IMECA method of risk-based assessment and ensuring cybersecurity of Large Language Models

Article Sidebar

PDF
Published:
2026-02-18
DOI: https://doi.org/10.15276/hait.09.2026.05
Keywords:
Risk-based assessment, cybersecurity, Large Language Models, Intrusion Modes Effects Criticality Analysis, countermeasures, threat, vulnerability, attack
PDF

How to cite

How to Cite

(1)
Neretin O. S. .; Kharchenko V. S. . " IMECA Method of Risk-Based Assessment and Ensuring Cybersecurity of Large Language Models" Publ. Nauka i Tekhnika. Odesa: Ukraine. Herald of Advanced Information Technology 9 (1), 60–70. https://doi.org/10.15276/hait.09.2026.05.

Main Article Content

Oleksii S. Neretin
National Aerospace University “Kharkiv Aviation Institute”, 17, Vadym Manko Str. Kharkiv, 61070, Ukraine
https://orcid.org/0000-0003-2114-6714
Vyacheslav S. Kharchenko
National Aerospace University “Kharkiv Aviation Institute”, 17, Vadym Manko Str. Kharkiv, 61070, Ukraine
https://orcid.org/0000-0001-5352-077X

Abstract

Large Language Models (LLMs) help perform complex tasks that previously relied only on humans. Many different areas of human activity already use this technology or are actively exploring its capabilities with a view to future integration into work processes. In addition to the positive effects of their use, there are problems of uncertain and unexpected behavior, in particular, the generation of forbidden content. Given the expanding use of these models and their behavior, it is necessary to assess the level of security and further ensure the cybersecurity of this technology. The object of the study is the processes of ensuring cybersecurity for large language models. The article proposes a methodology for countering this threat by assessing the risks of such behavior and ensuring an acceptable level of cybersecurity for LLMs using the IMECA (Intrusion Modes Effects Criticality Analysis) technique of risk-based assessment. A set of countermeasures has been developed to increase the security level of LLMs, and procedures for their selection based on the criteria of maximum productivity and best rating using a countermeasure rating matrix are defined. An example of testing and ensuring the cybersecurity of a test language model is provided, the results of which show that the criticality level of cyber risks before the use of countermeasures is significantly decreased after using the most productive and highest-rated countermeasures, but threats with a high level of cyber risk criticality still exist. Directions for future research are proposed to deepen the procedure for evaluating and ensuring the security of LLMs, given the continuous development of these models and their protection mechanisms. The main result of this work is the combination of a model for ensuring the cybersecurity of LLMs and an improved method for analyzing the criticality of their vulnerabilities for further adaptation of the IMECA method of quantitative risk-based assessment and cybersecurity assurance for the field of LLMs.

Downloads

Download data is not yet available.

Article Details

Issue

Vol. 9 No. 1 (2026): Herald of Advanced Information Technology

Topics

Section

Information technologies and computer systems

Authors

Author Biographies

Oleksii S. Neretin, National Aerospace University “Kharkiv Aviation Institute”, 17, Vadym Manko Str. Kharkiv, 61070, Ukraine

PhD Student of the Department of Computer Systems, Networks and Cybersecurity

Scopus Author ID: 58099131000

Vyacheslav S. Kharchenko, National Aerospace University “Kharkiv Aviation Institute”, 17, Vadym Manko Str. Kharkiv, 61070, Ukraine

Doctor of Technical Science, Professor, Сorr. member of the National Academy of Science of Ukraine, Head of the Department of Computer Systems, Networks and Cybersecurity

Scopus Author ID: 22034616000

Similar Articles

You may also start an advanced similarity search for this article.