Security Risk Assessment of Critical Infrastructure Systems: A Comparative Study

Tweneboah-Koduah, Samuel; Buchanan, William J

doi:10.1093/comjnl/bxy002

Security Risk Assessment of Critical Infrastructure Systems: A Comparative Study

Tweneboah-Koduah, Samuel; Buchanan, William J

Authors

Samuel Tweneboah-Koduah

Prof Bill Buchanan B.Buchanan@napier.ac.uk
Professor

Abstract

Recent cyberattacks on critical infrastructure systems coupled with the technology-induced complexity of the system of systems have necessitated a review of existing methods of assessing critical systems security risk exposure. The question is; do existing security risk assessment methods adequately address the threats of modern critical infrastructure systems? Having examined six existing assessment frameworks, we argue, the complexities associated with modern critical infrastructure systems make existing methods insufficient to assess systems security risks exposure. From systems dynamics perspectives, this paper proposes a dynamic modelling approach as an alternative.

Citation

Tweneboah-Koduah, S., & Buchanan, W. J. (2018). Security Risk Assessment of Critical Infrastructure Systems: A Comparative Study. Computer Journal, 61(9), 1389-1406. https://doi.org/10.1093/comjnl/bxy002

Journal Article Type	Article
Acceptance Date	Jan 3, 2018
Online Publication Date	Feb 1, 2018
Publication Date	2018-09
Deposit Date	Jan 12, 2018
Publicly Available Date	Mar 16, 2018
Journal	The Computer Journal
Print ISSN	0010-4620
Electronic ISSN	1460-2067
Publisher	Oxford University Press
Peer Reviewed	Peer Reviewed
Volume	61
Issue	9
Pages	1389-1406
DOI	https://doi.org/10.1093/comjnl/bxy002
Keywords	General Computer Science
Public URL	http://researchrepository.napier.ac.uk/Output/1025379
Contract Date	Jan 12, 2018