A conceptual redesign of a modelling language for cyber resiliency of healthcare systems

Research output: Chapter in Book/Conference proceeding with ISSN or ISBNConference contribution with ISSN or ISBN

Abstract

Security constraints that enforce security requirements characterize healthcare systems. These constraints have a substantial impact on the resiliency of the final system. Security requirements modelling approaches allow the prevention of cyber incidents; however, the focus to date has been on prevention rather than resiliency. Resiliency extends into the detection, mitigation and recovery after security violations. In this paper, we propose an enhanced at a conceptual level that attempts to align cybersecurity with resiliency. It does so by extending the Secure Tropos cybersecurity modelling language to include resiliency. The proposed conceptual model examines resiliency from three viewpoints, namely the security requirements, the healthcare context and its implementational capability. We present an overview of our conceptual model of a cyber resiliency language and discuss a case study to attest the healthcare context in our approach.
Original languageEnglish
Title of host publication3rd International Workshop on Security and Privacy Requirements Engineering SECPRE 2019
Subtitle of host publicationIn conjunction with ESORICS 2019
PublisherSpringer
Publication statusPublished - 26 Sep 2019

Publication series

Name Lecture Notes in Computer Science
PublisherSpringer
ISSN (Print)0302-9743

Fingerprint

Recovery
Modeling languages

Keywords

  • security

Cite this

Athinaiou, M., Mouratidis, H., Fotis, T., & Pavlidis, M. (2019). A conceptual redesign of a modelling language for cyber resiliency of healthcare systems. In 3rd International Workshop on Security and Privacy Requirements Engineering SECPRE 2019: In conjunction with ESORICS 2019 ( Lecture Notes in Computer Science). Springer.
Athinaiou, Myrsini ; Mouratidis, Haris ; Fotis, Theo ; Pavlidis, Michalis. / A conceptual redesign of a modelling language for cyber resiliency of healthcare systems. 3rd International Workshop on Security and Privacy Requirements Engineering SECPRE 2019: In conjunction with ESORICS 2019. Springer, 2019. ( Lecture Notes in Computer Science).
@inproceedings{da5fe295cf424f65b94960dd71e62c86,
title = "A conceptual redesign of a modelling language for cyber resiliency of healthcare systems",
abstract = "Security constraints that enforce security requirements characterize healthcare systems. These constraints have a substantial impact on the resiliency of the final system. Security requirements modelling approaches allow the prevention of cyber incidents; however, the focus to date has been on prevention rather than resiliency. Resiliency extends into the detection, mitigation and recovery after security violations. In this paper, we propose an enhanced at a conceptual level that attempts to align cybersecurity with resiliency. It does so by extending the Secure Tropos cybersecurity modelling language to include resiliency. The proposed conceptual model examines resiliency from three viewpoints, namely the security requirements, the healthcare context and its implementational capability. We present an overview of our conceptual model of a cyber resiliency language and discuss a case study to attest the healthcare context in our approach.",
keywords = "security",
author = "Myrsini Athinaiou and Haris Mouratidis and Theo Fotis and Michalis Pavlidis",
year = "2019",
month = "9",
day = "26",
language = "English",
series = "Lecture Notes in Computer Science",
publisher = "Springer",
booktitle = "3rd International Workshop on Security and Privacy Requirements Engineering SECPRE 2019",

}

Athinaiou, M, Mouratidis, H, Fotis, T & Pavlidis, M 2019, A conceptual redesign of a modelling language for cyber resiliency of healthcare systems. in 3rd International Workshop on Security and Privacy Requirements Engineering SECPRE 2019: In conjunction with ESORICS 2019. Lecture Notes in Computer Science, Springer.

A conceptual redesign of a modelling language for cyber resiliency of healthcare systems. / Athinaiou, Myrsini; Mouratidis, Haris; Fotis, Theo; Pavlidis, Michalis.

3rd International Workshop on Security and Privacy Requirements Engineering SECPRE 2019: In conjunction with ESORICS 2019. Springer, 2019. ( Lecture Notes in Computer Science).

Research output: Chapter in Book/Conference proceeding with ISSN or ISBNConference contribution with ISSN or ISBN

TY - GEN

T1 - A conceptual redesign of a modelling language for cyber resiliency of healthcare systems

AU - Athinaiou, Myrsini

AU - Mouratidis, Haris

AU - Fotis, Theo

AU - Pavlidis, Michalis

PY - 2019/9/26

Y1 - 2019/9/26

N2 - Security constraints that enforce security requirements characterize healthcare systems. These constraints have a substantial impact on the resiliency of the final system. Security requirements modelling approaches allow the prevention of cyber incidents; however, the focus to date has been on prevention rather than resiliency. Resiliency extends into the detection, mitigation and recovery after security violations. In this paper, we propose an enhanced at a conceptual level that attempts to align cybersecurity with resiliency. It does so by extending the Secure Tropos cybersecurity modelling language to include resiliency. The proposed conceptual model examines resiliency from three viewpoints, namely the security requirements, the healthcare context and its implementational capability. We present an overview of our conceptual model of a cyber resiliency language and discuss a case study to attest the healthcare context in our approach.

AB - Security constraints that enforce security requirements characterize healthcare systems. These constraints have a substantial impact on the resiliency of the final system. Security requirements modelling approaches allow the prevention of cyber incidents; however, the focus to date has been on prevention rather than resiliency. Resiliency extends into the detection, mitigation and recovery after security violations. In this paper, we propose an enhanced at a conceptual level that attempts to align cybersecurity with resiliency. It does so by extending the Secure Tropos cybersecurity modelling language to include resiliency. The proposed conceptual model examines resiliency from three viewpoints, namely the security requirements, the healthcare context and its implementational capability. We present an overview of our conceptual model of a cyber resiliency language and discuss a case study to attest the healthcare context in our approach.

KW - security

M3 - Conference contribution with ISSN or ISBN

T3 - Lecture Notes in Computer Science

BT - 3rd International Workshop on Security and Privacy Requirements Engineering SECPRE 2019

PB - Springer

ER -

Athinaiou M, Mouratidis H, Fotis T, Pavlidis M. A conceptual redesign of a modelling language for cyber resiliency of healthcare systems. In 3rd International Workshop on Security and Privacy Requirements Engineering SECPRE 2019: In conjunction with ESORICS 2019. Springer. 2019. ( Lecture Notes in Computer Science).