{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,4,22]],"date-time":"2026-04-22T22:45:55Z","timestamp":1776897955230,"version":"3.51.2"},"publisher-location":"Cham","reference-count":38,"publisher":"Springer Nature Switzerland","isbn-type":[{"value":"9783032195395","type":"print"},{"value":"9783032195401","type":"electronic"}],"license":[{"start":{"date-parts":[[2026,1,1]],"date-time":"2026-01-01T00:00:00Z","timestamp":1767225600000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2026,1,1]],"date-time":"2026-01-01T00:00:00Z","timestamp":1767225600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2026]]},"DOI":"10.1007\/978-3-032-19540-1_18","type":"book-chapter","created":{"date-parts":[[2026,4,22]],"date-time":"2026-04-22T22:27:43Z","timestamp":1776896863000},"page":"347-366","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":0,"title":["A Multi-dimensional Cyber Range-Powered Scoring Framework for Evaluating Cyber Resilience of Critical Infrastructures"],"prefix":"10.1007","author":[{"ORCID":"https:\/\/orcid.org\/0009-0005-6916-2870","authenticated-orcid":false,"given":"Savvas","family":"Theodoulou","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-4040-4942","authenticated-orcid":false,"given":"Eliana","family":"Stavrou","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-1273-8910","authenticated-orcid":false,"given":"Adamantini","family":"Peratikou","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-3189-9421","authenticated-orcid":false,"given":"Stavros","family":"Stavrou","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2026,4,1]]},"reference":[{"key":"18_CR1","unstructured":"NIS Cooperation Group: Annual report NIS Directive incidents 2024. CG Publication, European Commission, Brussels (2025). https:\/\/ec.europa.eu\/newsroom\/repository\/document\/2025-31\/Annual_Report_NISD_Security_Incidents_2024_lLl8Yt8at5UKGOymYgsc0rxZrpQ_118680.pdf"},{"key":"18_CR2","doi-asserted-by":"publisher","unstructured":"National Institute of Standards and Technology (NIST): NIST Special Publication 800-160, Volume 2: Developing cyber resilient systems \u2013 A systems security engineering approach. U.S. Department of Commerce, Gaithersburg (2021). https:\/\/doi.org\/10.6028\/NIST.SP.800-160v2","DOI":"10.6028\/NIST.SP.800-160v2"},{"key":"18_CR3","doi-asserted-by":"publisher","DOI":"10.1016\/j.cie.2020.106829","volume":"149","author":"A Annarelli","year":"2020","unstructured":"Annarelli, A., Nonino, F., Palombi, G.: Understanding the management of cyber resilient systems. Comput. Ind. Eng. 149, 106829 (2020). https:\/\/doi.org\/10.1016\/j.cie.2020.106829","journal-title":"Comput. Ind. Eng."},{"key":"18_CR4","doi-asserted-by":"publisher","first-page":"236","DOI":"10.1007\/s11036-019-01442-0","volume":"25","author":"M Andreolini","year":"2020","unstructured":"Andreolini, M., Colacino, V.G., Colajanni, M., et al.: A framework for the evaluation of trainee performance in cyber range exercises. Mob. Netw. Appl. 25, 236\u2013247 (2020). https:\/\/doi.org\/10.1007\/s11036-019-01442-0","journal-title":"Mob. Netw. Appl."},{"key":"18_CR5","doi-asserted-by":"publisher","unstructured":"Peratikou, A., Stavrou, S.: On corporate resilience in the face of data breaches and the preventative power of awareness training. In: 2025 Information Science Frontier Forum and the Academic Conference on Information Security and Intelligent Control (ISF), pp. 1\u20137. IEEE (2025). https:\/\/doi.org\/10.1109\/ISF65011.2025.11047327","DOI":"10.1109\/ISF65011.2025.11047327"},{"key":"18_CR6","doi-asserted-by":"publisher","DOI":"10.1016\/j.ijcip.2021.100503","volume":"36","author":"P Chatzis","year":"2022","unstructured":"Chatzis, P., Stavrou, E.: Cyber-threat landscape of border control infrastructures. Int. J. Crit. Infrastruct. Prot. 36, 100503 (2022). https:\/\/doi.org\/10.1016\/j.ijcip.2021.100503","journal-title":"Int. J. Crit. Infrastruct. Prot."},{"key":"18_CR7","unstructured":"Toregas, C., Santos, J.R.: Cybersecurity and its cascading effect on societal systems. Cybersecurity and Privacy Research Institute, George Washington University (2018)"},{"key":"18_CR8","doi-asserted-by":"publisher","unstructured":"Damianou, A., Mazi, M.S., Rizos, G., Voulgaridis, A., Votis, K.: Situational awareness scoring system in cyber range platforms. In: IEEE International Conference on Cyber Security and Resilience (CSR), pp. 520\u2013527 (2024). https:\/\/doi.org\/10.1109\/CSR61664.2024.10679451","DOI":"10.1109\/CSR61664.2024.10679451"},{"key":"18_CR9","doi-asserted-by":"publisher","unstructured":"Russo, E., Ribaudo, M., Orlich, A., Longo, G., Armando, A.: Cyber range and cyber defense exercises: gamification meets university students. In: ITiCSE 2023, pp. 29\u201336 (2023). https:\/\/doi.org\/10.1145\/3617553.3617888","DOI":"10.1145\/3617553.3617888"},{"key":"18_CR10","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2019.101636","volume":"88","author":"MM Yamin","year":"2019","unstructured":"Yamin, M.M., Katt, B., Gkioulos, V.: Cyber ranges and security testbeds: scenarios, functions, tools and architecture. Comput. Secur. 88, 101636 (2019). https:\/\/doi.org\/10.1016\/j.cose.2019.101636","journal-title":"Comput. Secur."},{"key":"18_CR11","doi-asserted-by":"publisher","DOI":"10.1016\/j.cosrev.2021.100361","volume":"40","author":"N Chowdhury","year":"2021","unstructured":"Chowdhury, N., Gkioulos, V.: Cyber security training for critical infrastructure protection: a literature review. Comput. Sci. Rev. 40, 100361 (2021). https:\/\/doi.org\/10.1016\/j.cosrev.2021.100361","journal-title":"Comput. Sci. Rev."},{"key":"18_CR12","doi-asserted-by":"publisher","unstructured":"Abrahams, T.O., Farayola, O.A., Kaggwa, S., Uwaoma, P.U., Hassan, A.O., Dawodu, S.O.: Cybersecurity awareness and education programs: a review of employee engagement and accountability. Comput. Sci. IT Res. J. 5(1), 100 (2024). https:\/\/doi.org\/10.51594\/csitrj.v5i1.708","DOI":"10.51594\/csitrj.v5i1.708"},{"key":"18_CR13","doi-asserted-by":"publisher","unstructured":"Piki, A., Stavrou, E., Procopiou, A., Demosthenous, A.: Fostering cybersecurity awareness and skills development through digital game-based learning. In: 2023 10th International Conference on Behavioural and Social Computing (BESC), Larnaca, pp. 1\u20139. IEEE (2023). https:\/\/doi.org\/10.1109\/BESC59560.2023.10386988","DOI":"10.1109\/BESC59560.2023.10386988"},{"key":"18_CR14","doi-asserted-by":"publisher","unstructured":"Pappas, G., Peratikou, P., Siegel, J., Politopoulos, K., Christodoulides, C., Stavrou, S.: Cyber escape room: an educational 3D escape room game within a cyber range training realm. In: INTED2020 Proceedings, pp. 2621\u20132627 (2020). https:\/\/doi.org\/10.21125\/inted.2020.0788","DOI":"10.21125\/inted.2020.0788"},{"key":"18_CR15","doi-asserted-by":"publisher","unstructured":"\u0160v\u00e1bensk\u00fd, V., Vykopal, J., \u010cerm\u00e1k, M., La\u0161tovi\u010dka, M.: Enhancing cybersecurity skills by creating serious games. In: ITiCSE 2018, pp. 192\u2013197 (2018). https:\/\/doi.org\/10.1145\/3197091.3197123","DOI":"10.1145\/3197091.3197123"},{"key":"18_CR16","unstructured":"Petullo, W.M., Moses, K.V., Klimkowski, B., Hand, R., Olson, K.: The use of cyber-defense exercises in undergraduate computing education. In: USENIX Workshop on Advances in Security Education (ASE 2016) (2016)"},{"key":"18_CR17","doi-asserted-by":"publisher","unstructured":"Somarakis, I., Smyrlis, M., Fysarakis, K., Spanoudakis, G.: Model-driven cyber range training: a cyber security assurance perspective. In: Fournaris, A., et al. (eds.) IOSEC MSTEC FINSEC 2019 2019 2019. LNCS, vol. 11981, pp. 172\u2013184. Springer, Cham (2020). https:\/\/doi.org\/10.1007\/978-3-030-42051-2_12","DOI":"10.1007\/978-3-030-42051-2_12"},{"issue":"8","key":"18_CR18","doi-asserted-by":"publisher","first-page":"3425","DOI":"10.1109\/TVCG.2020.2977336","volume":"27","author":"R O\u0161lej\u0161ek","year":"2021","unstructured":"O\u0161lej\u0161ek, R., Rus\u0148\u00e1k, V., Bursk\u00e1, K.D., \u0160v\u00e1bensk\u00fd, V., Vykopal, J., \u010cegan, J.: Conceptual model of visual analytics for hands-on cybersecurity training. IEEE Trans. Vis. Comput. Graph. 27(8), 3425\u20133438 (2021). https:\/\/doi.org\/10.1109\/TVCG.2020.2977336","journal-title":"IEEE Trans. Vis. Comput. Graph."},{"key":"18_CR19","doi-asserted-by":"publisher","unstructured":"O\u0161lej\u0161ek, R., Vykopal, J., Bursk\u00e1, K.D., Rus\u0148\u00e1k, V.: Evaluation of cyber defense exercises using visual analytics process. In: 2018 IEEE Frontiers in Education Conference (FIE), pp. 1\u20139 (2018). https:\/\/doi.org\/10.1109\/FIE.2018.8659299","DOI":"10.1109\/FIE.2018.8659299"},{"key":"18_CR20","doi-asserted-by":"publisher","unstructured":"Peratikou, A., Louca, C., Shiaeles, S., Stavrou, S.: On federated cyber range network interconnection. In: Ghita, B., Shiaeles, S. (eds.) INC 2020. LNNS, vol. 180, pp. 117\u2013128. Springer, Cham (2021). https:\/\/doi.org\/10.1007\/978-3-030-64758-2_9","DOI":"10.1007\/978-3-030-64758-2_9"},{"key":"18_CR21","unstructured":"Dobson, G.B., Podnar, T., Cerini, A.D., Osterritter, L.J.: R-EACTR: a framework for designing realistic cyber warfare exercises. AFRL Technical report (2017). https:\/\/apps.dtic.mil\/sti\/pdfs\/AD1044880.pdf"},{"key":"18_CR22","doi-asserted-by":"publisher","DOI":"10.7717\/peerj-cs.1574","volume":"9","author":"N Chouliaras","year":"2023","unstructured":"Chouliaras, N., Kantzavelou, I., Maglaras, L., Pantziou, G., Ferrag, M.A.: A novel autonomous container-based platform for cybersecurity training and research. PeerJ Comput. Sci. 9, e1574 (2023). https:\/\/doi.org\/10.7717\/peerj-cs.1574","journal-title":"PeerJ Comput. Sci."},{"key":"18_CR23","doi-asserted-by":"publisher","unstructured":"Diakoumakos, A., Tsatiris, A., Mouratidis, H., Gkioulos, V.: Cyber-range federation and cyber-security games: a gamification scoring model. In: 16th International Conference on Availability, Reliability and Security (ARES 2021), New York, Article no. 32, pp. 1\u201310. ACM (2021). https:\/\/doi.org\/10.1145\/3465481.3470096","DOI":"10.1145\/3465481.3470096"},{"key":"18_CR24","doi-asserted-by":"publisher","unstructured":"Maeng, Y.J., Pihelgas, M.: Request for a surveillance tower: evasive tactics in cyber defense exercises. In: 14th International Conference on Cyber Conflict (CyCon 2023), pp. 239\u2013256 (2023). https:\/\/doi.org\/10.23919\/cycon58705.2023.10182014","DOI":"10.23919\/cycon58705.2023.10182014"},{"issue":"3","key":"18_CR25","doi-asserted-by":"publisher","first-page":"45","DOI":"10.2753\/MIS0742-1222240302","volume":"24","author":"K Peffers","year":"2007","unstructured":"Peffers, K., Tuunanen, T., Rothenberger, M.A., Chatterjee, S.: A design science research methodology for information systems research. J. Manag. Inf. Syst. 24(3), 45\u201377 (2007)","journal-title":"J. Manag. Inf. Syst."},{"issue":"1","key":"18_CR26","doi-asserted-by":"publisher","first-page":"236","DOI":"10.1080\/07421222.2023.2301178","volume":"41","author":"BM Ampel","year":"2024","unstructured":"Ampel, B.M., Samtani, S., Zhu, H., Chen, H., Nunamaker, J.F.: Improving threat mitigation through a cybersecurity risk management framework: a computational design science approach. J. Manag. Inf. Syst. 41(1), 236\u2013265 (2024). https:\/\/doi.org\/10.1080\/07421222.2023.2301178","journal-title":"J. Manag. Inf. Syst."},{"key":"18_CR27","doi-asserted-by":"publisher","unstructured":"National Institute of Standards and Technology (NIST): The NIST Cybersecurity Framework (CSF) 2.0. NIST Cybersecurity White Paper 29, U.S. Department of Commerce, Gaithersburg (2024). https:\/\/doi.org\/10.6028\/NIST.CSWP.29","DOI":"10.6028\/NIST.CSWP.29"},{"key":"18_CR28","unstructured":"European Parliament and Council: Directive (EU) 2022\/2555 of 14 December 2022 on measures for a high common level of cybersecurity across the Union, amending Regulation (EU) No 910\/2014 and Directive (EU) 2018\/1972, and repealing Directive (EU) 2016\/1148 (NIS 2 Directive). Official Journal of the European Union L 333, pp. 80\u2013152 (2022). https:\/\/eur-lex.europa.eu\/legal-content\/en\/TXT\/?uri=CELEX%3A32022L2555"},{"issue":"3","key":"18_CR29","doi-asserted-by":"publisher","first-page":"1695","DOI":"10.1007\/s10207-023-00811-x","volume":"23","author":"V Tzavara","year":"2024","unstructured":"Tzavara, V., Vassiliadis, S.: Tracing the evolution of cyber resilience: a historical and conceptual review. Int. J. Inf. Secur. 23(3), 1695\u20131714 (2024). https:\/\/doi.org\/10.1007\/s10207-023-00811-x","journal-title":"Int. J. Inf. Secur."},{"key":"18_CR30","doi-asserted-by":"publisher","first-page":"1005","DOI":"10.1007\/s10207-023-00680-4","volume":"22","author":"MN Katsantonis","year":"2023","unstructured":"Katsantonis, M.N., Manikas, A., Mavridis, I., Gritzalis, D.: Cyber range design framework for cyber security education and training. Int. J. Inf. Secur. 22, 1005\u20131027 (2023). https:\/\/doi.org\/10.1007\/s10207-023-00680-4","journal-title":"Int. J. Inf. Secur."},{"key":"18_CR31","unstructured":"ENISA: Port cybersecurity \u2013 Good practices for cybersecurity in the maritime sector. Publications Office of the European Union, Luxembourg (2019)"},{"key":"18_CR32","unstructured":"IAPH: Cybersecurity guidelines for ports and port facilities. International Association of Ports and Harbors, Tokyo (2021)"},{"key":"18_CR33","unstructured":"MITRE: Evaluating the impact of cyber attacks on missions. MITRE Technical report, Bedford, MA (2009)"},{"issue":"11","key":"18_CR34","doi-asserted-by":"publisher","first-page":"3458","DOI":"10.3390\/s24113458","volume":"24","author":"G Potamos","year":"2024","unstructured":"Potamos, G., Stavrou, E., Stavrou, S.: Enhancing maritime cybersecurity through operational technology sensor data fusion: a comprehensive survey and analysis. Sensors 24(11), 3458 (2024). https:\/\/doi.org\/10.3390\/s24113458","journal-title":"Sensors"},{"key":"18_CR35","doi-asserted-by":"publisher","first-page":"80","DOI":"10.4236\/jcc.2021.98006","volume":"9","author":"M Roshanaei","year":"2021","unstructured":"Roshanaei, M.: Resilience at the core: critical infrastructure protection challenges, priorities and cybersecurity assessment strategies. J. Comput. Commun. 9, 80\u201397 (2021). https:\/\/doi.org\/10.4236\/jcc.2021.98006","journal-title":"J. Comput. Commun."},{"key":"18_CR36","unstructured":"International Maritime Organization (IMO): Guidelines on maritime cyber risk management. MSC-FAL.1\/Circ.3, adopted June 2017; revision MSC-FAL.1\/Circ.3\/Rev.2, approved October 2021\u2013May 2022. IMO, London (2017\/2022)"},{"issue":"16","key":"18_CR37","doi-asserted-by":"publisher","first-page":"5702","DOI":"10.3390\/app10165702","volume":"10","author":"G Hatzivasilis","year":"2020","unstructured":"Hatzivasilis, G., et al.: Modern aspects of cyber-security training and continuous adaptation of programmes to trainees. Appl. Sci. 10(16), 5702 (2020). https:\/\/doi.org\/10.3390\/app10165702","journal-title":"Appl. Sci."},{"issue":"3","key":"18_CR38","doi-asserted-by":"publisher","first-page":"443","DOI":"10.1109\/TLT.2022.3216345","volume":"16","author":"J Vykopal","year":"2023","unstructured":"Vykopal, J., Seda, P., \u0160v\u00e1bensk\u00fd, V., \u010celeda, P.: Smart environment for adaptive learning of cybersecurity skills. IEEE Trans. Learn. Technol. 16(3), 443\u2013456 (2023). https:\/\/doi.org\/10.1109\/TLT.2022.3216345","journal-title":"IEEE Trans. Learn. Technol."}],"container-title":["Lecture Notes in Computer Science","Critical Information Infrastructures Security"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-032-19540-1_18","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2026,4,22]],"date-time":"2026-04-22T22:27:46Z","timestamp":1776896866000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-032-19540-1_18"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2026]]},"ISBN":["9783032195395","9783032195401"],"references-count":38,"URL":"https:\/\/doi.org\/10.1007\/978-3-032-19540-1_18","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2026]]},"assertion":[{"value":"1 April 2026","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"The authors have no competing interests to declare that are relevant to the content of this article.","order":1,"name":"Ethics","group":{"name":"EthicsHeading","label":"Disclosure of Interests"}},{"value":"CRITIS","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on Critical Information Infrastructures Security","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"J\u00f6nk\u00f6ping","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Sweden","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2025","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"21 October 2025","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"23 October 2025","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"20","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"critis2025","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/jth-critis.hj.se\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}}]}}