Author
Listed:
- Bagdat Yagaliyeva
(Department of Cybersecurity, Satbayev University, Almaty 050013, Kazakhstan)
- Valery Lakhno
(Department of Computer Systems and Networks, National University of Life and Environmental Sciences of Ukraine, 03041 Kyiv, Ukraine)
- Myroslav Lakhno
(Department of Computer Systems and Networks, National University of Life and Environmental Sciences of Ukraine, 03041 Kyiv, Ukraine)
- Boris Gusev
(Department of Computer Systems and Networks, National University of Life and Environmental Sciences of Ukraine, 03041 Kyiv, Ukraine)
- Kaiyrbek Makulov
(Department of Computer Science, Yessenov University, Aktau 130000, Kazakhstan
College of Engineering, Michigan State University, East Lansing, MI 48824, USA)
- Tomiris Sundet
(Department of Cybersecurity, Satbayev University, Almaty 050013, Kazakhstan)
Abstract
The problem of multi-criteria selection of network security configurations (NSC) under resource constraints and the necessity to comply with information security (IS) policies is addressed in this study. A formal mathematical model of the problem has been developed, encompassing the definition of a set of possible security mechanism configurations, the formalization of objective functions reflecting security levels, throughput, and deployment costs, and the introduction of constraints on feasible solutions. The NSGA-II (Non-dominated Sorting Genetic Algorithm II) optimization algorithm is employed to generate a set of Pareto-optimal solutions, ensuring uniform coverage of compromise configurations. A software package implemented in Python 3 incorporates modules for population generation, fitness evaluation, selection, crossover, mutation operators, and result visualization. Computational experiments (CE) were conducted to validate the effectiveness of the proposed approach. The evolution dynamics of the Pareto hypervolume were analyzed, the uniformity of solution distribution in the objective space was studied, and the impact of algorithm parameters on convergence to the optimal solution was examined. The results demonstrate that the proposed methodology enables the formation of NSC sets that achieve a balanced trade-off between security, throughput, and IS system deployment costs.
Suggested Citation
Bagdat Yagaliyeva & Valery Lakhno & Myroslav Lakhno & Boris Gusev & Kaiyrbek Makulov & Tomiris Sundet, 2026.
"Multi-Criteria Selection of Network Security Configuration Using NSGA-II,"
Future Internet, MDPI, vol. 18(3), pages 1-18, March.
Handle:
RePEc:gam:jftint:v:18:y:2026:i:3:p:134-:d:1878885
Download full text from publisher
Corrections
All material on this site has been provided by the respective publishers and authors. You can help correct errors and omissions. When requesting a correction, please mention this item's handle: RePEc:gam:jftint:v:18:y:2026:i:3:p:134-:d:1878885. See general information about how to correct material in RePEc.
If you have authored this item and are not yet registered with RePEc, we encourage you to do it here. This allows to link your profile to this item. It also allows you to accept potential citations to this item that we are uncertain about.
We have no bibliographic references for this item. You can help adding them by using this form .
If you know of missing items citing this one, you can help us creating those links by adding the relevant references in the same way as above, for each refering item. If you are a registered author of this item, you may also want to check the "citations" tab in your RePEc Author Service profile, as there may be some citations waiting for confirmation.
For technical questions regarding this item, or to correct its authors, title, abstract, bibliographic or download information, contact: MDPI Indexing Manager (email available below). General contact details of provider: https://www.mdpi.com .
Please note that corrections may take a couple of weeks to filter through
the various RePEc services.
Printed from https://ideas.repec.org/a/gam/jftint/v18y2026i3p134-d1878885.html