Future developments in standardisation of cyber risk in the Internet of Things (IoT)

29 Apr 2020  ·  Radanliev Petar, De Roure David C, Nurse Jason RC, Montalvo Rafael Mantilla, Cannady Stacy, Santos Omar, Burnap Peter, Maple Carsten ·

In this research article, we explore the use of a design process for adapting existing cyber risk assessment standards to allow the calculation of economic impact from IoT cyber risk. The paper presents a new model that includes a design process with new risk assessment vectors, specific for IoT cyber risk. To design new risk assessment vectors for IoT, the study applied a range of methodologies, including literature review, empirical study and comparative study, followed by theoretical analysis and grounded theory. An epistemological framework emerges from applying the constructivist grounded theory methodology to draw on knowledge from existing cyber risk frameworks, models and methodologies. This framework presents the current gaps in cyber risk standards and policies, and defines the design principles of future cyber risk impact assessment. The core contribution of the article therefore, being the presentation of a new model for impact assessment of IoT cyber risk.

PDF Abstract
No code implementations yet. Submit your code now

Categories


Computers and Society

Datasets


  Add Datasets introduced or used in this paper