hybrid models, are considered. Advantages and limitations of various types of neural networks for constructing stegodetectors for digital images are investigated. Based on comparative analysis of steganalysis accuracy, it is established that the use of advanced artificial neural networks achieves a detection accuracy of steganograms exceeding 90%, even at low embedding rates (less than 20%). Additionally, applying complex methods of processing both examined images, and feature vectors in multidimensional spaces with studied neural networks allows reducing the computational complexity of configuring stegodetectors without significant losses in stego images detection accuracy.Документ Відкритий доступ Construction of secure direct communication protocols in the topological quantum computing model(Igor Sikorsky Kyiv Polytechnic Institute, 2025) Fesenko, Andrii; Zatsarenko, AnastasiaThis paper presents an implementation of the six-state quantum key distribution protocol and theLM05 quantum secure direct communication protocol based on anyonic systems. We consider therepresentation of logical qubits and operations of the protocol through the manipulation of abeliananyons of the Kitaev model and non-abelian Fibonacci anyons. A comparative analysis of the anyonicimplementations with the classical photonic approach is carried out in terms of key characteristics suchas accuracy, stability, and complexity. The advantages and experimental challenges of anyonic platformsfor quantum information exchange are discussed.Документ Відкритий доступ Mitigating the impact of cyber attacks suach a load altering attacks(Igor Sikorsky Kyiv Polytechnic Institute, 2025) Galchynsky, Leonid; Kosaryk, Daria; Lychyk, VladyslavModern power systems are constantly exposed to cyberattacks that threaten to disable them and cause serious damage and even destruction. The cyber threat factor is nowadays on a par with such traditional threats as natural disasters, fires, and other destructive phenomena. Therefore, cyber threats raise the question of considering protection against them as a factor of power system sustainability necessary for survival, which should now be considered in the context of cyber resilience. This paper considers the issue of finding a solution to mitigate the harmful effects on the power system of one of the types of cyberattacks, namely, Load Altering Attacks (LAA). The danger of such an attack is that, taking advantage of the weak protection of a large number of IoT clients, an attacker can conduct a coordinated attack on a large number of compromised clients and suddenly change the load in the power grid. As a result, not only users will suffer, but also the basic equipment of the power grid itself, in particular, power generators. This paper proposes a solution that, by optimizing the regulator mode of the power generator, can significantly mitigate the harmful effects of LAA attacks.Документ Відкритий доступ Estimation of the Probability of Success of a Suppression Attack(Igor Sikorsky Kyiv Polytechnic Institute, 2025) Vykhlo, Anton; Kovalchuk, LyudmilaThis work presents the results of research on suppression attacks, which are a specific case of fron-trunning attacks. We provide a formal step-by-step algorithm for executing the attack, along with amathematical model and explicit analytical formulas for calculating an upper bound on the successprobability of such an attack with numerical examples.This study continues the research presented in [1], which investigated insertion and displacementattacks.Документ Відкритий доступ A method for assessing risk with accounting for the structure of threat and vulnerability relationships in a complex system(Igor Sikorsky Kyiv Polytechnic Institute, 2025) Polutsyhanova, Viktoriia Igorivna; Smyrnov, SerhiiThe article presents a novel approach to risk assessment in complex information systems, which takes into account the structural relationships between threats, vulnerabilities, and system components. The primary focus is on developing a formalized model that enables the construction of a simplicial complex of dependencies among potential threats and vulnerabilities, as well as identifying their impact pathways on the integrity, availability, and confidentiality of the system. The use of a simplicial complex model is proposed to represent these interconnections and to determine critical nodes that are most vulnerable to compound attacks. The methodology allows for quantitative risk evaluation by calculating threat levels, the probabilities of vulnerability exploitation, and their impact on the system. A key feature of the approach is the consideration of not only individual vulnerabilities but also their interactions, which significantly enhances the accuracy of risk assessment. The results of modeling and applied analysis confirm the effectiveness of the proposed method in identifying the most critical security elements and in justifying protection priorities under limited resource conditions. The proposed method can be integrated into information security management systems to improve the protection level of complex technical infrastructures.Документ Відкритий доступ LoRaWAN network security and efficiency: practical tips and recommendations(Igor Sikorsky Kyiv Polytechnic Institute, 2025) Yanko, Alina; Krasnobayev, Viktor; Goncharenko, StanislavThe relevance of this study lies in the fact that, in the modern world, the Internet of Things (IoT) approach is becoming increasingly widespread, and LoRaWAN (Long Range Wide Area Network) technology is one of the key solutions for building LPWAN (Low Power Wide Area Network) networks, which enable long-range communication with low power consumption. The growing popularity of LoRaWAN necessitates ensuring secure data transmission, resilience to attacks, and optimization of network parameters to achieve maximum efficiency.To achieve the research objective, a comprehensive methodological approach was employed, incorporating the analysis of existing solutions and recommendations for the security and optimization of LoRaWAN networks and equipment. A key element of the study is the examination of up-to-date documentation from the LoRa Alliance, which provides a detailed description of best practices and approaches for LoRaWAN deployment. This documentation is based on the practical experience gained by the LoRa Alliance from network users and operators, allowing for the consideration of various aspects of technology implementation to ensure its efficiency and security. The study also includes an analysis of scientific publications and practical user experiences to gain a deeper understanding of LoRaWAN challenges and opportunities.The primary objective of this study was to develop recommendations and practical solutions for enhancing the security of data transmission, improving resilience against attacks on LoRaWAN networks, optimizing data transfer rates and device configurations (including end-user devices and LoRaWAN gateways), and ensuring compliance with LoRa Alliance guidelines based on the analysis of existing solutions. The key task is to implement LoRaWAN networks in accordance with the official LoRa Alliance recommendations, meeting all modern security requirements and challenges.The study revealed that the effective use of LoRaWAN requires a comprehensive security approach, which includes the implementation of modern encryption, authentication, and authorization methods, as well as continuous network traffic monitoring and analysis to detect and prevent potential threats. Data transmission rate optimization is achieved through proper device parameter configuration, selection of the optimal data rate, and consideration of the specific application’s requirements.Adhering to the recommendations of the LoRa Alliance in the design and deployment of LoRaWAN is critically important for ensuring interoperability between devices from different manufacturers, achieving high communication quality, and maintaining network security.Документ Відкритий доступ Modeling competing artificial intelligence systems for energy and users(Igor Sikorsky Kyiv Polytechnic Institute, 2025) Lande, Dmitry V.; Danyk, YuriyThe article addresses the problem of modeling competition between two artificial intelligence systems (AI-1 and AI-2) that interact within a shared environment under limited resources such as users and energy. The study focuses on analyzing the strategic behavior and adaptability of these systems, as well as their impact on competitive outcomes through mathematical models and methods, including differential equations, the Lancaster model, and Boyd cycles (OODA-loop). Special attention is given to formalizing the interaction of systems using basic primitives ("Condition," "Loop," "Function") and their compositions, enabling the description of complex behavioral strategies of AI systems. The paper presents a detailed mathematical formalization of the dynamics of user and energy distribution between systems, taking into account factors such as user satisfaction, response accuracy, query processing speed, and energy efficiency. The research also includes numerical calculations and simulations demonstrating how initial conditions and system parameters influence competitiveness. The proposed models can be applied for predicting AI system behavior in real-world scenarios such as information campaigns, cyber conflicts, and resource optimization in digital environments.Документ Відкритий доступ Intrusion detecting systems and blockchain technology(Igor Sikorsky Kyiv Polytechnic Institute, 2025) Sikolenko, EduardIn this article, the information about intrusion detection systems and intrusion prevention systems was analyzed. General information, differences, main advantages and disadvantages of intrusion detection and prevention systems were described. The blockchain technology was analyzed as well. The main information on the blockchain technology was shown: the history of creation, sphere of application, working principle, potential threats and specifics of consensus mechanism. Based on the information given, it is planned to apply the blockchain technology in intrusion detection systems to increase the level of securityДокумент Відкритий доступ Lightweight Cryptography in UAV systems(Igor Sikorsky Kyiv Polytechnic Institute, 2025) Skorobahatko, Maksym; Voitsekhovkyi, AndriiThe development and adoption of lightweight cryptographic algorithms have become increasingly important due to the growing volume of data transmitted by unmanned aerial vehicles (UAVs) and other unmanned systems. These systems demand security solutions that are both efficient and resource-conscious. Lightweight cryptography offers a promising balance of performance, low energy consumption, and implementation simplicity. In this paper, we present the first comparative analysis specifically focused on lightweight cryptographic algorithms for UAVs, assessing their suitability for real-time control and data protection in resource-constrained environments. A key contribution of our work is a practical experiment measuring processor load, memory usage, and energy consumption of selected algorithms on drone hardware. The results provide a clear evaluation of each algorithm’s effectiveness and efficiency under realistic operating conditions,Документ Відкритий доступ Image steganography – classic and promising methods: a study(Igor Sikorsky Kyiv Polytechnic Institute, 2025) Zubok, Vitaly; Kazmidi, IvanSteganography, the art and science of hiding information within digital media, remains a dynamic and increasingly vital discipline in the age of pervasive digital communication and cybersecurity threats. Images, in particular, serve as highly adaptable carriers for covert data due to their ubiquity and rich payload capacity. This paper presents a comprehensive classification of image-based steganographic techniques, surveying both time-tested methods (e.g., LSB modification, wavelet transform) and cutting-edge approaches. We highlight how artificial intelligence—through deep learning models, generative adversarial networks, and AI-driven compression/enhancement—can greatly improve embedding robustness and evasion of detection. Furthermore, we explore the nascent frontier of quantum steganography, leveraging superposition, entanglement, and quantum key distribution to achieve unprecedented levels of security. Finally, we outline promising research directions that fuse classical methods with next-generation AI and quantum technologies, setting the agenda for the next wave of advances in secure information hiding.Документ Відкритий доступ Refined Method of Impossible Differentials Search with Application to Kalyna-Like Ciphers(Igor Sikorsky Kyiv Polytechnic Institute, 2025) Turchyn, Andrii; Yakovliev, SerhiiThis work addresses the problem of evaluating the security of block ciphers against impossible dif-ferential cryptanalysis, with a particular focus on Kalyna-like ciphers. Based on formalized meth-ods —specifically the Wu-Wang method — this work introduces refined rules tailored to AES- andKalyna-like ciphers. These refinements simplify compatibility checks by replacing large systems oflinear equations with computationally efficient conditions. Experimental results have identified severalclasses of impossible differentials for three-round versions of certain Kalyna cipher variants, therebydemonstrating the security of full-round ciphers against this method of cryptanalysis