Supply Chain Cyber-Resilience: Creating an Agenda for Future Research

Khan, Omera; Estay, Daniel Alberto Sepúlveda

doi:10.22215/timreview885

Cited by 10 publications

(10 citation statements)

References 0 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In both cases, Boyes (2015) and Khan and Estay (2015) are not dealing with port or maritime supply chain, but their conclusions and recommendations are valid for our study. Vessels, along with ports, are susceptible to attacks, especially in navigation and identification systems (Newberry, 2014), because these systems are more integrated and complex (Odderstol, 2014).…”

Section: Introductionmentioning

confidence: 70%

“…Cyber security of the entire supply chain is also a rising risk (Polemi and Papastergiou, 2015). In fact, the research from Khan and Estay (2015) has identified that cyber resilience and cyber risk is a complete new topic in the supply chain research agenda. One of their main conclusion points was that there are no specific frameworks to deal with cyber resilience problems in this industry and thus, they provide relevant insights for both academicians and industry members to tackle the problems of cyberattacks.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Cyberattacks on ships: a wicked problem approach

Mileski

Clott

Galvão

2018

MABR

View full text Add to dashboard Cite

Purpose The maritime industry is increasingly impacted by the Internet of things (IoT) through the automation of ships and port activities. This increased automation creates new security vulnerabilities for the maritime industry in cyberspace. Any obstruction in the global supply chain due to a cyberattack can cause catastrophic problems in the global economy. This paper aims to review automatic identification systems (AISs) aboard ships for cyber issues and weaknesses. Design/methodology/approach The authors do so by comparing the results of two receiver systems of the AIS in the Port of Houston; the JAMSS system aboard the Space Station and the “Harborlights” system for traffic control in the Port. Findings The authors find that inconsistent information is presented on the location of same ships at the same time in the Port. Upon further investigation with pilots, the authors find that these inconsistencies may be the result of the strength of power with which an AIS is transmitted. It appears the power may be reduced to the AIS in port but that it varies within port and varies by pilot operators. This practice may open the AIS system for tampering. Originality/value Further, this inconsistency may require further policy regulation to properly address cyber information in a port.

show abstract

Section: Introductionmentioning

confidence: 70%

Section: Introductionmentioning

confidence: 99%

Cyberattacks on ships: a wicked problem approach

Mileski

Clott

Galvão

2018

MABR

View full text Add to dashboard Cite

show abstract

“…This problem is easily remedied, but it is a reflection of other organizational shortcomings in the workforce. Khan et al (2015) notes that the weak links in supply chains are often subject to attack. By analyzed the literature to identify if supply chain models can incorporate "cyber-resilience," they provided recommendations for practice as well as a number of research directions for identifying and securing against cyber-risk in supply chains [37].…”

Section: Privatementioning

confidence: 99%

Improving Interdisciplinary Communication With Standardized Cyber Security Terminology: A Literature Review

Ramirez

Choucri

2016

IEEE Access

View full text Add to dashboard Cite

The growing demand for computer security and the cyberization trend are hallmarks of the 21 st century. The rise in cyber-crime, digital currency, e-governance, and more, is well met by a corresponding recent jump in investment in new technology for securing computers around the globe. Recently, business and government sectors have begun to focus efforts on comprehensive cyber security solutions. With this growth has emerged the need for greater methods of collaboration and measurement of security. Despite all these efforts, this need has not been met, and there is still too little crossdisciplinary collaboration in the realm of computer security. This paper reviews the new trends in cyber security research, their contributions, and some identifiable limitations. We argue that these limitations are due largely to the absence of cooperation required to address a problem that is clearly multifaceted. We then identify a need for further standardization of terminology in computer security and propose guidelines for the global Internet multistakeholder community to consider when crafting such standards. We also assess the viability of some specific terms, including whether cyber should be used as a separate word when it is a descriptor (e.g. cyber security or cybersecurity), and conclude with recommendations for writing future papers on cyber security or the broader new field of all things relating to cyberspace, which has recently been dubbed Cybermatics, a term we also examine and propose alternatives to, like Cyber or Cybernomics. By furthering the effort of standardizing cyber security terminology, this paper lays groundwork for cross-disciplinary collaboration, agreement between technical and nontechnical stakeholders, and the drafting of universal Internet governance laws.

show abstract

“…The growing complexity of supply chains, as well as an increasing sophistication in cyber-attacks, suggests that companies must prepare "for the inevitable" [2]. Consequently, it has been suggested that research focus in the area should lean more towards how to build cyberresilient supply chains [3].…”

Section: Introductionmentioning

confidence: 99%

“…However, supply chain cyber risk management is a relatively novel field with only few frameworks available that have been specifically adapted and/or validated for the management of this kind of risks in the supply chain [3], [4].…”

Section: Introductionmentioning

confidence: 99%

An Impact-wave Analogy for Managing Cyber Risks in Supply Chains

Guerra

Estay

2018

2018 IEEE International Conference on Industrial Engineering and Engineering Management (IEEM)

View full text Add to dashboard Cite

 Users may download and print one copy of any publication from the public portal for the purpose of private study or research.  You may not further distribute the material or use it for any profit-making activity or commercial gain  You may freely distribute the URL identifying the publication in the public portal If you believe that this document breaches copyright please contact us providing details, and we will remove access to the work immediately and investigate your claim.

show abstract

Supply Chain Cyber-Resilience: Creating an Agenda for Future Research

Cited by 10 publications

References 0 publications

Cyberattacks on ships: a wicked problem approach

Cyberattacks on ships: a wicked problem approach

Improving Interdisciplinary Communication With Standardized Cyber Security Terminology: A Literature Review

An Impact-wave Analogy for Managing Cyber Risks in Supply Chains

Contact Info

Product

Resources

About