A Robust Information Life Cycle Management Framework for Securing and Governing Critical Infrastructure Systems

Moulos, Vrettos; Chatzikyriakos, G.; Kassouras, Vassilis; Doulamis, Anastasios; Doulamis, Nikolaos; Leventakis, George; Florakis, Thodoris; Varvarigou, Theodora; Mitsokapas, Evangelos; Kioumourtzis, Georgios; Klirodetis, Petros; Psychas, Alexandros; Marinakis, Achilleas; Sfetsos, Athanasios; Koniaris, Alexios; Liapis, Dimitris; Gatzioura, Anna

doi:10.3390/inventions3040071

Cited by 10 publications

(2 citation statements)

References 26 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The governance dimension comprises 11 variables that examine relationships with external parties involved in the service (Limba et al , 2017). Within the regulation element, the variables encompass regulations about security goals, regulations governing security functions and regulations governing risk management (Moulos et al , 2018). The security standards element is represented by two variables, explicitly focusing on compliance with security function standards and adherence to applicable standards (Setiawan et al , 2015; Yamada et al , 2020).…”

Section: Resultsmentioning

confidence: 99%

Framework for critical information infrastructure protection in smart government: a case study in Indonesia

Putro,

Sensuse,

Wibowo

2023

ICS

View full text Add to dashboard Cite

Purpose This paper aims to develop a framework for critical information infrastructure (CII) protection in smart government, an alternative measure for common cybersecurity frameworks such as NIST Cybersecurity Framework and ISO 27001. Smart government is defined as the government administration sector of CII due to its similarity as a core of smart technology. Design/methodology/approach To ensure the validity of the data, the research methodology used in this paper follows the predicting malfunctions in socio-technical systems (PreMiSTS) approach, a variation of the socio-technical system (STS) approach specifically designed to predict potential issues in the STS. In this study, PreMiSTS was enriched with observation and systematic literature review as its main data collection method, thematic analysis and validation by experts using fuzzy Delphi method (FDM). Findings The proposed CII protection framework comprises several dimensions: objectives, interdependency, functions, risk management, resources and governance. For all those dimensions, there are 20 elements and 41 variables. Practical implications This framework can be an alternative guideline for CII protection in smart government, particularly in government administration services. Originality/value The author uses PreMiSTS, a socio-technical approach combined with thematic analysis and FDM, to design a security framework for CII protection. This combination was designed as a mixed-method approach to improve the likelihood of success in an IT project.

show abstract

Section: Resultsmentioning

confidence: 99%

Framework for critical information infrastructure protection in smart government: a case study in Indonesia

Putro,

Sensuse,

Wibowo

2023

ICS

View full text Add to dashboard Cite

show abstract

“…In a more general context, the tool compares any two databases that have the same schemas and highlights the differences and similarities between them. Diftong could be included in a more robust information life cycle management framework as described in [35]. Similarly by ensuring data quality, big data analytics [36] can be applied with more trust [37].…”

Section: Resultsmentioning

confidence: 99%

Diftong: a tool for validating big data workflows

et al. 2019

View full text Add to dashboard Cite

Data validation is about verifying the correctness of data. When organisations update and refine their data transformations to meet evolving requirements, it is imperative to ensure that the new version of a workflow still produces the correct output. We motivate the need for workflows and describe the implementation of a validation tool called Diftong. This tool compares two tabular databases resulting from different versions of a workflow to detect and prevent potential unwanted alterations. Row-based and column-based statistics are used to quantify the results of the database comparison. Diftong was shown to provide accurate results in test scenarios, bringing benefits to companies that need to validate the outputs of their workflows. By automating this process, the risk of human error is also eliminated. Compared to the more labourintensive manual alternative, it has the added benefit of improved turnaround time for the validation process. Together this allows for a more agile way of updating data transformation workflows.

show abstract