The applicability of ELECTRE I as part of multi­criteria selection of insurable automated systems and the priority of cyber security and the criterion of three­valued majority logic

Aim. To use the case of one of the ELECTRE methods to identify and demonstrate the applicability of the development of indexes for pairwise comparison of alternatives (RIPSA) for selecting automated information systems (AIS) taking into account criteria associated with AIS cybersecurity and cyber risk insurance. Methods. The paper uses the ELECTRE I method that is well-described in well-known publications. The ELECTRE group of methods belongs to the RIPSA approach that aims to compare multi-criteria alternatives. One of the Russian pioneers of this approach was the RAS member Larichev O.I. The introduced criterion called the “three-digit majority criterion of AIS cybersecurity taking into account insurance” uses elements of three-digit majority logic. Results. The paper shows the applicability of the RIPSA approach, ELECTRE I specifically, for selecting AIS as regards the examined criteria associated with AIS cybersecurity, taking into account cyber risk insurance. A modified criterion has been developed that is new as regards cyber security in the context of cyber liability insurance and is based on a three-digit majority logic. Specifically, it allows expressing and taking into account in a logical and mathematical form some features of AIS insurance protection given the inherent cyber risks, as well as the ability of AIS to independently withstand the three categories of cyber attacks. Conclusion. The three-digit majority logic-based technical and economic quality criterion is applicable to not only technological and organisational parameters or characteristics of AIS cyber security, but the financial and economic parameters or security characteristics of insured AIS as well. The ELECTRE methods of developing pairwise alternative comparison indexes are applicable both in the analysis, organisational and technological measures to reduce various AIS-related cyber risks, and in associated insurance protection. The paper shows that the developed integral criterion, namely the three-digit majority logic for multi-criteria alternatives, allows using the ELECTRE methods with two criteria less.

1. Anich I., Larichev O.I. [ELECTRA method and the problem of acyclicity of relations of alternatives]. Automation and Remote Control. 1996;57(8):1154–1162.

2. Roy B. Multicriteria Methodology for Decision Aiding. – Dordrecht: Kluwer Academic Publisher; 1996. 303 p.

3. Sheptunov M.V. [Applicability of the ELECTRE I method for evaluating multi-criterional alternatives in problems of choosing of a principle of access control to museum digital copies]. RSUH/RGGU Bulletin. “Information Science. Information Security. Mathematics” Series. 2020;4:62–71. (in Russ.)

4. Lobach D.J. On some cases of quantitative estimation of damage to a technological system. Dependability. 2024;24(4):58–64. DOI: 10.21683/1729-2646-2024-24-4-58-64. (in Russ.)

5. Gapanovich V.A., Rozenberg E.N., Shubinsky I.B. Some concepts of fail-safety and cyber protection of control systems. Dependability. 2014;(2):88–100. DOI: 10.21683/1729-2646-2014-0-2-88-100. (in Russ.)

6. Yashin V.N. Evaluation of efficiency of automated information systems . Vestnik of Samara State Technical University. Technical Sciences. 2017;3(55):43–49. (in Russ.)

7. Insurance from A to Z. Korchevskaja L.I., Turbina K.E., ed. Moscow: INFRA-M, 1996. 624 p. (in Russ.)

8. Butakova N.A. Cybersecurity incentives and the role of cyber insurance. Perm Legal Almanac. – Moscow: Statute; 2025: 211–221. (in Russ.)

9. Prosvetova A.A., Dubkova E.V. Cyber insurance as method for ensuring information security. International Journal of Humanities and Natural Sciences. 2020; 4-3(43):138–141. DOI: 10.24411/2500-1000-2020-10411 (in Russ.)

10. Krupenko Y.N. Cyberrisks and theoretical foundations of cyberinsurance. Problems of Modern Economy: Global, National and Regional Context: a collection of scientific articles / GrSU im. Janki Kupaly; ed. by M.E. Karpitskaya (chief ed.) et al. – Grodno: GrSU; 2022; 249–257. (in Russ.)

11. Borisov N.M., Adamchuk N.G. The Ability of Insurers in the Cybersecurity Business. Insurance business. 2020; 4:21–25. (in Russ.)

12. Volkova T.A., Suslyakova O.N. Insurance of information risks (cyber insurance). Innovative economy: prospects for development and improvement. 2018;7(33):1:117–122. (in Russ.)

13. Varshavsky V.I. [Ternary majority logic]. Automation and Remote Control. 1964;25(5):673–684. (in Russ.)

14. Ovsievich B.L. [Certain properties of symmetric functions in three-valued logic]. Problems of Information Transmission. 1965;1(1):57–64. (in Russ.)

15. Sheptunov M.V. [Insurance and the new scientific direction: methods of operational rational reinsurance of extra-severe risks on the base of the evolutionary algorithms]. Collection of works by the winners of the national competition of the scientific and innovative works in theoretical and applied economics. Saint-Petersburg: Pervyi klass. Publ., 2012:156–167. (in Russ.)