<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE article PUBLIC "-//NLM//DTD JATS (Z39.96) Journal Publishing DTD v1.3 20210610//EN" "JATS-journalpublishing1-3.dtd">
<article article-type="research-article" dtd-version="1.3" xmlns:mml="http://www.w3.org/1998/Math/MathML" xmlns:xlink="http://www.w3.org/1999/xlink" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xml:lang="ru"><front><journal-meta><journal-id journal-id-type="publisher-id">izvestswsu</journal-id><journal-title-group><journal-title xml:lang="ru">Известия Юго-Западного государственного университета</journal-title><trans-title-group xml:lang="en"><trans-title>Proceedings of the Southwest State University</trans-title></trans-title-group></journal-title-group><issn pub-type="ppub">2223-1560</issn><issn pub-type="epub">2686-6757</issn><publisher><publisher-name>ЮЗГУ</publisher-name></publisher></journal-meta><article-meta><article-id pub-id-type="doi">10.21869/2223-1560-2025-29-4-125-139</article-id><article-id custom-type="elpub" pub-id-type="custom">izvestswsu-1520</article-id><article-categories><subj-group subj-group-type="heading"><subject>Research Article</subject></subj-group><subj-group subj-group-type="section-heading" xml:lang="ru"><subject>ИНФОРМАТИКА, ВЫЧИСЛИТЕЛЬНАЯ ТЕХНИКА И УПРАВЛЕНИЕ</subject></subj-group><subj-group subj-group-type="section-heading" xml:lang="en"><subject>COMPUTER SCIENCE, COMPUTER ENGINEERING AND CONTROL</subject></subj-group></article-categories><title-group><article-title>Применение искусственного интеллекта в задачах обнаружения деструктивных воздействий на информационные  и технические системы</article-title><trans-title-group xml:lang="en"><trans-title>Application of artificial intelligence for detecting  information-technical impacts</trans-title></trans-title-group></title-group><contrib-group><contrib contrib-type="author" corresp="yes"><name-alternatives><name name-style="eastern" xml:lang="ru"><surname>Селиверстов</surname><given-names>Д. Е.</given-names></name><name name-style="western" xml:lang="en"><surname>Seliverstov</surname><given-names>D. E.</given-names></name></name-alternatives><bio xml:lang="ru"><p>Селиверстов Дмитрий Евгеньевич, кандидат технических наук, младший научный сотрудник</p><p>ул. Профсоюзная, д. 65, г. Москва 117997</p></bio><bio xml:lang="en"><p>Dmitry E. Seliverstov, Cand. of Sci. (Engineering), Junior Researcher</p><p>65 Profsoyuznaya str., Moscow 117997</p></bio><email xlink:type="simple">Seliverstov_dmitriyy@rambler.ru</email><xref ref-type="aff" rid="aff-1"/></contrib><contrib contrib-type="author" corresp="yes"><contrib-id contrib-id-type="orcid">https://orcid.org/0009-0004-8412-7873</contrib-id><name-alternatives><name name-style="eastern" xml:lang="ru"><surname>Русаков</surname><given-names>К. Д.</given-names></name><name name-style="western" xml:lang="en"><surname>Rusakov</surname><given-names>K. D.</given-names></name></name-alternatives><bio xml:lang="ru"><p>Русаков Константин Дмитриевич, научный  сотрудник</p><p>ул. Профсоюзная, д. 65, г. Москва 117997</p></bio><bio xml:lang="en"><p>Konstantin D. Rusakov, Researcher</p><p>65 Profsoyuznaya str., Moscow 117997</p></bio><email xlink:type="simple">rusakov@ipu.ru</email><xref ref-type="aff" rid="aff-1"/></contrib></contrib-group><aff-alternatives id="aff-1"><aff xml:lang="ru"><institution>Институт проблем управления им. В. А. Трапезникова Российской академии наук</institution></aff><aff xml:lang="en"><institution>V. A. Trapeznikov Institute of Control Sciences of the Russian Academy of Sciences</institution></aff></aff-alternatives><pub-date pub-type="collection"><year>2025</year></pub-date><pub-date pub-type="epub"><day>08</day><month>01</month><year>2026</year></pub-date><volume>29</volume><issue>4</issue><fpage>125</fpage><lpage>139</lpage><permissions><copyright-statement>Copyright &amp;#x00A9; Селиверстов Д.Е., Русаков К.Д., 2026</copyright-statement><copyright-year>2026</copyright-year><copyright-holder xml:lang="ru">Селиверстов Д.Е., Русаков К.Д.</copyright-holder><copyright-holder xml:lang="en">Seliverstov D.E., Rusakov K.D.</copyright-holder><license xml:lang="ru" license-type="creative-commons-attribution" xlink:href="https://creativecommons.org/licenses/by/4.0/" xlink:type="simple"><license-p>Данная работа распространяется под лицензией Creative Commons Attribution 4.0.</license-p></license><license xml:lang="en" license-type="creative-commons-attribution" xlink:href="https://creativecommons.org/licenses/by/4.0/" xlink:type="simple"><license-p>This work is licensed under a Creative Commons Attribution 4.0 License.</license-p></license></permissions><self-uri xlink:href="https://izvestswsu.elpub.ru/jour/article/view/1520">https://izvestswsu.elpub.ru/jour/article/view/1520</self-uri><abstract><p>Целью работы являлось обоснование эффективности применения и сравнение методов искусственного интеллекта (машинного обучения и глубокого обучения) для своевременного обнаружения деструктивных воздействий на информационные и технические системы. </p><sec><title>Методы</title><p>Методы. Выполнен анализ современных научных источников, включая обзоры и стандарты по кибербезопасности, а также проведен эксперимент на открытом наборе данных сетевых атак (UNSW-NB15) с использованием алгоритмов машинного обучения (Random Forest) и глубокой нейронной сети. Оценка проводилась по метрикам точности, полноты обнаружения, F1 и др. </p></sec><sec><title>Результаты</title><p>Результаты. Методы ML/DL демонстрируют существенно более высокую точность обнаружения воздействий по сравнению с традиционными сигнатурными средствами: на датасете UNSW-NB15 достигнута точность ~96% при использовании нейронной сети против ~70% у сигнатурного подхода. Показано, что глубокое обучение позволяет выявлять ранее неизвестные атаки (в т.ч. сложные многовекторные) за счет распознавания скрытых аномалий, а ансамблевые и федеративные подходы повышают надежность и скорость обнаружения. </p></sec><sec><title>Заключение</title><p>Заключение. Интеграция методов ИИ в системы мониторинга безопасности значительно повышает эффективность защиты информационных и технических систем за счет проактивного выявления кибератак с минимальными ложными срабатываниями. Экспериментальные результаты подтверждают практическую применимость выбранных методов для защиты сетевой инфраструктуры (энергетика, связь, промышленный IoT), однако требуют дальнейшего развития в части обеспечения устойчивости к воздействиям и соблюдения принципов надежности ИИ. </p></sec></abstract><trans-abstract xml:lang="en"><p>Purpose of the work was to substantiate the effectiveness of applying artificial intelligence techniques (machine learning and deep learning) for the timely detection of destructive information-technical impacts on critical infrastructure objects. </p><sec><title>Methods</title><p>Methods. An analysis of scientific sources has been conducted scientific sources, including cybersecurity surveys and standards, and conducted an experiment on a public network attack dataset (UNSW-NB15) using machine learning (Random Forest) and a deep neural network. Evaluation was based on metrics such as accuracy, detection recall, F1-score, etc. </p></sec><sec><title>Results</title><p>Results. ML/DL methods show significantly higher attack detection accuracy compared to traditional signature-based tools: ~96% accuracy was achieved on the UNSW-NB15 dataset using a neural network, versus ~70% for the signature approach. We demonstrate that deep learning enables discovery of previously unknown attacks (including sophisticated multi-vector APTs) by recognizing hidden anomalies, and that ensemble and federated approaches improve detection reliability and speed.</p></sec><sec><title>Conclusion</title><p>Conclusion. Integrating AI techniques into security monitoring systems considerably increases the protection efficiency of critical systems by proactively identifying cyberattacks with minimal false alarms. The experimental results confirm the practical applicability of the chosen methods for securing network infrastructure (energy, communications, industrial IoT). However, further work is needed to ensure robustness against adversarial attacks and to uphold AI reliability principles.</p></sec></trans-abstract><kwd-group xml:lang="ru"><kwd>искусственный интеллект</kwd><kwd>машинное обучение</kwd><kwd>глубокое обучение</kwd><kwd>цифровой двойник</kwd><kwd>федеративное обучение</kwd><kwd>обнаружение атак</kwd><kwd>выявление аномалий</kwd><kwd>ситуационная осведомленность</kwd><kwd>автома-тическое реагирование</kwd><kwd>кибербезопасность</kwd><kwd>эргатические системы</kwd><kwd>киберустойчивость</kwd></kwd-group><kwd-group xml:lang="en"><kwd>artificial intelligence</kwd><kwd>machine learning</kwd><kwd>deep learning</kwd><kwd>attack detection</kwd><kwd>anomalies</kwd><kwd>critical infrastructure</kwd><kwd>cybersecurity</kwd></kwd-group></article-meta></front><back><ref-list><title>References</title><ref id="cit1"><label>1</label><citation-alternatives><mixed-citation xml:lang="ru">Подсистема предупреждения компьютерных атак на объекты критической информационной инфраструктуры Российской Федерации / И.В. Котенко, А.И. Колесников, И.Б. Саенко, Р.И. Захарченко, Д.В. Величко // Вопросы кибербезопасности. 2023. № 1(53). С. 13–27. https://doi.org/10.21681/2311-3456-2023-1-13-27.</mixed-citation><mixed-citation xml:lang="en">Kotenko I.V., Kolesnikov A.I., Saenko I.B., Zakharchenko R.I., Velichko D.V. Subsystem of prevention of computer attacks on objects of critical information infrastructure of the Russian Federation. Voprosy kiberbezopasnosti = Cybersecurity issues. 2023;(1):13–27. (In Russ.). https://doi.org/10.21681/2311-3456-2023-1-13-27</mixed-citation></citation-alternatives></ref><ref id="cit2"><label>2</label><citation-alternatives><mixed-citation xml:lang="ru">Advancing cybersecurity: a comprehensive review of AI-driven detection techniques / A.H. Salem, S.M. Azzam, O.E. Emam, A.A. Abohany // Journal of Big Data. 2024. Vol. 11, no. 1. P. 1–38. https://doi.org/10.1186/s40537-024-00957-y.</mixed-citation><mixed-citation xml:lang="en">Salem A.H., Azzam S.M., Emam O.E., Abohany A.A. Advancing cybersecurity: a comprehensive review of AI-driven detection techniques. Journal of Big Data. 2024;11(1):1–38. https://doi.org/10.1186/s40537-024-00957-y</mixed-citation></citation-alternatives></ref><ref id="cit3"><label>3</label><citation-alternatives><mixed-citation xml:lang="ru">Jensen B., Atalan Y., Macias J.M. Algorithmic Stability: How AI Could Shape the Future of Deterrence // Center for Strategic and International Studies (CSIS). 2024. URL: https://www.csis.org/analysis/algorithmic-stability-how-ai-could-shape-future-deterrence.</mixed-citation><mixed-citation xml:lang="en">Jensen B., Atalan Y., Macias J.M. Algorithmic Stability: How AI Could Shape the Future of Deterrence. Center for Strategic and International Studies (CSIS). 2024 Jun 10. Available 	from: 	https://www.csis.org/analysis/algorithmic-stability-how-ai-could-shapefuture-deterrence</mixed-citation></citation-alternatives></ref><ref id="cit4"><label>4</label><citation-alternatives><mixed-citation xml:lang="ru">Deep learning for intrusion detection in emerging technologies: a comprehensive survey and new perspectives / E.C. Pinto Neto, S. Iqbal, S. Buffett, M. Sultana, A. Taylor // Artificial Intelligence Review. 2025. Vol. 58. Art. 340. https://doi.org/10.1007/s10462-02511346-z.</mixed-citation><mixed-citation xml:lang="en">Pinto Neto E.C., Iqbal S., Buffett S., Sultana M., Taylor A. Deep learning for intrusion detection in emerging technologies: a comprehensive survey and new perspectives. Artificial Intelligence Review. 2025;58:340. https://doi.org/10.1007/s10462-025-11346-z</mixed-citation></citation-alternatives></ref><ref id="cit5"><label>5</label><citation-alternatives><mixed-citation xml:lang="ru">Pang G., Shen C., Cao L., van den Hengel A. Deep learning for anomaly detection: challenges, methods and opportunities. Preprint: arXiv:2007.02500, 2020. URL: https://arxiv.org/abs/2007.02500.</mixed-citation><mixed-citation xml:lang="en">Pang G., Shen C., Cao L., van den Hengel A. Deep learning for anomaly detection: challenges, methods and opportunities. Preprint: arXiv:2007.02500; 2020. Available from: https://arxiv.org/abs/2007.02500</mixed-citation></citation-alternatives></ref><ref id="cit6"><label>6</label><citation-alternatives><mixed-citation xml:lang="ru">Sowmya T., Mary Anita E.A. A comprehensive review of AI-based intrusion detection system // Measurement: Sensors. 2023. Vol. 28. Article 100827. https://doi.org/10.1016/j.measen.2023.100827.</mixed-citation><mixed-citation xml:lang="en">Sowmya T., Mary Anita E.A. A comprehensive review of AI-based intrusion detection system. Measurement: Sensors. 2023;28:100827. https://doi.org/10.1016/j.measen.2023.100827</mixed-citation></citation-alternatives></ref><ref id="cit7"><label>7</label><citation-alternatives><mixed-citation xml:lang="ru">Issa M.M., Aljanabi M., Muhialdeen H.M. Systematic literature review on intrusion detection systems: research trends and future directions (2018–2023) // Journal of Intelligent Systems. 2024. (Early access). https://doi.org/10.1515/jisys-2023-0248.</mixed-citation><mixed-citation xml:lang="en">Issa M.M., Aljanabi M., Muhialdeen H.M. Systematic literature review on intrusion detection systems: research trends and future directions (2018–2023). Journal of Intelligent Systems. 2024;(early access). https://doi.org/10.1515/jisys-2023-0248</mixed-citation></citation-alternatives></ref><ref id="cit8"><label>8</label><citation-alternatives><mixed-citation xml:lang="ru">Zhang Y., Muniyandi R.C., Qamar F. A Review of Deep Learning Applications in Intrusion Detection Systems: Overcoming Challenges in Spatiotemporal Feature Extraction and Data Imbalance // Applied Sciences. 2025. Vol. 15, no. 3. Art. 1552. https://doi.org/10.3390/app15031552.</mixed-citation><mixed-citation xml:lang="en">Zhang Y., Muniyandi R.C., Qamar F. A review of deep learning applications in intru-sion detection systems: overcoming challenges in spatiotemporal feature extraction and data imbalance. Applied Sciences. 2025;15(3):1552. https://doi.org/10.3390/app15031552</mixed-citation></citation-alternatives></ref><ref id="cit9"><label>9</label><citation-alternatives><mixed-citation xml:lang="ru">APT Attack Detection Based on Graph Convolutional Neural Networks / W. Ren, X. Song, Y. Hong, Y. Lei, J. Yao, Y. Du, W. Li // International Journal of Computational Intelligence Systems. 2023. Vol. 16. Art. 184. https://doi.org/10.1007/s44196-023-00369-5.</mixed-citation><mixed-citation xml:lang="en">Ren W., Song X., Hong Y., Lei Y., Yao J., Du Y., Li W. APT attack detection based on graph convolutional neural networks. International Journal of Computational Intelligence Systems. 2023;16:184. https://doi.org/10.1007/s44196-023-00369-5</mixed-citation></citation-alternatives></ref><ref id="cit10"><label>10</label><citation-alternatives><mixed-citation xml:lang="ru">Костогрызов А.И. Прогнозирование рисков по данным мониторинга для систем искусственного интеллекта // БИТ. Сборник трудов Десятой международной научно-технической конференции. М.: МГТУ им. Н. Э. Баумана, 2019. С. 220 – 229.</mixed-citation><mixed-citation xml:lang="en">Kostogryzov A.I. Forecasting risks based on monitoring data for artificial intelligence systems. In: BIT. Sbornik trudov Desyatoi mezhdunarodnoi nauchno-tekhnicheskoi konferentsii = BIT. Proceedings of the Tenth International Scientific and Technical Conference. Moscow: Bauman Moscow State Technical University; 2019. P. 220–229. (In Russ.)</mixed-citation></citation-alternatives></ref><ref id="cit11"><label>11</label><citation-alternatives><mixed-citation xml:lang="ru">Kumar G., Thakur K., Ayyagari M.R. MLEsIDSs: machine learning-based ensembles for intrusion detection systems – a review // Journal of Supercomputing. 2020. Vol. 76, no. 12. P. 8938–8971. https://doi.org/10.1007/s11227-020-03196-z.</mixed-citation><mixed-citation xml:lang="en">Kumar G., Thakur K., Ayyagari M.R. MLEsIDSs: machine learning-based ensembles for intrusion detection systems – a review. The Journal of Supercomputing. 2020;76(12):8938–8971. https://doi.org/10.1007/s11227-020-03196-z</mixed-citation></citation-alternatives></ref><ref id="cit12"><label>12</label><citation-alternatives><mixed-citation xml:lang="ru">Bobyr M.V., Milostnaya N.A., Bulatnikov V.A. The fuzzy filter based on the method of areas’ ratio // Applied Soft Computing. 2022. Vol. 117. Art. 108449. https://doi.org/10.1016/j.asoc.2022.108449.</mixed-citation><mixed-citation xml:lang="en">Bobyr M.V., Milostnaya N.A., Bulatnikov V.A. The fuzzy filter based on the method of ar-eas’ ratio. Applied Soft Computing. 2022;117:108449. https://doi.org/10.1016/j.asoc.2022.108449</mixed-citation></citation-alternatives></ref><ref id="cit13"><label>13</label><citation-alternatives><mixed-citation xml:lang="ru">The Current Research Status of AI-Based Network Security Situational Awareness / M. Wang, G. Song, Y. Yu, B. Zhang // Electronics. 2023. Vol. 12, no. 10. Art. 2309. https://doi.org/10.3390/electronics12102309.</mixed-citation><mixed-citation xml:lang="en">Wang M., Song G., Yu Y., Zhang B. The current research status of AI-based network security situational awareness. Electronics. 2023;12(10):2309. https://doi.org/10.3390/electronics12102309</mixed-citation></citation-alternatives></ref><ref id="cit14"><label>14</label><citation-alternatives><mixed-citation xml:lang="ru">Котенко И.В., Израилов К.Е., Буйневич М.В. Метод обнаружения атак различного генеза на сложные объекты на основе информации состояния. Ч. 1 // Вопросы кибербезопасности. 2023. № 3(55). С. 90–100. https://doi.org/10.21681/2311-3456-2023-390-100.</mixed-citation><mixed-citation xml:lang="en">Kotenko I.V., Izrailov K.E., Buinevich M.V. A method for detecting attacks of various origins on complex objects based on state information. Part 1. Voprosy kiberbezopasnosti = Cybersecurity issues. 2023;3(55):90–100. (In Russ.). https://doi.org/10.21681/2311-3456-2023-3-90-100</mixed-citation></citation-alternatives></ref><ref id="cit15"><label>15</label><citation-alternatives><mixed-citation xml:lang="ru">Detection of Cyberattacks and Anomalies in Cyber-Physical Systems: Approaches, Data Sources, Evaluation / O. Tushkanova, D. Levshun, A. Branitskiy, E. Fedorchenko, E. Novikova, I. Kotenko // Algorithms. 2023. 16(2). Р. 85. https://doi.org/10.3390/a16020085.</mixed-citation><mixed-citation xml:lang="en">Tushkanova O., Levshun D., Branitskiy A., Fedorchenko E., Novikova E., Kotenko I. Detection of cyberattacks and anomalies in cyber-physical systems: approaches, data sources, evaluation. Algorithms. 2023;16(2):85. https://doi.org/10.3390/a16020085</mixed-citation></citation-alternatives></ref><ref id="cit16"><label>16</label><citation-alternatives><mixed-citation xml:lang="ru">Обнаружение вторжений на основе федеративного обучения: архитектура системы и эксперименты / Е.С. Новикова, И.В. Котенко, А.В. Мелешко, К.Е. Израилов // Вопросы кибербезопасности. 2023. № 6(58). С. 50–66. https://doi.org/10.21681/23113456-2023-6-50-66.</mixed-citation><mixed-citation xml:lang="en">Novikova E.S., Kotenko I.V., Meleshko A.V., Izrailov K.E. Intrusion detection based on federated learning: system architecture and experiments. Voprosy kiberbezopasnosti = Cybersecurity issues. 2023;(6):50–66. (In Russ.). https://doi.org/10.21681/2311-34562023-6-50-66</mixed-citation></citation-alternatives></ref><ref id="cit17"><label>17</label><citation-alternatives><mixed-citation xml:lang="ru">Shanmugam V., Razavi-Far R., Hallaji E. Addressing Class Imbalance in Intrusion Detection: A Comprehensive Evaluation of Machine Learning Approaches // Electronics. 2025. 14(1): 69. https://doi.org/10.3390/electronics14010069.</mixed-citation><mixed-citation xml:lang="en">Shanmugam V., Razavi-Far R., Hallaji E. Addressing class imbalance in intrusion detection: a comprehensive evaluation of machine learning approaches. Electronics. 2025;14(1):69. https://doi.org/10.3390/electronics14010069</mixed-citation></citation-alternatives></ref><ref id="cit18"><label>18</label><citation-alternatives><mixed-citation xml:lang="ru">Survey of federated learning in intrusion detection / H. Zhang, J. Ye, W. Huang, X. Liu, J. Gu // Journal of Parallel and Distributed Computing. 2024. Vol. 195: 104976. https://doi.org/10.1016/j.jpdc.2024.104976.</mixed-citation><mixed-citation xml:lang="en">Zhang H., Ye J., Huang W., Liu X., Gu J. Survey of federated learning in intrusion detection. Journal of Parallel and Distributed Computing. 2024;195:104976. https://doi.org/10.1016/j.jpdc.2024.104976</mixed-citation></citation-alternatives></ref><ref id="cit19"><label>19</label><citation-alternatives><mixed-citation xml:lang="ru">Израилов К.Е., Буйневич М.В. Метод обнаружения атак различного генеза на сложные объекты на основе информации состояния. Ч. 2. Алгоритм, модель и эксперимент // Вопросы кибербезопасности. 2023. № 4(56). С. 80–93. https://doi.org/10.21681/2311-3456-2023-4-80-93.</mixed-citation><mixed-citation xml:lang="en">Izrailov K.E., Buinevich M.V. A method for detecting attacks of various origins on complex objects based on state information. Part 2. Algorithm, model and experiment. Voprosy kiberbezopasnosti = Cybersecurity issues. 2023;(4):80–93. (In Russ.). https://doi.org/10.21681/2311-3456-2023-4-80-93</mixed-citation></citation-alternatives></ref></ref-list><fn-group><fn fn-type="conflict"><p>The authors declare that there are no conflicts of interest present.</p></fn></fn-group></back></article>
