Impact Of Cybersecurity Research Articles

Enriching Systems Theory Based Cyber-Security and Safety Analysis Using Stakeholder Value Networks

<div class="section abstract"><div class="htmlview paragraph">System-theoretic process analysis for security (STPA-Sec) is a powerful safety and security analysis method that focuses on unsafe and unsecure interactions between subsystems rather than component failure and its resulting chain-of-event failure modes. The first step of STPA-Sec requires the analyst to identify the system boundary and list the system losses and hazards. Current approach to performing this first and critical step of STPA-Sec requires interviewing the stakeholders and could potentially result in a narrow focus due to stakeholder’s mental model and resulting answers to questions. In some cases, stakeholders are not available for interviews and we risk influencing the system loss identification by the mental model of the analyst. We believe these two potential issues in the STPA-Sec analysis: narrow focus and missing access to stakeholder, can be address by factoring additional system information through stakeholder analysis. To illustrate the benefit of this approach a mining system is considered. Stakeholders in the mining system are identified and then classified based on the role that they play in the expected emergent behavior of the system. Stakeholder needs are identified and ranked. A stakeholder value network (map) is created with stakeholder as nodes and value exchanges between them representing the connections. A ranked list of value exchanges is created based on the impact of cybersecurity on the stakeholder map. System level-losses are identified from high impact value exchanges, which can then be fed into the step 1 of STPA-Sec analysis. A system level goal statement, derived from the stakeholder analysis, is used as a guiding statement and an aid in drawing a boundary around the system.</div></div>

Challenges of digitalization process in different industries. Before and after

Since the appearance of the internet and new technologies, the business and socioeconomic sphere has taken a 360º turn. This gives us the opportunity to generate new business models, improve the analytical and predictive capacity both internally or externally and improve the company’s processes in terms of efficiency and effectiveness. The digitalization of processes implies adapting to the new technological environment and represents an added advantage for all companies regardless of the sector they are engaged in or the projects they carry out. In this way, we investigate the challenges and needs of companies from different industries before and after the implementation of the digitalization process, which is defined as being a part of the Industry 4.0, also referred to as the Internet of Things (IoT). Also, this paper describes the benefits of a digitalized company and the impact of cybersecurity in the results along with the definitions of threats which can occur and the type of strategy which shall be adopted in order to avoid security risks.

Guest Editorial: Security and Privacy in Cloud‐based Systems

Guest Editorial: Security and Privacy in Cloud‐based Systems

The impact of cybersecurity in radiation oncology: Logistics and challenges

The impact of cybersecurity in radiation oncology: Logistics and challenges

Impact of Cyber Security in Different Application of E-Governance

Impact of Cyber Security in Different Application of E-Governance

Asset-Based Dynamic Impact Assessment of Cyberattacks for Risk Analysis in Industrial Control Systems

With the evolution of information, communications, and technologies, modern industrial control systems (ICSs) face more and more cybersecurity issues. This leads to increasingly severe risks in critical infrastructure and assets. Therefore, risk analysis becomes a significant yet not well investigated topic for prevention of cyberattack risks in ICSs. To tackle this problem, a dynamic impact assessment approach is presented in this paper for risk analysis in ICSs. The approach predicts the trend of impact of cybersecurity dynamically from full recognition of asset knowledge. More specifically, an asset is abstracted with properties of construction, function, performance, location, and business. From the function and performance properties of the asset, object-oriented asset models incorporating with the mechanism of common cyberattacks are established at both component and system levels. Characterizing the evolution of behaviors for single asset and system, the models are used to analyze the impact propagation of cyberattacks. Then, from various possible impact consequences, the overall impact is quantified based on the location and business properties of the asset. A special application of the approach is to rank critical system parameters and prioritize key assets according to impact assessment. The effectiveness of the presented approach is demonstrated through simulation studies for a chemical control system.

КІБЕРБЕЗПЕКА ЯК ФАКТОР ПРИСКОРЕННЯ ЦИФРОВОЇ ТРАНСФОРМАЦІЇ ЕКОНОМІКИ УКРАЇНИ

The key hypothesis of the research is the assumption that security in cyberspace can accelerate a process of the economy's digital transformation in any country in the world. Our goal in this article to clarify the essence of cyberspace's concept, which is considered as a global information environment, formed by a set of interdependent elements of the information technology infrastructure, namely information and telecommunications networks and computer systems for storage, processing, modification, and exchange data, as well as the importance of cybersecurity in the process of the digital transformation of the economy. The degree of readiness of countries with different levels of socio-economic development to protecting data in cyberspace according to the Global Cybersecurity Index (GCI) and the National Cybersecurity Index (NCSI) is analyzed. Using the ICT Development Index (ІDІ) and the Network Readiness Index (NRI), the level of digital development of highly developed countries and countries with transformational economies is analyzed. The strengths and weaknesses of both the cybersecurity system and the level of digital development of Ukraine have been identified. The focus is on determining the impact of cybersecurity on increasing opportunities for the use of modern digital technologies in economic processes, which may ultimately accelerate the economy's digital transformation. It is concluded, increasing the level of cybersecurity is a necessary but not always sufficient factor in accelerating the economy's digital transformation. According to the results of the study, it is proposed: firstly, to research the formation of effective means of cyberdefense in legal, organizational, and technical aspects; secondly, to launch information and training campaigns to raising awareness and acquire relevant skills, in particular, to build a human resources reserve in the field of cybersecurity; thirdly, to strengthen the state's efforts to develop and implement effective cybersecurity systems at the level of the state, business organizations and citizens.

Measuring Impact of Cybersecurity on the Performance of Industrial Control Systems

This article examines the impact of cybersecurity on the performance of industrial control systems (ICS). Control systems are embedded in essentially all engineered systems, such as our cars, homes, offices, industrial plants, and in critical infrastructures such as power plants, water treatment plants, and transportation systems. To ensure the security of ICS, particularly for critical infrastructures, standards are being developed to ensure ICS cybersecurity. The NIST ICS cybersecurity testbed will be constructed to facilitate the measurement of industrial process performance for systems instrumented with cybersecurity technologies. This testbed will allow for validation of existing security standards and guidelines and will allow researchers to provide valuable feedback to the community on methods, practices, and pitfalls when applying a cybersecurity program to an ICS. Additional work will be required to identify new use cases and pertinent performance metrics. The testbed will provide an opportunity for collaboration between government, research institutions, and industry partners. Interested parties are encouraged to contact the authors directly to discuss opportunities for collaboration.

Critical issues in homeland security: a casebook

Introduction PART I -- Legal and Policy Challenges in Homeland Security Chapter 1. Law and Policy Case 1.1: The Use of Drones in TCounterterrorism: The Case of Al-Awlaki, Tobias T. Gibson Case 1.2: Presidential Declaration of Disaster Decisions: The Case of Turndowns, Richard Sylves Chapter 2. Terrorism Case 2.1: The 1993 World Trade Center Bombing: A Success or a Failure for the FBI?, Linda Kiltz Case 2.2: Terrorist or Ecosaboteur? The Case of Briana Waters, Linda Kiltz Chapter 3. Environmental Security Case 3.1: Arctic Security: Oil, Polar Bears, Melting Ice Caps, and U.S. National Security, James Ramsay and John Lanicci Case 3.2: The Impact of Hurricane Katrina on the Environmental Security of the US Gulf Coast Region and Beyond, John Lanicci and James Ramsay PART II -- Operational Challenges in Homeland Security Chapter 4. Intelligence Case 4.1: The Attack on Mumbai, India, Steve Young Case 4.2: Using a Principal Agent in Intelligence Collection in Afghanistan, Steve Young Chapter 5. Critical Infrastructure Protection Case 5.1: Catastrophic Pandemic: Cases in Ethical Decision Making, Linda Kiltz Case 5.2: The Impact of Cyber-Security on Critical Infrastructure Protection: The Advanced Persistent Threat, Gary Kessler Chapter 6. Transportation Security Case 6.1: The Howard Street Tunnel Fire (Baltimore), Francis L. Edwards Case 6.2: The Impact of the 9/11 World Trade Center Attack on Transportation, Francis L. Edwards Chapter 7. Emergency Management Case 1: The San Bruno Gas Pipeline Explosion, David McEntire Case 2: Lessons Learned from the 2010 Haiti Earthquake, Joshua Kelly and David McEntire Conclusion

The impact of cybersecurity on real world, big picture, planetary problems

How will cyber security affect the 2008 Olympic Games in Beijing? Our columnists Dario Forte and Richard Power report on the astronomical task of maintaining IT security for the Beijing Olympics as part of their RSA Conference roundup. The real-world topics of electronic voting and climate change are also investigated. IT security professionals can also do their bit to save the planet. Download : Download full-size image Making sure the Olympics is not extinguished by IT security incidents is a big job. Power and Forte report on the Olympics, electronic voting and climate change from the RSA Conference.