Cargando…
Defining a Cyber Resilience Investment Strategy in an Industrial Internet of Things Context †
The fourth industrial revolution has brought several risks to factories along with its plethora of benefits. The convergence of new technologies, legacy technologies, information technologies and operational technologies in the same network generates a wide attack surface. At the same time, factorie...
| Autores principales: | , , , |
|---|---|
| Formato: | Online Artículo Texto |
| Lenguaje: | English |
| Publicado: |
MDPI
2019
|
| Materias: | |
| Acceso en línea: | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC6339031/ https://www.ncbi.nlm.nih.gov/pubmed/30609777 http://dx.doi.org/10.3390/s19010138 |
| _version_ | 1783388543764135936 |
|---|---|
| author | Carías, Juan Francisco Labaka, Leire Sarriegi, José María Hernantes, Josune |
| author_facet | Carías, Juan Francisco Labaka, Leire Sarriegi, José María Hernantes, Josune |
| author_sort | Carías, Juan Francisco |
| collection | PubMed |
| description | The fourth industrial revolution has brought several risks to factories along with its plethora of benefits. The convergence of new technologies, legacy technologies, information technologies and operational technologies in the same network generates a wide attack surface. At the same time, factories need continuous production to meet their customers’ demand, so any stopped production can have harsh effects on a factory’s economy. This makes cyber resilience a key requirement in factories nowadays. However, it is difficult for managers to define effective cyber resilience strategies, especially considering the difficulty of estimating adequate investment in cyber resilience policies before the company has suffered cyber incidents. In this sense, the purpose of this article is to define and model an effective cyber resilience strategy. To achieve this, the system dynamics methodology was followed in order to get five experts’ opinions on the best strategy to invest in cyber resilience. Interviews were conducted with these experts; their reasoning was put into behavior over time graphs and a system dynamics model was built from these findings. The main conclusion is that a cyber resilience investment strategy should be dynamic, investing in both technical security and personnel training, but at first with an emphasis on technical security and later shifting to have an emphasis on training. |
| format | Online Article Text |
| id | pubmed-6339031 |
| institution | National Center for Biotechnology Information |
| language | English |
| publishDate | 2019 |
| publisher | MDPI |
| record_format | MEDLINE/PubMed |
| spelling | pubmed-63390312019-01-23 Defining a Cyber Resilience Investment Strategy in an Industrial Internet of Things Context † Carías, Juan Francisco Labaka, Leire Sarriegi, José María Hernantes, Josune Sensors (Basel) Article The fourth industrial revolution has brought several risks to factories along with its plethora of benefits. The convergence of new technologies, legacy technologies, information technologies and operational technologies in the same network generates a wide attack surface. At the same time, factories need continuous production to meet their customers’ demand, so any stopped production can have harsh effects on a factory’s economy. This makes cyber resilience a key requirement in factories nowadays. However, it is difficult for managers to define effective cyber resilience strategies, especially considering the difficulty of estimating adequate investment in cyber resilience policies before the company has suffered cyber incidents. In this sense, the purpose of this article is to define and model an effective cyber resilience strategy. To achieve this, the system dynamics methodology was followed in order to get five experts’ opinions on the best strategy to invest in cyber resilience. Interviews were conducted with these experts; their reasoning was put into behavior over time graphs and a system dynamics model was built from these findings. The main conclusion is that a cyber resilience investment strategy should be dynamic, investing in both technical security and personnel training, but at first with an emphasis on technical security and later shifting to have an emphasis on training. MDPI 2019-01-03 /pmc/articles/PMC6339031/ /pubmed/30609777 http://dx.doi.org/10.3390/s19010138 Text en © 2019 by the authors. Licensee MDPI, Basel, Switzerland. This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license (http://creativecommons.org/licenses/by/4.0/). |
| spellingShingle | Article Carías, Juan Francisco Labaka, Leire Sarriegi, José María Hernantes, Josune Defining a Cyber Resilience Investment Strategy in an Industrial Internet of Things Context † |
| title | Defining a Cyber Resilience Investment Strategy in an Industrial Internet of Things Context † |
| title_full | Defining a Cyber Resilience Investment Strategy in an Industrial Internet of Things Context † |
| title_fullStr | Defining a Cyber Resilience Investment Strategy in an Industrial Internet of Things Context † |
| title_full_unstemmed | Defining a Cyber Resilience Investment Strategy in an Industrial Internet of Things Context † |
| title_short | Defining a Cyber Resilience Investment Strategy in an Industrial Internet of Things Context † |
| title_sort | defining a cyber resilience investment strategy in an industrial internet of things context † |
| topic | Article |
| url | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC6339031/ https://www.ncbi.nlm.nih.gov/pubmed/30609777 http://dx.doi.org/10.3390/s19010138 |
| work_keys_str_mv | AT cariasjuanfrancisco definingacyberresilienceinvestmentstrategyinanindustrialinternetofthingscontext AT labakaleire definingacyberresilienceinvestmentstrategyinanindustrialinternetofthingscontext AT sarriegijosemaria definingacyberresilienceinvestmentstrategyinanindustrialinternetofthingscontext AT hernantesjosune definingacyberresilienceinvestmentstrategyinanindustrialinternetofthingscontext |