{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,3,26]],"date-time":"2025-03-26T22:12:41Z","timestamp":1743027161277,"version":"3.40.3"},"publisher-location":"Cham","reference-count":26,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783030611392"},{"type":"electronic","value":"9783030611408"}],"license":[{"start":{"date-parts":[[2020,1,1]],"date-time":"2020-01-01T00:00:00Z","timestamp":1577836800000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"},{"start":{"date-parts":[[2020,1,1]],"date-time":"2020-01-01T00:00:00Z","timestamp":1577836800000},"content-version":"vor","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2020]]},"DOI":"10.1007\/978-3-030-61140-8_4","type":"book-chapter","created":{"date-parts":[[2020,10,10]],"date-time":"2020-10-10T17:02:50Z","timestamp":1602349370000},"page":"53-66","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":0,"title":["Cyber Security Resilience in Business Informatics: An Exploratory Paper"],"prefix":"10.1007","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-2599-0712","authenticated-orcid":false,"given":"Haralambos","family":"Mouratidis","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-0870-0330","authenticated-orcid":false,"given":"Jelena","family":"Zdravkovic","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-3669-832X","authenticated-orcid":false,"given":"Janis","family":"Stirna","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2020,10,11]]},"reference":[{"issue":"3","key":"4_CR1","doi-asserted-by":"publisher","first-page":"1","DOI":"10.4018\/jsse.2012070101","volume":"3","author":"S Islam","year":"2012","unstructured":"Islam, S., Mouratidis, H., Kalloniatis, C., Hudic, A., Zechner, L.: Model based process to support security and privacy requirements engineering. Int. J. Secur. Softw. Eng. (IJSSE) 3(3), 1\u201322 (2012)","journal-title":"Int. J. Secur. Softw. Eng. (IJSSE)"},{"key":"4_CR2","unstructured":"Williams, L.: Secure Software Lifecycle Knowledge Area, Issue 1, The National Cyber Security Centre (2019). https:\/\/www.cybok.org\/media\/downloads\/Secure_Software_Lifecycle_KA_-_Issue_1.0_August_2019.pdf. Accessed 28 May 2020"},{"key":"4_CR3","doi-asserted-by":"publisher","DOI":"10.1007\/s12530-020-09335-4","author":"S Papastergiou","year":"2020","unstructured":"Papastergiou, S., Mouratidis, H., Kalogeraki, E.: Handling of advanced persistent threats and complex incidents in healthcare, transportation and energy ICT infrastructures. Evol. Syst. (2020). https:\/\/doi.org\/10.1007\/s12530-020-09335-4","journal-title":"Evol. Syst."},{"key":"4_CR4","unstructured":"Ross, R., Pillitteri, V., Graubart, R., Bodeau, B., McQuaid, R.: Developing cyber resilient systems: a systems security engineering approach. SP 800\u2013160, vol. 2 (2019). https:\/\/nvlpubs.nist.gov\/nistpubs\/SpecialPublications\/NIST.SP.800-160v2.pdf. Accessed: 28 May 2020"},{"key":"4_CR5","unstructured":"NRC (National Research Council): Disaster resilience: a national imperative. The National Academies Press, Washington, DC (2012)"},{"key":"4_CR6","unstructured":"Ulrich, W., Rosen, M.: The business capability map: building a foundation for business\/IT alignment. Cut. Consort. Bus. Enterp. Arch. (2011). http:\/\/www.cutter.com\/content-and-analysis\/resource-centers\/enterprise-architecture\/sample-our-research\/ea110504.html. Accessed 28 May 2020"},{"key":"4_CR7","doi-asserted-by":"publisher","unstructured":"Zdravkovic, J., Stirna, J., Grabis, J.: A comparative analysis of using the capability notion for congruent business and information systems engineering. J. Complex Syst. Inform. Model. Q. CSIMQ (10), 1\u201320 (2017). https:\/\/doi.org\/10.7250\/csimq. Accessed 01 Oct 2017","DOI":"10.7250\/csimq"},{"key":"4_CR8","doi-asserted-by":"publisher","unstructured":"B\u0113rzi\u0161a, S., et al.: Capability driven development: an approach to designing digital enterprises. Bus. Inf. Syst. Eng. (BISE), 57(1) (2015). https:\/\/doi.org\/10.1007\/s12599-014-0362-0","DOI":"10.1007\/s12599-014-0362-0"},{"key":"4_CR9","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-90424-5","volume-title":"Capability Management in Digital Enterprises","year":"2018","unstructured":"Sandkuhl, K., Stirna, J. (eds.): Capability Management in Digital Enterprises. Springer, Cham (2018). https:\/\/doi.org\/10.1007\/978-3-319-90424-5. ISBN 978-3-319-90423-8"},{"key":"4_CR10","unstructured":"Bodeau, D., Graubart, R.: Cyber resiliency design principles. United States: The MITRE Corporation, pp. 1\u201390, January 2017. Technical report, Report No: 17-0103"},{"key":"4_CR11","doi-asserted-by":"crossref","unstructured":"Stouffer, K., Lightman, S., Pillitteri, V., Abrams, M., Hahn, A.: Guide to industrial control systems (ICS) security. NIST Special Publication 800-82 Revision 2 (2014, 2015)","DOI":"10.6028\/NIST.SP.800-82r2"},{"key":"4_CR12","doi-asserted-by":"crossref","unstructured":"Mead, N.R., Stehney, T.: Security quality requirements engineering (SQUARE) methodology. ACM SIGSOFT Softw. Eng. Notes 30(4), 1 (2005)","DOI":"10.1145\/1082983.1083214"},{"key":"4_CR13","unstructured":"Mellado, D., Fernndez-Medina, E., Piattini. M.: A common criteria based security requirements engineering process for the development of secure information systems. Comput. Stand. Interfaces 29(2), 244\u2013253 (2007)"},{"key":"4_CR14","series-title":"Lecture Notes in Computer Science (Lecture Notes in Artificial Intelligence)","doi-asserted-by":"publisher","first-page":"111","DOI":"10.1007\/978-3-642-15037-1_11","volume-title":"Knowledge Management and Acquisition for Smart Systems and Services","author":"SH Othman","year":"2010","unstructured":"Othman, S.H., Beydoun, G.: A disaster management metamodel (DMM) validated. In: Kang, B.-H., Richards, D. (eds.) PKAW 2010. LNCS (LNAI), vol. 6232, pp. 111\u2013125. Springer, Heidelberg (2010). https:\/\/doi.org\/10.1007\/978-3-642-15037-1_11"},{"key":"4_CR15","unstructured":"Sindre, G., Opdahl, A.L.: Eliciting security requirements with misuse cases. Requir. Eng. 10(1), 34\u201344 (2005)"},{"issue":"1","key":"4_CR16","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1007\/s10506-008-9067-3","volume":"17","author":"L Compagna","year":"2009","unstructured":"Compagna, L., El Khoury, P., Krausov, A., Massacci, F., Zannone, N.: How to integrate legal requirements into a requirements engineering methodology for the development of security and privacy patterns. Artifcial Intell. Law 17(1), 1\u201330 (2009)","journal-title":"Artifcial Intell. Law"},{"issue":"3","key":"4_CR17","doi-asserted-by":"publisher","first-page":"331","DOI":"10.4304\/jsw.6.3.331-339","volume":"6","author":"H Mouratidis","year":"2011","unstructured":"Mouratidis, H.: Secure software systems engineering: the Secure Tropos approach. JSW 6(3), 331\u2013339 (2011)","journal-title":"JSW"},{"key":"4_CR18","doi-asserted-by":"publisher","unstructured":"Mufti, Y., Niazi, M., Alshayeb, M., Mahmood, S.: A readiness model for security requirements engineering. IEEE Access, 1 (2018). https:\/\/doi.org\/10.1109\/access.2018.2840322","DOI":"10.1109\/access.2018.2840322"},{"key":"4_CR19","doi-asserted-by":"publisher","unstructured":"Rehman, Sh., Gruhn, V.: An effective security requirements engineering framework for cyber-physical systems. Technologies 6, 65 (2018). https:\/\/doi.org\/10.3390\/technologies6030065","DOI":"10.3390\/technologies6030065"},{"key":"4_CR20","doi-asserted-by":"publisher","unstructured":"Tran, H., Campos-Nanez, E., Fomin, P., Wasek, J.: Cyber resilience recovery model to combat zero-day malware attacks. Sci. Direct Comput. Secur. 61 (2016). https:\/\/doi.org\/10.1016\/j.cose.2016.05.001","DOI":"10.1016\/j.cose.2016.05.001"},{"key":"4_CR21","doi-asserted-by":"publisher","unstructured":"Galinec, D., Steingartner, W.: Combining cybersecurity and cyber defense to achieve cyber resilience. In: Proceedings of IEEE 14th International Scientific Conference on Informatics. IEEE (2017). https:\/\/doi.org\/10.1109\/informatics.2017.8327227","DOI":"10.1109\/informatics.2017.8327227"},{"key":"4_CR22","doi-asserted-by":"publisher","unstructured":"Gourisetti, S.N.G., et al.: Secure design and development cybersecurity capability maturity model (SD2-C2M2): next-generation cyber resilience by design. In: Proceedings of the Northwest Cybersecurity Symposium, NCS\u201919, International Conference Proceeding Series (ICPS), ACM Digital Library (2019). https:\/\/doi.org\/10.1145\/3332448.3332461","DOI":"10.1145\/3332448.3332461"},{"key":"4_CR23","series-title":"Advances in Intelligent Systems and Computing","doi-asserted-by":"publisher","first-page":"311","DOI":"10.1007\/978-3-319-16486-1_31","volume-title":"New Contributions in Information Systems and Technologies","author":"F Bj\u00f6rck","year":"2015","unstructured":"Bj\u00f6rck, F., Henkel, M., Stirna, J., Zdravkovic, J.: Cyber resilience \u2013 fundamentals for a definition. In: Rocha, A., Correia, A.M., Costanzo, S., Reis, L.P. (eds.) New Contributions in Information Systems and Technologies. AISC, vol. 353, pp. 311\u2013316. Springer, Cham (2015). https:\/\/doi.org\/10.1007\/978-3-319-16486-1_31"},{"key":"4_CR24","doi-asserted-by":"publisher","unstructured":"Haque, Md.A., Kamdem De Teyou, G., Shetty, S., Krishnappa, B.: Cyber resilience framework for industrial control systems: concepts, metrics, and insights. In: Proceedings of IEEE International Conference on Intelligence and Security Informatics Conference, ISI. IEEE (2018). https:\/\/doi.org\/10.1109\/isi.2018.8587398","DOI":"10.1109\/isi.2018.8587398"},{"key":"4_CR25","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"198","DOI":"10.1007\/978-3-319-98385-1_14","volume-title":"Trust, Privacy and Security in Digital Business","author":"M Athinaiou","year":"2018","unstructured":"Athinaiou, M., Mouratidis, H., Fotis, T., Pavlidis, M., Panaousis, E.: Towards the definition of a security incident response modelling language. In: Furnell, S., Mouratidis, H., Pernul, G. (eds.) TrustBus 2018. LNCS, vol. 11033, pp. 198\u2013212. Springer, Cham (2018). https:\/\/doi.org\/10.1007\/978-3-319-98385-1_14"},{"key":"4_CR26","series-title":"Lecture Notes in Business Information Processing","doi-asserted-by":"publisher","first-page":"193","DOI":"10.1007\/978-3-662-45501-2_14","volume-title":"The Practice of Enterprise Modeling","author":"J Zdravkovic","year":"2014","unstructured":"Zdravkovic, J., Stirna, J., Kuhr, J.-C., Ko\u00e7, H.: Requirements engineering for capability driven development. In: Frank, U., Loucopoulos, P., Pastor, \u00d3., Petrounias, I. (eds.) PoEM 2014. LNBIP, vol. 197, pp. 193\u2013207. Springer, Heidelberg (2014). https:\/\/doi.org\/10.1007\/978-3-662-45501-2_14"}],"container-title":["Lecture Notes in Business Information Processing","Perspectives in Business Informatics Research"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-030-61140-8_4","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2021,4,24]],"date-time":"2021-04-24T07:01:48Z","timestamp":1619247708000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-030-61140-8_4"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2020]]},"ISBN":["9783030611392","9783030611408"],"references-count":26,"URL":"https:\/\/doi.org\/10.1007\/978-3-030-61140-8_4","relation":{},"ISSN":["1865-1348","1865-1356"],"issn-type":[{"type":"print","value":"1865-1348"},{"type":"electronic","value":"1865-1356"}],"subject":[],"published":{"date-parts":[[2020]]},"assertion":[{"value":"11 October 2020","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"BIR","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on Business Informatics Research","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Vienna","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Austria","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2020","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"21 September 2020","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"23 September 2020","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"19","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"bir2020","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/bir2020.omilab.org\/home","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Single-blind","order":1,"name":"type","label":"Type","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"EasyChair","order":2,"name":"conference_management_system","label":"Conference Management System","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"48","order":3,"name":"number_of_submissions_sent_for_review","label":"Number of Submissions Sent for Review","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"14","order":4,"name":"number_of_full_papers_accepted","label":"Number of Full Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"0","order":5,"name":"number_of_short_papers_accepted","label":"Number of Short Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"29% - The value is computed by the equation \"Number of Full Papers Accepted \/ Number of Submissions Sent for Review * 100\" and then rounded to a whole number.","order":6,"name":"acceptance_rate_of_full_papers","label":"Acceptance Rate of Full Papers","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"3","order":7,"name":"average_number_of_reviews_per_paper","label":"Average Number of Reviews per Paper","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"3","order":8,"name":"average_number_of_papers_per_reviewer","label":"Average Number of Papers per Reviewer","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"No","order":9,"name":"external_reviewers_involved","label":"External Reviewers Involved","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"The conference was postponed to be held together with BIR 2021 due to the COVID-19 pandemic.","order":10,"name":"additional_info_on_review_process","label":"Additional Info on Review Process","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}}]}}