Cyber Security of an Electric Power System in Critical Infrastructure

Pöyhönen, Jouni

doi:10.1007/978-3-030-91293-2_9

Cited by 3 publications

(7 citation statements)

References 4 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Based on our previous articles (Pöyhönen and Lehto, 2017;Pöyhönen, 2022), the concept of national critical infrastructure can be simplified in accordance with three essential system layers. At the base layer is the electricity network, above that is the information network layer, and above these are services.…”

Section: Support Systemsmentioning

confidence: 99%

“…In system-of-systems thinking, their digital structure and operational role should be identified as part of a port entity and part of reliable functioning in and between these layers. This also facilitates the identification of cyber dependencies within the layers so that the cyber threat intelligence can be carried out with the most efficient and practical measures (Pöyhönen and Lehto, 2017;Pöyhönen, 2022).…”

Section: Cyber Threat Intelligencementioning

confidence: 99%

“…The risk management process work should cover all three levels mentioned above in the five-layer cyber structure as well as in all of an organization's decision levels (Pöyhönen and Lehto, 2017;Pöyhönen, 2022). The risk assessment of each layer separately cannot address emerging threats associated with the interconnection of layers.…”

Section: Risk Management Processmentioning

confidence: 99%

See 2 more Smart Citations

Comprehensive cyber security for port and harbor ecosystems

Pöyhönen,

Lehto

2023

Front. Comput. Sci.

Self Cite

View full text Add to dashboard Cite

Global maritime transportation and logistics systems are essential parts of critical infrastructures in every society, and a crucial part of maritime logistics processes are seaports. In the coming years, digitalization and increased levels of autonomy in logistic transport chains are expected to take leaps forward. This development can help create safer, more efficient, more sustainable, and more reliable service chains to meet the requirements for a better quality of life and global prosperity. Port and harbor operations connect the maritime transport to other modes of transportation and enable multimodal transportation. Smart ports play a central role in future transport logistics and supply chains. Digitalization helps improve the efficiency of terminal systems in the processes of these ports. In the best cases, digitalization can also promote the reduction of emissions by optimizing port operations and enhancing cargo and people flows while improving the experience for all stakeholders. The improvement of port processes relies on the development of information and communication technology (ICT) as well as on industrial control systems (ICS) and operation technologies (OT). At the same time, the cyber security of maritime logistics also needs to be addressed. This article presents our findings related to the Sea4Value research goal on cyber security, which is a comprehensive cyber security architecture for port services at the system level. The article emphasizes the importance of a system of systems approach in terms of a comprehensive cyber security management process for port ecosystems. The description and recognition of management steps of every stakeholder are the key elements in this kind of process.

show abstract

Section: Support Systemsmentioning

confidence: 99%

Section: Cyber Threat Intelligencementioning

confidence: 99%

Section: Risk Management Processmentioning

confidence: 99%

See 1 more Smart Citation

Comprehensive cyber security for port and harbor ecosystems

Pöyhönen,

Lehto

2023

Front. Comput. Sci.

Self Cite

View full text Add to dashboard Cite

show abstract

“…In this case, the functions may be, for example, the management and administration of cyber security or the technical development, maintenance or use of information systems, information networks and ICT services. (Pöyhönen, 2020) Many organizations' cyber security activities continue to be characterized by a responsive approach, with hospitals being no exception. A responsive approach means that in the event of a cyber-attack, and the action are quick conclusions and urgent measures.…”

Section: Insider Threatsmentioning

confidence: 99%

“…Developing cyber security using best practices creates for the hospital proactive methods instead reactive actions. (Pöyhönen, 2020) NIST Framework for Improving Critical Infrastructure Cybersecurity provides a common language for understanding, managing, and expressing cybersecurity risk to internal and external stakeholders. It can be used to help identify and prioritize actions for reducing cybersecurity risk, and it is a tool for aligning policy, business, and technological approaches to managing that risk.…”

Section: Insider Threatsmentioning

confidence: 99%

Cyber Security in Healthcare Systems

Lehto

Neittaanmäki

Pöyhönen

et al. 2022

Computational Methods in Applied Sciences

View full text Add to dashboard Cite

Healthcare is a good example of a structure whose complexity has been shaped by the general rapid development of technology and digitalization. The digital development has made it possible to provide services in new ways and more widely than before, in particular with information networks. The healthcare information environment currently consists of a networked entity consisting of various ICT systems, medical devices, and clinical systems, which consists of an open system structure. Digitalized functions and services are becoming more common in social welfare and healthcare. Their operational reliability must be ensured during incidents and emergencies.Although the digital world offers good opportunities to improve healthcare systems and make disease analyses more effective, we must look deeper into the issue. Devices and information systems may not work well together, and we have vulnerabilities in people, processes and technology. So, a comprehensive approach to healthcare cyber security is needed.

show abstract

Assessment of Cyber Security risks: A Smart Terminal Process

Pöyhönen

2023

eccws

View full text Add to dashboard Cite

In Finland, the connections to global maritime transportation logistics systems are an essential part of the national critical infrastructure. As a part of maritime logistics systems, the port's operations are important elements for global maritime traffic and the transportation supply chain. Digitalization of seaport services makes it possible to increase the efficiency of terminal systems in the logistic processes. At the same time, port logistic processes can notably reduce its CO2 emissions by optimizing port operations. The improvement of port processes relies very much on the development of Information and Communication Technology (ICT) and Industrial Control Systems (ICS) or Operation Technologies (OT) systems. In port environment there are parts that are controlled (ICS/OT) from the cyber environment but directly interact with the physical surroundings. These are called Cyber-Physical Systems (CPS). In this environment, the cyber security aspects of the port logistic need to be addressed. In Finland, the Port SMARTER research program has been on the way since 2021. The aim of the program is to create port services within new technology solutions, and that way improve cargo and people flows while improving the experience for all stakeholders. However, this development increase also complicated system dimensions in the use of ports and makes port operations complex systems of systems environment characterized by a conglomeration of interconnected networks and dependencies. This paper describes a practical approach to risk assessment work regarding the SMARTER research case. It provides a comprehensive cyber security investigation approach to port operations at the system level. In risk assessment work, the paper emphasizes the importation of description of probabilities to defend the system element against estimated probabilities of cyber-attacks at all parts of port processes. The findings of the study are related to the comprehensive cyber security architecture of the SMARTER research goals. The following research interests are related to the issue: "How a comprehensive cyber security investigation can be conducted in smart ports operations?” This paper emphasizes cyber security risks assessment work should be covered from services for operation, information flows in and between systems, as well as electricity supplies to achieve holistic risks assessment in the smart terminal process.

show abstract

Cyber Security of an Electric Power System in Critical Infrastructure

Cited by 3 publications

References 4 publications

Comprehensive cyber security for port and harbor ecosystems

Comprehensive cyber security for port and harbor ecosystems

Cyber Security in Healthcare Systems

Assessment of Cyber Security risks: A Smart Terminal Process

Contact Info

Product

Resources

About