EnglishSvenskaNorsk
Ändra sökning
RefereraExporteraLänk till posten
Permanent länk

Direktlänk
Referera
Referensformat
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Annat format
Fler format
Språk
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Annat språk
Fler språk
Utmatningsformat
  • html
  • text
  • asciidoc
  • rtf
A Multi-level Reference Model and a Dedicated Method for Cyber-Security by Design: On the Example of the Electricity Sector
Eindhoven University of Technology, Eindhoven, The Netherlands.
University of Duisburg-Essen, Essen, Germany.
Stockholms universitet, Samhällsvetenskapliga fakulteten, Institutionen för data- och systemvetenskap.ORCID-id: 0000-0003-0478-9347
Antal upphovsmän: 32024 (Engelska)Ingår i: Business & Information Systems Engineering, ISSN 2363-7005, E-ISSN 1867-0202Artikel i tidskrift (Refereegranskat) Epub ahead of print
Abstract [en]

The increased reliance of organizations on information technology inherently increases their vulnerability to cyber-security attacks. As a response, a host of cyber-security approaches exists. While useful, these approaches exhibit shortcomings such as an inclination to be fragmented, not accounting for up-to-date organizational data, focusing on singular vulnerabilities only, and being reactive, i.e., focusing on patching up vulnerabilities in current systems. The paper presents and evaluates a modeling method aiming to address those shortcomings and to support security by design with a focus on the electricity sector. The proposed modeling method encompasses a multi-level reference model reconstructing and integrating existing initiatives and supporting top-down and bottom-up analyses. Compared to earlier work, the paper contributes (1) a process model for cyber-security by design, which proactively considers security as a first-class citizen during the design process, (2) a complete coverage of the multi-level model, in terms of three views complementing the introduced process model, (3) an elaborated evaluation, in terms of reporting on an additional design science cycle.
Ort, förlag, år, upplaga, sidor
2024.
Nyckelord [en]
Cyber-security by design, Modeling method, Security reference framework, Security analysis, Multi-level modeling
Nationell ämneskategori
Systemvetenskap, informationssystem och informatik
Forskningsämne
data- och systemvetenskap
Identifikatorer
URN: urn:nbn:se:su:diva-235700DOI: 10.1007/s12599-024-00899-yISI: 001345228200003Scopus ID: 2-s2.0-85207771557OAI: oai:DiVA.org:su-235700DiVA, id: diva2:1914445
Tillgänglig från: 2024-11-19 Skapad: 2024-11-19 Senast uppdaterad: 2024-11-20

Open Access i DiVA

Fulltext saknas i DiVA

Övriga länkar

Förlagets fulltextScopus

Person

Hacks, Simon

Sök vidare i DiVA

Av författaren/redaktören
Hacks, Simon
Av organisationen
Institutionen för data- och systemvetenskap
I samma tidskrift
Business & Information Systems Engineering
Systemvetenskap, informationssystem och informatik

Sök vidare utanför DiVA

GoogleGoogle Scholar

doi
urn-nbn

Altmetricpoäng

doi
urn-nbn
Totalt: 37 träffar
RefereraExporteraLänk till posten
Permanent länk

Direktlänk
Referera
Referensformat
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Annat format
Fler format
Språk
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Annat språk
Fler språk
Utmatningsformat
  • html
  • text
  • asciidoc
  • rtf
v. 2.47.0
|
WCAG
|
Stockholms universitetsbibliotek
|
DiVA portal
|
DiVA Kontakt
|
DiVA Logga in