EnglishSvenskaNorsk
Endre søk
RefereraExporteraLink to record
Permanent link

Direct link
Referera
Referensformat
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Annet format
Fler format
Språk
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Annet språk
Fler språk
Utmatningsformat
  • html
  • text
  • asciidoc
  • rtf
A Multi-level Reference Model and a Dedicated Method for Cyber-Security by Design: On the Example of the Electricity Sector
Eindhoven University of Technology, Eindhoven, The Netherlands.
University of Duisburg-Essen, Essen, Germany.
Stockholms universitet, Samhällsvetenskapliga fakulteten, Institutionen för data- och systemvetenskap.ORCID-id: 0000-0003-0478-9347
Rekke forfattare: 32024 (engelsk)Inngår i: Business & Information Systems Engineering, ISSN 2363-7005, E-ISSN 1867-0202Artikkel i tidsskrift (Fagfellevurdert) Epub ahead of print
Abstract [en]

The increased reliance of organizations on information technology inherently increases their vulnerability to cyber-security attacks. As a response, a host of cyber-security approaches exists. While useful, these approaches exhibit shortcomings such as an inclination to be fragmented, not accounting for up-to-date organizational data, focusing on singular vulnerabilities only, and being reactive, i.e., focusing on patching up vulnerabilities in current systems. The paper presents and evaluates a modeling method aiming to address those shortcomings and to support security by design with a focus on the electricity sector. The proposed modeling method encompasses a multi-level reference model reconstructing and integrating existing initiatives and supporting top-down and bottom-up analyses. Compared to earlier work, the paper contributes (1) a process model for cyber-security by design, which proactively considers security as a first-class citizen during the design process, (2) a complete coverage of the multi-level model, in terms of three views complementing the introduced process model, (3) an elaborated evaluation, in terms of reporting on an additional design science cycle.
sted, utgiver, år, opplag, sider
2024.
Emneord [en]
Cyber-security by design, Modeling method, Security reference framework, Security analysis, Multi-level modeling
HSV kategori
Forskningsprogram
data- och systemvetenskap
Identifikatorer
URN: urn:nbn:se:su:diva-235700DOI: 10.1007/s12599-024-00899-yISI: 001345228200003Scopus ID: 2-s2.0-85207771557OAI: oai:DiVA.org:su-235700DiVA, id: diva2:1914445
Tilgjengelig fra: 2024-11-19 Laget: 2024-11-19 Sist oppdatert: 2024-11-20

Open Access i DiVA

Fulltekst mangler i DiVA

Andre lenker

Forlagets fulltekstScopus

Person

Hacks, Simon

Søk i DiVA

Av forfatter/redaktør
Hacks, Simon
Av organisasjonen
I samme tidsskrift
Business & Information Systems Engineering

Søk utenfor DiVA

GoogleGoogle Scholar

doi
urn-nbn

Altmetric

doi
urn-nbn
Totalt: 37 treff
RefereraExporteraLink to record
Permanent link

Direct link
Referera
Referensformat
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Annet format
Fler format
Språk
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Annet språk
Fler språk
Utmatningsformat
  • html
  • text
  • asciidoc
  • rtf
v. 2.47.0
|
Stockholms universitetsbibliotek
|
DiVA portal
|
DiVA Kontakt
|
DiVA Logga in