Options
An adaptive supply chain cyber risk management methodology
Citation Link: https://doi.org/10.15480/882.1491
Publikationstyp
Conference Paper
Date Issued
2017-10
Sprache
English
TORE-DOI
First published in
Number in series
23
Start Page
405
End Page
425
Citation
Hamburg International Conference of Logistics (HICL): 23 (2017)
Contribution to Conference
Publisher
epubli
ISBN
978-3-7450-4328-0
Maritime information infrastructures have developed to highly interrelated cyber ecosystems, where ports as well as their partners are connected in dynamic Information and Communication Technology (ICT)-based maritime supply chains. This makes them open and vulnerable to the rapidly changing ICT threat landscape. Hence, attacks on a seemingly isolated system of one business partner may propagate through the whole supply chain, causing cascading effects and resulting in large-scale impacts. In this article, we want to present a novel risk management methodology to assess the risk level of an entire maritime supply chain. This methodology builds upon publicly available information, well-defined mathematical approaches and best practices to automatically identify and assess vulnerabilities and potential threats of the involved cyber assets. This leads to a constantly updated risk evaluation of each business partner’s cyber assets together with their cyber interconnections with other business partners. The presented risk management methodology is based on qualitative risk scales, which makes the assessment as well as the results more intuitive. Furthermore, it enables a holistic view on all of the integrated ICT-systems as well as their interdependencies and thus can increase the security level of both a whole supply chain and every participating business partner.
Subjects
IT security
cyber risk management
cyber risk assessment
maritime supply chains
DDC Class
330: Wirtschaft
Loading...
Name
schauer_stamer_bosse_pavlidis_mouratidis_könig_papastergiou_cyber_risk_management_hicl_2017.pdf
Size
1.12 MB
Format
Adobe PDF