SYSTEM FOR ASSESSING THE CYBERSECURITY STATE BASED ON CYBERDIPLOMACY INDICATORS

Authors

  • Svitlana Kazmirchuk State University of Information and Communication Technologies, 7 Solomianska St., Kyiv, Ukraine, 03110.
  • Volodymyr Shulha State University of Information and Communication Technologies, 7 Solomianska St., Kyiv, Ukraine, 03110

DOI:

https://doi.org/10.18372/2310-5461.68.20768

Keywords:

state cybersecurity, cybersecurity state assessment, multicriteria analysis, fuzzy logic, expert assessment, defuzzification, cyberdiplomacy, integral indicator, software system

Abstract

The article addresses the problem of formalized assessment of a state’s cybersecurity level under conditions of growing hybrid threats, uncertainty of initial data, and the need to account not only for technical, but also legal, organizational, and foreign-policy aspects. It is shown that existing international index systems, maturity models, and regulatory approaches (GCI, NCSI, CMM, NIS2, NIST, OECD) do not provide for the construction of an integrated adaptive assessment system suitable for use at the state level in conditions of military confrontation and dynamic transformation of cyber threats. The purpose of the study is to develop and implement in software a system for assessing the level of a state’s cybersecurity, based on a formalized system of criteria, including a cyberdiplomacy dimension, and implementing a multicriteria fuzzy method for integrating expert assessments. The proposed system makes it possible to account for linguistic expert evaluations, different weights of criteria and sub-criteria, and to operate under conditions of incomplete and fuzzy information. The paper develops a structural model of the assessment system consisting of a data input and management subsystem and an assessment and data processing subsystem, as well as the corresponding functional modules for authentication, initialization of criteria and sub-criteria, formation of scales and reference benchmarks, determination of weighting coefficients, expert assessment, fuzzification, aggregation, defuzzification of results, and report generation. A basic algorithm for the system’s operation is proposed, ensuring consistent processing of expert data and the formation of an integral indicator of the cybersecurity level. To verify the correctness and sensitivity of the method, experimental modeling of the system’s operation was conducted for three scenarios corresponding to low, medium, and high levels of the cybersecurity state. The experimental results confirmed the monotonic behavior of the integral indicator when transitioning between scenarios and the unambiguous classification of levels based on the generalized Hamming distance to reference benchmarks. A prototype software application of the state cybersecurity assessment system was developed, providing automation of the collection of expert assessments, their processing, and visualization of results in the form of an integral level and criterion-based evaluations. The proposed approach can be used as a decision-support tool in the field of state cyber policy, strategic planning, and international cyberdiplomatic cooperation.

Author Biographies

Svitlana Kazmirchuk, State University of Information and Communication Technologies, 7 Solomianska St., Kyiv, Ukraine, 03110.

Doctor of Technical Sciences, Professor

Volodymyr Shulha, State University of Information and Communication Technologies, 7 Solomianska St., Kyiv, Ukraine, 03110

Doctor of Historical Sciences, Professor, Rector, State University of Information and Communication Technologies

References

Shulha, V. P., Korchenko, O. H., Ivanchenko, Ye. V., Kazmyrchuk, S. V., & Kondratiuk, S. V. (2025). Критерії стратегічного оцінювання кібербезпеки держави: кібердипломатичний аспект. Сучасний захист інформації, 3(63), С. 205–218.

Шульга, В., Корченко, О., Казмірчук. С., Корченко, А., Аскеров М. (2025). Метод мультикритеріального оцінювання кібербезпекового стану держави на стратегічних індикаторах кібердипломатії. Information Technology: Computer Science, Software Engineering and Cyber Security, №4 (2025). С. 10-39.

Global Cybersecurity Index (GCI) 2024 : Global Report / Int’l Telecommunication Union. – Geneva : ITU, 2024. 112 с. URL: https://www.itu.int/en/ITU-D/Cybersecurity/Documents/GCIv5/2401416_1b_Global-Cybersecurity-Index-E.pdf. (access data 25.10.2025)

National Cyber Security Index (NCSI), Methodology / e-Governance Academy. e-Governance Academy, 2025. URL: https://ncsi.ega.ee/methodology. (access data 25.10.2025)

Cybersecurity Capacity Maturity Model for Nations (CMM) / Global Cyber Security Capacity Centre, Univ. of Oxford. Oxford : GCSCC, 2022. URL: https://gcscc.ox.ac.uk/the-cmm. (access data 25.10.2025)

Directive (EU) 2022/2555 (NIS2) of the European Parliament and of the Council of 14 October 2022 on measures for a high common level of cybersecurity across the Union. Off. J. Eur. Union, L 277, 2022. URL: https://eur-lex.europa.eu/legal-content/EN/TXT/?uri=CELEX%3A32022L2555. (access data 25.10.2025)

Technical Guidelines for the implementation of NIS2 / European Union Agency for Cybersecurity (ENISA). Heraklion : ENISA, 2025. URL: https://www.enisa.europa.eu/publications/nis2-technical-implementation-guidance. (access data 25.10.2025)

NIST Cybersecurity Framework (CSF) Version 2.0 / Nat’l Inst. of Standards and Technology. Gaithersburg : NIST, Feb. 2024. Rежим доступу: https://nvlpubs.nist.gov/nistpubs/CSWP/NIST.CSWP.29.pdf. (access data 25.10.2025)

Risk Management Guide for Information Technology Systems (SP 800-30 Rev.1) / Nat’l Inst. of Standards and Technology. Gaithersburg : NIST, Jul. 2012. URL: https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-30r1.pdf. (access data 25.10.2025)

OECD Recommendation on Digital Security Risk Management for Economic and Social Prosperity / OECD, 2015. URL: https://legalinstruments.oecd.org/public/doc/328/328.en.pdf. (access data 25.10.2025)

Nye J.S. Jr. Deterrence and Dissuasion in Cyberspace. International Security. 2017. Vol. 41, № 3. С. 44–71.

Bishop M., Bailey D., Dempsey K. et al. A taxonomy of cyber conflict: The role of states, nonstate actors, and networks. Journal of Strategic Security. 2020. Vol. 13, № 2. С. 5–17.

Downloads

Published

2026-02-10

How to Cite

Kazmirchuk, S., & Shulha, V. (2026). SYSTEM FOR ASSESSING THE CYBERSECURITY STATE BASED ON CYBERDIPLOMACY INDICATORS. Science-Based Technologies, 68(4), 453–460. https://doi.org/10.18372/2310-5461.68.20768

Issue

Vol. 68 No. 4 (2025)

Section

Information technology, cybersecurity

License

The scientific journal adheres to the principles of Open Access and provides free, immediate, and permanent access to all published materials without financial, technical, or legal barriers for readers.

All articles are published in Open Access under the Creative Commons Attribution 4.0 International (CC BY 4.0) license.

Copyright

Authors who publish their works in the journal:

  • retain the copyright to their publications;

  • grant the journal the right of first publication of the article;

  • agree to the distribution of their materials under the CC BY 4.0 license;

  • have the right to reuse, archive, and distribute their works (including in institutional and subject repositories), provided that proper reference is made to the original publication in the journal.