Development of a multiloop security system of information interactions in socio-cyberphysical systems

Abstract

The object of the study is amulti-loop security system of infor-mation interactions in socio-cy-berphysical systems. The dynam-ic nature of physical environmentsinherently challenges the ability ofsocio-cyber-physical systems to per-form adequate control actions forphysical assets in many contexts.However, adaptation and evolutionactions must be evaluated beforeimplementation in the control systemto ensure fault tolerance while mini-mizing risks. Therefore, the design ofsocio-cyber-physical systems mustensure not only reliable autonomy,but also operational fault toleranceand safety. The proposed approachis based on the integration of target-ed (mixed) threats based on the syn-thesis of technical cyber threats withsocial engineering methods. Thisapproach allows forming a dynamicsecurity model based on the analysisof the interaction of various agentsin socio-cyberphysical systems,which makes it possible to increasethe level of counteraction to targeted(mixed) cyber threats.The results of modeling arebased on the proposed classifica-tion of threats using social engineer-ing methods, which allows cyber-attackers to ensure the probabilityof implementing targeted threats upto 95–98 %. The proposed classi-fication of threats based on socialengineering methods will allow form-ing an additional parameter for theobjectivity of target threats, takinginto account their integration andsynergy. At the same time, the pre-sented model will make it possible totimely provide knowledge about thepossibility of implementing a target-ed attack and timely take preventivecountermeasures. This approach willimprove the set of protection mea-sures, as well as promptly create anincrease in the level of resistance ofthe company's personnel (organiza-tion, enterprise, etc.) to threats ofsocial engineering.