Security challenges in small-and medium-sized manufacturing enterprises

2016 International Symposium on Small-Scale Intelligent Manufacturing Systems, SIMS 2016

Volumn , Issue , 2016, Pages 25-30

  Heikkila, Marjo ^a   Rattya, Anita ^a   Pieska, Sakari ^a   Jamsa, Joni ^a  

^a CENTRIA   (Finland)

Author keywords

manufacturing; Security management; SME

Indexed keywords

INDUSTRIAL MANAGEMENT; PERSONAL COMPUTING;

DIGITAL TRANSFORMATION; INDUSTRIAL SYSTEMS; MANUFACTURING COMPANIES; SECURITY CHALLENGES; SECURITY INVESTMENTS; SECURITY MANAGEMENT; SMALL- AND MEDIUM-SIZED MANUFACTURING ENTERPRISE; TECHNOLOGY DEVELOPMENT;

MANUFACTURE;

EID: 85010931087     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/SIMS.2016.7802895     Document Type: Conference Paper

References (32)

1. L. Wells, J. Camelio, C. Williams, J. White, "Cyber-physical security challenges in manufacturing systems", Manufacturing Letters, 2(2), 74-77.
2. V. C. Gungor, C. P. Hancke, "Industrial Wireless Sensor Networks: Challenges, Design Principles, Technical Approaches, " IEEE Trans . Ind. Electron., vol. 56, no. 10, pp.4258-4265, Oct. 2009
3. A. Sillanpiiii, H. Roivainen, M. Lehto. "Finnish Cyber Security Strategy, Implementation, " in Cyber Security: Analytics, Technology, Automation. Springer International Publishing, 2015, pp. 129-144.
4. European Comission. (2013) "Cybersecurity Strategy of the European Union: An Open, Safe, Secure Cyberspace". [Online]. Available: http://ec.europa. eu/newsroom/dae/document.cfin?doc-id=1667
5. Cyberthreat Defense Report, North America, Europe. (2015) CyberEdge Group. [Online]. Available: http://www.cyberedge. com/2015-cdr
6. J. Lewis and S. Baker. (2013). The economic impact of cybercrime, cyber espionage. Center for Strategic, International Studies, Washington, DC, 103-117. [Online]. Available: http://csis.orglfiles/publicationl60396rptcybercrime-cost0713jh40.pdf
7. O. Tynkkynen. (2016, Jan 19). Mikkelin keskussairaalassa oli potilaita hengenvaarassa Soneran ongelmien vuoksi. [Online]. Available: http://www. lansi-savo. fi/uuti setllahell almi kkel i n-keskussai raalassa-ol ipotilaita-hengenvaarassa-soneran-ongelmien-vuoksi
8. Tivi. (2016, Jan 22). Sonera paljasti verkkovikansa sy'yn. [Online]. A v ai I ab Ie: http://www.tivi. fi/rss/sonera-palj asti-verkkov ikansa-syyn-6247311
9. M. Haughn, S. Gibilisdco. (2014, November). Confidentiality, integrity, availability (CIA triad) [Online]. Available: http://whatis.techtarget. com/definitioniConfidentiality-integrity-andavailability-CIA
10. M. RUssmann et al. (2015, April). Industry 4.0: The Future of Productivity, Growth in Manufacturing Industries. Boston Consulting Group. [Online]. Available: http://www. zvw.de/media.media. 72e472fb-1698-4aI5-8858-344351 c8902f.original.pdf
11. P. C. Evans, M. Annunziata. (2012, November). "Industrial Internet: Pushing the boundaries of minds, machines". [Online]. Available: http://www.ge. com/docs/chapters/lndustrial-Internet.pdf
12. R. Geissbauer, S. Schrauf, V. Koch, S. Kuge. (2014, December) Industry 4.0: Opportunities, Challenges of the Industrial Internet. PricewaterhouseCoopers. [Online]. Available: http://docplayer.netll 0860187-lndustry-4-0-opportunities-andchallenges-of-the-industrial-internet.html
13. National Defense Industrial Association. (2014, May 5). Cybersecurity for Advanced Manufacturing. A White Paper prepared by National Defense Industrial Association's Manufacturing Division, Cyber Division. [Online]. Available: http://www.ndia. orgiPolicy/LegislativeandFederallssuesUpdate/Docume nts/Cyber for Manufacturing-White Paper 5 May 14. pdf
14. M. Nunez. (2012). "Cyber-attacks on ERP systems. An analysis of the current threat landscape", in Datenschutz und Datensicherheit, Vol. 36(9) pp 653-656.
15. A. Polyakov, et al. (2013). "PRACTICAL PENTESTING OF ERP SYSTEMS AND BUSINESS APPLICATIONS [Online]. Available: https://media.blackhat.com/us-13/US-13-Polyakov-Practical-Pentestingof-ERPs-and-Business-Applications-WP.pdf
16. Bundesamt fOr Sicherheit in der Informationstechnik (BSI). (2014). Die Lage der IT-Sicherheit in Deutschland 2014. [Online]. Available: https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSIIPublikationen ILageberichte/Lagebericht20 14. pdf?-blob=publicationF ile
17. K. A. Zetter. (20IS, August I). Cyberattack Has Caused Confirmed Physical Damage for the Second Time Ever. WIRED digital edition. [Online]. Available: http://www.wired. com/20IS/01/german-steel-millhack-destructionl
18. M. Riley, J. Robertson. Cyberspace Becomes Second Front in Russia's Clash With NATO. Bloomber Business. [Online]. Available: http://www.bloomberg. com/news/articles/20 IS-I 0-14/cyberspacebecomes-second-front-in-russia-s-clash-with-nato
19. S. Laukkanen, S. Sarpola, P. Hallikainen. Enterprise size matters: objectives, constraints of ERP adoption. Journal of Enterprise Information Management, Vol. 20 (3), 319-334.
20. A. Y.T. Sun, A. Yazdani, J. D. Overend. Achievement assessment for enterprise resource planning (ERP) system implementations based on critical success factors (CSFs). International Journal of Production Economics, Volume 98, Issue 2, 18 November 2005, Pages 189-203.
21. A. Deitze. (2013, Dec. 17) The Challengeso Cintroducing ERP in SMEs. [Online]. Available: http://www.rolandberger.com/medialnewsI20 13-12-17-rbsc-newsChallenges-oCintroducing-ERP in SMEs.html
22. ISO/IEC 27002:2013 Information technology-Security techniques-Code of practice for information security controls. [Online]. Available: http://www.is02700Isecurity.comlhtmIl27002.html#Section7 30
23. H. S. Rhee, Y. U. Ryu, C. T. Kim. "Unrealistic optimism on information security management, " in Computers & Security, 2012, vol. 31.2, pp. 221-232.
24. A. Lee, T. Brewer. (2009). Smart grid cyber security strategy, requirements. Draft Interagency Report NISTIR, 7628.
25. A. Da Veiga, N. Martins. "Improving the information security culture through monitoring, implementation actions illustrated through a case study, " in Computers & Security, 201S, vol. 49, 162-176.
26. H. Nergard et al. (2012). "Current Status, Upcoming Needs in SME's in Northern Regions of Finland, Norway, Sweden." Lulea University of Technology, Sweden.
27. Rugged Tooling RUGE User Guide vl .3
28. E. Ozan, "Optimization of information technology risk event prediction markets, " Security Technology (ICCST), 2013 47th International Carnahan Conference on, Medellin, 2013, pp. 1-4.
29. Siemens. STEP 7 Professional (TIA Portal) System manual V13.1
30. Kesko. "Information security policy". [Online]. Available: http://www. kesko.fi/en/company/policies-and-principles/information-securitypolicyl
31. Harvard University, "Information Security Policy". [Online]. Available: http://policy.security.harvard.edul
32. ISO 27000 Standards, 2013.