International Journal of Open Information Technologies

The paper is devoted to the problems of applying models and methods of strategic game theory to describe the processes of functioning of information systems. A bimatrix game model of information system interaction with an aggressive external environment is proposed. In this game the possible strategies of information system protection are formalized to a set of actions: priority of hardware, priority of third-party software, priority of own software, reliance on external expertise, reliance on a rigid security regime. Targeted sustained attack, random search, insider attack, hacking of adjacent system are considered as possible strategies of the attacking party. Under the assumption that it is possible to build a system of utility of the game on the basis of expert assessments, was demonstrated the possibilities of its analysis using the concept of Nash equilibrium, as well as its special case – «the trembling hand equilibrium». Separately, the paper considers possible ways of transformation of the basic static bimatrix model into a repeating game, as well as into a dynamic game with incomplete information. The latter direction is of particular interest, as it is more adequate to the realities of information protection and maintenance of sustainable functioning of information systems. In particular, the possibility of applying the concept of perfect Bayes-Nash equilibrium to develop a systematic protection policy has been demonstrated. A promising direction of implementation of the proposed models is their complex use together with systems (algorithms) of scenario forecasting.

Burkova E.V., Vavilina T.S. Formalizovannaya model' metoda vybora strategii protivodejst-viya narushitelyam informacionnoj bezopasnosti na osnove teorii igr [Formalized model of the method for selecting a strategy for countering information security intruders based on game theory] // Fundamental'nye i prikladnye issledovaniya v sovremennom mire [Fundamental and Applied Research in the Modern World]. 2019. No. 26–2. P. 10-15.

Zima O.I. Cifrovoj yuan: novye vozmozhnosti i posledstviya [Digital Yuan: New Opportunities and Impact] // «Menedzhment XXI veka: ekonomika, obshestvo i obrazovanie v usloviyah novoj normalnosti»: sbornik nauchnyh statej po materialam XX mezhdunarodnoj nauchno-prakticheskoj onlajn konferencii [«Management of XXI century: economy, society and education in the conditions of new normality»: collection of scientific articles on the materials of XX international scientific-practical online conference], Sankt-Peterburg, 24–25 noyabrya 2021 goda / pod red. A.O.Kravcova,M.V.Zharovoj. Sankt-Peterburg : Izd-vo RGPU im. A.I.Gercena, 2022.

Zima O.I. Vozmozhnye podhody k postroeniyu innovacionnoj modeli banka, gotovnost k vnedreniyu cifrovogo rublya [Possible Approaches to Building an Innovative Bank Model, Readiness for the Implementation of the Digital Ruble] // V sbornike: Gosudarstvo i biznes. Sovremennye tendencii i problemy razvitiya ekonomiki. Materialy XIII Mezhdunarodnoj nauchno-prakticheskoj konferencii [State and Business. Modern trends and problems of economic development. Materials of XIII International Scientific and Practical Conference]. V 3-h chastyah. Sankt-Peterburg, 2021. P. 263-271.

Klimenko I.S. Matematicheskaya model' kompleksnoj zashchity infokommunikacionnogo ob"ekta na osnove «Igry s Prirodoj» [Mathematical model of complex protection of info-communication object on the basis of Game with Nature] // Sovremennaya nauka i innovacii [Modern science and innovation]. 2022. No. 1 (27). P. 34–43.

Konyukhovskij P.V. Problemy prognozirovaniya processov evolyucii cifrovyh valyutnyh instrumentov [Problems of Forecasting the Evolution of Digital Currency Instruments] // Ekonomika Severo-Zapada: problemy i perspektivy razvitiya [Economy of the North-West: Problems and Prospects of Development]. 2022. No. 3 (70). P. 55-66.

Konyukhovskij P.V., Zima O.I. Rol valyutnyh instrumentov v transformacii sovremennoj ekonomiki [The Role of Currency Instruments in the Transformation of the Modern Economy] // Finansy i biznes [Finance and Business]. 2022. Vol. 18. № 3. P. 3-23.

Kunakovskaya O.V., Men'shih T.V. Primenenie metodov teorii igr k zadacham infor-macionnoj bezopasnosti [Application of Game Theory Methods to Information Security Problems] // Nekotorye voprosy analiza, algebry, geometrii i matematich-eskogo obrazovaniya. [Some Issues in Analysis, Algebra, Geometry and Mathematics Education]. 2016. No. 5-1. P. 173-174.

Panfilov G.O., Chugunov A.V., Kabanov Yu.A. E-Participation in Russian Regions: Monitoring Results 2020-2022 // The State and Citizens in the Electronic Environment. Vol. 6 (Proceedings of the XXV International Joint Scientific Conference «Internet and Modern Society», IMS-2022, St. Petersburg, June 23-24, 2022). 2022.

Remesnik E.S. Primenenie teorii igr k ocenke riskov informacionnoj bezopasnosti predpriyatiya [Application of Game Theory to Information Security Risk Assessment of the Firm] // Problemy informacionnoj bezopasnosti / Trudy V Vserossijskoj s mezhdunarodnym uchastiem nauchno-prakticheskoj konferencii, Simferopol'-Gurzuf [Problems of Information Security / Proceedings of the V All-Russian with International Participation Scientific-practical Conference, Simferopol-Gurzuf], 14–16 Feb 2019. P.161-163.

Rudenko L.I., Pushkareva E.V. Modelirovanie ocenki riskov informacionnoj bezopasnocti // Sbornik trudov konferencii «Problemy informacionnoj bezopasnosti». V Vserossijskaya s mezhdunarodnym uchastiem nauchno-prakticheskaya konferenciya. Krymskij federal'nyj universitet imeni V.I. Vernadskogo [Modeling of information security risk assessment // Proceedings of the conference «Problems of information security». V All-Russian Scientific and Practical Conference with International Participation. V.I. Vernadsky Crimean Federal University]. 2019. P. 163-165.

Hovanov N.V. Analiz i sintez pokazatelej pri informacionnom deficite [Analysis and Synthesis of Indicators Under Information Deficit]. SPb., SPbGU, 1996.

Hovanov N.V. ASPID – sistema kvalimetricheskih metodov ocenivaniya v usloviyah deficita informacii kachestva slozhnyh tehnicheskih obektov // Metodologiya i praktika ocenivaniya kachestva produkcii [ASPID – system of qualimetric methods of assessment under conditions of information deficit of quality of complex technical objects // Methodology and Practice of Product Quality Assessment]. L., LDNTP, 1988. P. 56-61.

Hovanov N.V. Matematicheskie modeli riska i neopredelennosti [Mathematical Models of Risk and Uncertainty]. SPb., SPbGU, 1998.

Khoury J., Nassar M. A hybrid game theory and reinforcement learning approach for cyber-physical systems security. In NOMS 2020-2020 IEEE/IFIP Network Operations and Management Symposium. IEEE. 2020. P. 1-9.

Liu L., Huang C., Fang Y., Wang Z. Network attack and defense game theory based on Bayes-Nash equilibrium. KSII Transactions on Internet and Information Systems (TIIS). 2019. No. 13(10). P. 5260-5275.

Selten R. Spieltheoretische Behandlung eines Oligopolmodells mit Nachgetragheit // Zeitschrift fur die Gesamte Staatswissenschaft, 1965. No. 121. P. 301–324.