Abstract
): Today, the built environment is designed, built, and managed using digital technology, making it increasingly exposed to cyber security risks. Cybersecurity is a general topic, and the construction sector has been borrowing general solutions and frameworks. However, the construction industry is specific and needs a specialized framework that would assist in understanding and managing cybersecurity. We have studied general cybersecurity frameworks, cybersecurity standards, research literature, and first principles of systems theory and process engineering. Drawing from that, we developed an original framework that identifies three kinds of wrongful activities: stealing, lying, and harming. It identifies four elements that can be affected by wrongful activities: information asset, material asset, person, and system. It defines cybersecurity as the absence of the three wrongs across the four kinds of elements. The framework is construction-specific, and as such, a useful tool for senior management to understand security problems and organize security processes. It can lead to better standardization and also helps the researchers to structure future work on the topic. The latter should be concentrated in areas where construction was found to be different: the dynamic and overlapping process and organizational boundaries in the design stage, the exposed shared design information, and the vulnerability of control information of the built environment, particularly in critical infrastructures.
Keywords
BIM;gradbeništvo 4.0;kibernetska varnost;kibernetsko fizični sistemi;digitalizacija;digitalni dvojček;construction 4.0;cybersecurity;cyber-physical systems;digitalization;digital twins;
Data
Language: |
English |
Year of publishing: |
2022 |
Typology: |
1.01 - Original Scientific Article |
Organization: |
UL FGG - Faculty of Civil and Geodetic Engineering |
UDC: |
004:624 |
COBISS: |
115454467
|
ISSN: |
0926-5805 |
Views: |
89 |
Downloads: |
36 |
Average score: |
0 (0 votes) |
Metadata: |
|
Other data
Secondary language: |
Slovenian |
Secondary title: |
Sistemski okvir za naslavljanje kibernetske varnosti v gradbeništvu |
Secondary abstract: |
Grajeno okolje se danes načrtuje, gradi in upravlja z digitalno tehnologijo, zato je vedno bolj izpostavljeno tveganjem kibernetske varnosti. Kibernetska varnost je splošna tema, gradbeni sektor pa si izposoja splošne rešitve in okvire. Vendar je gradbeništvo specifično in potrebuje specializiran okvir, ki bi pomagal pri razumevanju in upravljanju kibernetske varnosti. Preučili smo splošne okvire kibernetske varnosti, standarde kibernetske varnosti, raziskovalno literaturo ter prva načela teorije sistemov in procesov inženirstva. Na podlagi tega smo razvili izvirni okvir, ki opredeljuje tri vrste napačnih dejavnosti: krajo, laganje in škodovanje. Opredeljuje štiri elemente, na katere lahko vplivajo nezakonite dejavnosti: informacijsko sredstvo, materialno sredstvo, osebo in sistem. Kibernetsko varnost opredeljuje kot odsotnost treh krivdnih dejanj v vseh štirih vrstah elementov. Okvir je specifičen za gradbeništvo in kot tak uporabno orodje za višje vodstvo za razumevanje varnostnih problemov in organizacijo varnostnih procesov. Pripelje lahko do boljše standardizacije, raziskovalcem pa pomaga tudi pri strukturiranju prihodnjega dela na to temo. Slednje je treba osredotočiti na področja, na katerih je bilo ugotovljeno, da se gradnja razlikuje: dinamični in prekrivajoči se proces in organizacijske meje v fazi projektiranja, izpostavljene skupne informacije o projektiranju in ranljivost nadzornih informacij grajenega okolja, zlasti v kritičnih infrastrukturah. |
Secondary keywords: |
BIM;gradbeništvo 4.0;kibernetska varnost;kibernetsko fizični sistemi;digitalizacija;digitalni dvojček; |
Type (COBISS): |
Article |
Pages: |
14 str. |
Issue: |
ǂVol. ǂ133, art. 103988 |
Chronology: |
Jan. 2022 |
DOI: |
10.1016/j.autcon.2021.103988 |
ID: |
16006741 |