Fuzzy logic in risk assessment of multi-stage cyber attacks on critical infrastructure networks

Ескіз

Файли

318023-746396-2-10-20250331.pdf (957.66 KB)

Дата

2024

Автори

Науковий керівник

Назва журналу

Номер ISSN

Назва тому

Видавець

Igor Sikorsky Kyiv Polytechnic Institute

Анотація

In the current environment, critical infrastructure has become the target of increasingly complex multi-stage cyber attacks characterized by sequential phases of infiltration, privilege escalation, and lateral movement within the target network. Traditional risk assessment methods often rely on assumptions of precise data availability and well-defined probabilities, which limit their applicability in real-world scenarios marked by uncertainty and imprecise information. This paper proposes an approach based on the use of fuzzy logic systems to assess the risks of multi-stage cyber attacks against networked critical infrastructure services. The proposed methodology takes into account the ambiguity and fuzziness of input data, expert judgments, and the dynamic progression of attacks. The result is a more flexible and adaptive risk assessment model that supports informed decision-making to enhance cybersecurity, prioritize countermeasures, and optimize the allocation of defensive resources.

Опис

Ключові слова

Cybersecurity, risk assessment, attack, fuzzy logic, infrastructure, network

Бібліографічний опис

Nakonechna, Y. Fuzzy logic in risk assessment of multi-stage cyber attacks on critical infrastructure networks / Yuliia Nakonechna, Bohdan Savchuk, Anna Kovalova // Theoretical and Applied Cybersecurity: scientific journal. – 2024. – Vol. 6, No. 2. – P. 52-65. – Bibliogr.: 15 ref.

ORCID

URI

https://ela.kpi.ua/handle/123456789/73321

DOI

https://doi.org/10.20535/tacs.2664-29132024.2.318023

Зібрання

Theoretical and Applied Cybersecurity: scientific journal, Vol. 6, No. 2