{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,4,22]],"date-time":"2026-04-22T22:48:04Z","timestamp":1776898084618,"version":"3.51.2"},"publisher-location":"Cham","reference-count":31,"publisher":"Springer Nature Switzerland","isbn-type":[{"value":"9783032195395","type":"print"},{"value":"9783032195401","type":"electronic"}],"license":[{"start":{"date-parts":[[2026,1,1]],"date-time":"2026-01-01T00:00:00Z","timestamp":1767225600000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2026,1,1]],"date-time":"2026-01-01T00:00:00Z","timestamp":1767225600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2026]]},"DOI":"10.1007\/978-3-032-19540-1_7","type":"book-chapter","created":{"date-parts":[[2026,4,22]],"date-time":"2026-04-22T22:34:29Z","timestamp":1776897269000},"page":"123-139","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":0,"title":["Designing Cyber Security Communities of Support to Improve SME Cyber Hygiene and Resilience"],"prefix":"10.1007","author":[{"ORCID":"https:\/\/orcid.org\/0000-0003-3962-7305","authenticated-orcid":false,"given":"Neeshe","family":"Khan","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-2294-0899","authenticated-orcid":false,"given":"Ram","family":"Herkanaidu","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-0984-7542","authenticated-orcid":false,"given":"Steven","family":"Furnell","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-4118-1680","authenticated-orcid":false,"given":"Jason R. C.","family":"Nurse","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-0741-5199","authenticated-orcid":false,"given":"Maria","family":"Bada","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0009-2446-0259","authenticated-orcid":false,"given":"Matthew","family":"Rand","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2026,4,1]]},"reference":[{"key":"7_CR1","unstructured":"DSIT: Cyber Security Breaches Survey 2025. Department for Science, Innovation and Technology, 10 April 2025 (2025). https:\/\/www.gov.uk\/government\/statistics\/cyber-security-breaches-survey-2025\/cyber-security-breaches-survey-2025"},{"key":"7_CR2","doi-asserted-by":"crossref","unstructured":"OECD: SMEs and entrepreneurship. Organisation for Economic Co-operation and Development (2022). https:\/\/www.oecd.org\/en\/topics\/policy-issues\/smes-and-entrepreneurship.html. Accessed 24 Aug 2025","DOI":"10.1787\/81c738f0-en"},{"key":"7_CR3","unstructured":"FSB: UK Small Business Statistics. National Federation of Self Employed & Small Businesses Limited (2025). https:\/\/www.fsb.org.uk\/media-centre\/uk-small-business-statistics"},{"key":"7_CR4","unstructured":"NHS Homepage. https:\/\/www.england.nhs.uk\/2024\/06\/synnovis-cyber-attack-statement-from-nhs-england\/. Accessed 27 Aug 2025"},{"key":"7_CR5","unstructured":"Transport for London Homepage. https:\/\/tfl.gov.uk\/fares\/free-and-discounted-travel\/cyber-security-incident. Accessed 27 Aug 2025"},{"key":"7_CR6","doi-asserted-by":"publisher","unstructured":"Koshnaw, B., Furnell, S.: Assessing cyber security consumer support from technology retailers. Comput. Fraud Secur. (2022). https:\/\/doi.org\/10.12968\/S1361-3723(22)70560-X","DOI":"10.12968\/S1361-3723(22)70560-X"},{"key":"7_CR7","doi-asserted-by":"publisher","unstructured":"Khan, N., Furnell, S., Bada, M., Nurse, J.R.C., Rand, M.: Assessing cyber security support for small and medium-sized enterprises. In: Clarke, N., Furnell, S. (eds.) HAISA 2024. IFIPAICT, vol. 721, pp. 148\u2013162. Springer, Cham (2025). https:\/\/doi.org\/10.1007\/978-3-031-72559-3_11","DOI":"10.1007\/978-3-031-72559-3_11"},{"key":"7_CR8","doi-asserted-by":"crossref","unstructured":"Khan, N., Furnell, S., Bada, M., Nurse, J.R.C., Rand, M.: The hidden barriers to cyber security adoption amongst small and medium-sized enterprises. Inf. Comput. Secur. (2025)","DOI":"10.1108\/ICS-04-2025-0135"},{"key":"7_CR9","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2025.104448","volume":"154","author":"N Khan","year":"2025","unstructured":"Khan, N., Furnell, S., Bada, M., Rand, M., Nurse, J.R.C.: Investigating the experiences of providing cyber security support to small-and medium-sized enterprises. Comput. Secur. 154, 104448 (2025)","journal-title":"Comput. Secur."},{"key":"7_CR10","doi-asserted-by":"publisher","DOI":"10.1016\/j.techsoc.2024.102670","volume":"78","author":"MF Arroyabe","year":"2024","unstructured":"Arroyabe, M.F., Arranz, C.F., De Arroyabe, I.F., de Arroyabe, J.C.F.: Exploring the economic role of cybersecurity in SMEs: a case study of the UK. Technol. Soc. 78, 102670 (2024)","journal-title":"Technol. Soc."},{"issue":"4","key":"7_CR11","doi-asserted-by":"publisher","first-page":"472","DOI":"10.1093\/comjnl\/bxx093","volume":"61","author":"E Osborn","year":"2018","unstructured":"Osborn, E., Simpson, A.: Risk and the small-scale cyber security decision making dialogue\u2014a UK case study. Comput. J. 61(4), 472\u2013495 (2018)","journal-title":"Comput. J."},{"key":"7_CR12","unstructured":"Lewis, R., Louvieris, P., Abbott, P., Clewley, N., Jones, K.: Cybersecurity information sharing: a framework for information security management in UK SME supply chains (2014)"},{"key":"7_CR13","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2023.103288","volume":"131","author":"A Cartwright","year":"2023","unstructured":"Cartwright, A., Cartwright, E., Edun, E.S.: Cascading information on best practice: cyber security risk management in UK micro and small businesses and the role of IT companies. Comput. Secur. 131, 103288 (2023)","journal-title":"Comput. Secur."},{"issue":"2","key":"7_CR14","doi-asserted-by":"publisher","first-page":"172","DOI":"10.1504\/IJCIS.2023.130446","volume":"19","author":"UM Mbanaso","year":"2023","unstructured":"Mbanaso, U.M., Makinde, J.A., Kulugh, V.E.: A methodological approach for characterisation of critical national infrastructure. Int. J. Crit. Infrastruct. 19(2), 172\u2013197 (2023)","journal-title":"Int. J. Crit. Infrastruct."},{"issue":"1","key":"7_CR15","first-page":"209","volume":"2","author":"PK Pemmasani","year":"2023","unstructured":"Pemmasani, P.K.: National cybersecurity frameworks for critical infrastructure: lessons from governmental cyber resilience initiatives. Int. J. Acta Informatica 2(1), 209\u2013218 (2023)","journal-title":"Int. J. Acta Informatica"},{"key":"7_CR16","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2021.102324","volume":"108","author":"C Topping","year":"2021","unstructured":"Topping, C., Dwyer, A., Michalec, O., Craggs, B., Rashid, A.: Beware suppliers bearing gifts!: Analysing coverage of supply chain cyber security in critical national infrastructure sectorial and cross-sectorial frameworks. Comput. Secur. 108, 102324 (2021)","journal-title":"Comput. Secur."},{"issue":"4","key":"7_CR17","doi-asserted-by":"publisher","DOI":"10.1016\/j.pursup.2021.100714","volume":"27","author":"SA Melnyk","year":"2021","unstructured":"Melnyk, S.A., Schoenherr, T., Verter, V., Evans, C., Shanley, C.: The pandemic and SME supply chains: Learning from early experiences of SME suppliers in the US defense industry. J. Purch. Supply Manag. 27(4), 100714 (2021)","journal-title":"J. Purch. Supply Manag."},{"issue":"1","key":"7_CR18","doi-asserted-by":"publisher","first-page":"142","DOI":"10.1111\/capa.12007","volume":"56","author":"K Quigley","year":"2013","unstructured":"Quigley, K.: \u201cMan plans, God laughs\u201d: Canada\u2019s national strategy for protecting critical infrastructure. Can. Public Adm. 56(1), 142\u2013164 (2013)","journal-title":"Can. Public Adm."},{"issue":"1","key":"7_CR19","doi-asserted-by":"publisher","first-page":"1","DOI":"10.4102\/ac.v16i1.339","volume":"16","author":"LO Obokoh","year":"2016","unstructured":"Obokoh, L.O., Goldman, G.: Infrastructure deficiency and the performance of small-and medium-sized enterprises in Nigeria\u2019s liberalised economy. Acta Commercii 16(1), 1\u201310 (2016)","journal-title":"Acta Commercii"},{"issue":"1","key":"7_CR20","doi-asserted-by":"publisher","first-page":"45","DOI":"10.1016\/S1096-7516(01)00047-1","volume":"4","author":"CM Johnson","year":"2001","unstructured":"Johnson, C.M.: A survey of current research on online communities of practice. Internet High. Educ. 4(1), 45\u201360 (2001)","journal-title":"Internet High. Educ."},{"issue":"5","key":"7_CR21","doi-asserted-by":"publisher","first-page":"2364","DOI":"10.1080\/00472778.2023.2236177","volume":"62","author":"PK Schou","year":"2024","unstructured":"Schou, P.K., Adarkwah, G.K.: Digital communities of inquiry: how online communities support entrepreneurial opportunity development. J. Small Bus. Manag. 62(5), 2364\u20132395 (2024)","journal-title":"J. Small Bus. Manag."},{"issue":"11","key":"7_CR22","doi-asserted-by":"publisher","first-page":"2258","DOI":"10.1016\/j.jbusres.2014.06.014","volume":"67","author":"M Fiedler","year":"2014","unstructured":"Fiedler, M., Sarstedt, M.: Influence of community design on user behaviors in online communities. J. Bus. Res. 67(11), 2258\u20132268 (2014)","journal-title":"J. Bus. Res."},{"key":"7_CR23","unstructured":"NCSC: Small Business Guide: Cyber Security, National Cyber Security Centre, 15 November 2018 (2018). https:\/\/www.ncsc.gov.uk\/collection\/small-business-guide. Accessed 24 Aug 2025"},{"key":"7_CR24","unstructured":"Government Commercial Function: Supplementary information: Small and Medium-sized Enterprises definition, 11 April 2025 (2023). https:\/\/www.gov.uk\/government\/publications\/procurement-act-2023-short-guides\/supplementary-information-small-and-medium-sized-enterprises-definition-html. Accessed 24 Aug 2025"},{"key":"7_CR25","unstructured":"DSIT: \u201cMcPartland review of cyber security and economic growth\u201d, Department for Science, Innovation and Technology, 6 February 2024 (2024). https:\/\/www.gov.uk\/government\/publications\/mcpartland-review-of-cyber-security-and-economic-growth. Accessed 24 Aug 2025"},{"key":"7_CR26","unstructured":"Companies House. https:\/\/www.gov.uk\/government\/organisations\/companies-house\/about. Crown copyright"},{"key":"7_CR27","unstructured":"National Cyber Security Centre Homepage. https:\/\/www.ncsc.gov.uk\/section\/exercise-in-a-box\/. Accessed 27 Aug 2025"},{"key":"7_CR28","unstructured":"ISC2 Homepage. https:\/\/www.isc2.org\/certifications\/cc. Accessed 27 Aug 2025"},{"key":"7_CR29","doi-asserted-by":"publisher","unstructured":"Lau, F.: A review on the use of action research in information systems studies. In: Lee, A.S., Liebenau, J., DeGross, J.I. (eds.) Information Systems and Qualitative Research. IFIPAICT, pp. 31\u201368. Springer, Boston (1997). https:\/\/doi.org\/10.1007\/978-0-387-35309-8_4","DOI":"10.1007\/978-0-387-35309-8_4"},{"key":"7_CR30","doi-asserted-by":"publisher","first-page":"15","DOI":"10.1093\/oso\/9780198289418.001.0001","volume-title":"Communication by Design","author":"RE Mansell","year":"1996","unstructured":"Mansell, R.E., Silverstone, R.: Communication by Design, pp. 15\u201343. Oxford University Press, Oxford (1996)"},{"key":"7_CR31","doi-asserted-by":"crossref","unstructured":"Flyvbjerg, B.: Making Social Science Matter: Why Social Inquiry Fails and How it Can Succeed Again. Cambridge University Press, Cambridge (2001)","DOI":"10.1017\/CBO9780511810503"}],"container-title":["Lecture Notes in Computer Science","Critical Information Infrastructures Security"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-032-19540-1_7","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2026,4,22]],"date-time":"2026-04-22T22:34:31Z","timestamp":1776897271000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-032-19540-1_7"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2026]]},"ISBN":["9783032195395","9783032195401"],"references-count":31,"URL":"https:\/\/doi.org\/10.1007\/978-3-032-19540-1_7","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2026]]},"assertion":[{"value":"1 April 2026","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"The authors have no competing interests to declare that are relevant to the content of this article.","order":1,"name":"Ethics","group":{"name":"EthicsHeading","label":"Disclosure of Interests"}},{"value":"CRITIS","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on Critical Information Infrastructures Security","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"J\u00f6nk\u00f6ping","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Sweden","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2025","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"21 October 2025","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"23 October 2025","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"20","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"critis2025","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/jth-critis.hj.se\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}}]}}