Skip to main content
SpringerLink
Log in

A Capability Based Method for Development of Resilient Digital Services

  • Conference paper
  • First Online:
Enterprise Information Systems (ICEIS 2020)

Part of the book series: Lecture Notes in Business Information Processing ((LNBIP,volume 417))

Included in the following conference series:

Abstract

Capability Driven Development (CDD) is a capability-based method for developing context-aware and adaptive systems. This paper proposes to extend CDD to address security and resilience concerns in organizational networks. A method extension defining modeling concepts and development procedure is elaborated. It includes development of a data-driven digital twin, which represents the security and resilience concerns of the network and is used to diagnose security incidents and to formulate a resilient response to these incidents. Application of the proposed method extension is illustrated using examples of secure computer network governance and secure supplier onboarding.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 119.00
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 159.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

References

  1. Uday, P., Marais, K.: Designing resilient systems-of-systems: a survey of metrics, methods, and challenges. Syst. Eng. 18(5), 491–510 (2015)

    Article  Google Scholar 

  2. World Economic Forum. Advancing Cyber Resilience Principles and Tools for Boards (2017)

    Google Scholar 

  3. Kshetri, N., Voas, J.M.: Supply chain trust. IT Prof. 21(2), 6–10 (2019)

    Article  Google Scholar 

  4. Madnick, S.: 5G security concerns persist with new research pointing to critical flaw (2019). https://www.itpro.co.uk/mobile/32893/

  5. Sandkuhl, K., Stirna, J.: Capability thinking. In: Sandkuhl, K., Stirna, J. (eds.) Capability Management in Digital Enterprises, pp. 1–24. Springer, Cham (2018). https://doi.org/10.1007/978-3-319-90424-5_1

    Chapter  Google Scholar 

  6. Berziša, S., et al.: Capability driven development: an approach to designing digital enterprises. Bus. Inf. Syst. Eng. 57(1), 15–25 (2015)

    Article  Google Scholar 

  7. Goldkuhl, G., Lind, M., Seigerroth, U.: Method integration: the need for a learning perspective. IEE Proc. Softw. 145(4), 113–118 (1998)

    Article  Google Scholar 

  8. Grabis, J., Stirna, J., Zdravkovic, J.: Capability management in resilient ICT supply chain ecosystems. In: Proceedings of the 22nd International Conference on Enterprise Information Systems ICEIS, no. 2, pp. 393–400 (2020)

    Google Scholar 

  9. Grabis, J., Kampars, J.: Adjustment of capabilities: how to add dynamics. In: Sandkuhl, K., Stirna, J. (eds.) Capability Management in Digital Enterprises, pp. 139–158. Springer, Cham (2018). https://doi.org/10.1007/978-3-319-90424-5_8

    Chapter  Google Scholar 

  10. Sandkuhl, K., Stirna, J.: Capability Management in Digital Enterprises. Springer, Cham (2018). https://doi.org/10.1007/978-3-319-90424-5

    Book  Google Scholar 

  11. Kampars, J., Zdravkovic, J., Stirna, J., Grabis, J.: Extending organizational capabilities with open data to support sustainable and dynamic business ecosystems. Softw. Syst. Model. 19(2), 371–398 (2019). https://doi.org/10.1007/s10270-019-00756-7

    Article  Google Scholar 

  12. Eckhart, M., Ekelhart, A., Weippl, E.: Enhancing cyber situational awareness for cyber-physical systems through digital twins. In: IEEE International Conference on Emerging Technologies and Factory Automation, 1222 (2019)

    Google Scholar 

  13. Minkevics, V., Kampars, J.: IS security governance capability design for higher education organization. In: Proceedings of 59th International Scientific Conference on Information Technology and Management Science of Riga Technical University, ITMS 2018, pp. 1–5 (2018)

    Google Scholar 

  14. Minkevics, V., Kampars, J.: Methods, models and techniques to improve information system's security in large organizations. In: Proceedings of the 22nd International Conference on Enterprise Information Systems ICEIS, no. 1, pp. 632–639 (2020)

    Google Scholar 

  15. Grabis, J., Chandra, C., Kampars, J.: Use of distributed data sources in facility location. Comput. Ind. Eng. 63(4), 855–863 (2012)

    Article  Google Scholar 

  16. De Reuver, M., Sørensen, C., Basole, R.C.: The Digital platform: a research agenda. J. Inf. Technol. 33(2), 124–135 (2018)

    Article  Google Scholar 

  17. Mouratidis, H., Argyropoulos, N., Shei, S.: Security requirements engineering for cloud computing: the secure Tropos approach. In: Karagiannis, D., Mayr, H., Mylopoulos, J. (eds.) Domain-Specific Conceptual Modeling: Concepts, Methods and Tools, pp. 357–380. Springer, Cham (2016). https://doi.org/10.1007/978-3-319-39417-6_16

    Chapter  Google Scholar 

  18. Elahi, G., Yu, E.: Modeling and analysis of security trade-offs - a goal oriented approach. Data Knowl. Eng. 68(7), 579–598 (2009)

    Article  Google Scholar 

  19. Athinaiou, M., Mouratidis, H., Fotis, T., Pavlidis, M., Panaousis, E.: Towards the definition of a security incident response modelling language. In: Furnell, Steven, Mouratidis, Haralambos, Pernul, Günther. (eds.) TrustBus 2018. LNCS, vol. 11033, pp. 198–212. Springer, Cham (2018). https://doi.org/10.1007/978-3-319-98385-1_14

    Chapter  Google Scholar 

  20. Byers, D., Shahmehri, N.: Unified modeling of attacks, vulnerabilities and security activities. In: Proceedings - International Conference on Software Engineering, p. 36 (2010)

    Google Scholar 

  21. Lu, T., Guo, X., Xu, B., Zhao, L., Peng, Y., Yang, H.: Next big thing in big data: the security of the ICT supply chain. In: Proceedings - SocialCom/PASSAT/BigData/EconCom/BioMedCom 2013, p. 1066 (2013)

    Google Scholar 

  22. Fiksel, J.: Designing resilient, sustainable systems. Environ. Sci. Technol. 37(23), 5330–5339 (2003)

    Article  Google Scholar 

  23. Bodeau, D., Graubart, R.: Cyber resiliency design principles, pp. 1–90. Technical report, Report No: 17-0103. The MITRE Corporation, United States, January 2017

    Google Scholar 

  24. Korpela, K., Kuusiholma, U., Taipale, O., Hallikas, J.: A framework for exploring digital business ecosystems. In: 46th Annual Hawaii International Conference on System Sciences HICSS 2013, pp. 3838–3847. Institute of Electrical and Electronics Engineers Inc. (2013)

    Google Scholar 

  25. Ross, R., Pillitteri, V., Graubart, R., Bodeau, B., McQuaid, R.: Developing. Cyber Resilient Systems: A Systems Security Engineering Approach. SP 800-160, vol. 2 (2019). https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-160v2.pdf. Accessed 28 May 2020

  26. Haque, Md.A., Kamdem De Teyou, G., Shetty, S., Krishnappa, B.: Cyber resilience framework for industrial control systems: concepts, metrics, and insights. In: Proceedings of IEEE International Conference on Intelligence and Security Informatics Conference, ISI. IEEE (2018). https://doi.org/10.1109/ISI.2018.8587398

  27. Kritzinger, W., Karner, M., Traar, G., Henjes, J., Sihn, W.: Digital Twin in manufacturing: a categorical literature review and classification. IFAC-PapersOnLine 51(11), 1016–1022 (2018)

    Article  Google Scholar 

  28. Murphy, A., et al.: Representing financial data streams in digital simulations to support data flow design for a future Digital Twin. Robot. Comput.-Integr. Manuf. 61, 101853 (2020)

    Article  Google Scholar 

Download references

Acknowledgments

This research is partially funded by the Ministry of Education and Science, Republic of Latvia, project ARTSS, project No. VPP-COVID-2020/1–0009.

Author information

Authors and Affiliations

  1. Institute of Information Technology, Riga Technical University, Kalku 1, Riga, 1658, Latvia

    Jānis Grabis

  2. Department of Computer and Systems Sciences, Stockholm University, Postbox 7003, 16407, Kista, Sweden

    Janis Stirna & Jelena Zdravkovic

Authors
  1. Jānis Grabis
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Janis Stirna
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Jelena Zdravkovic
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Jānis Grabis .

Editor information

Editors and Affiliations

  1. Polytechnic Institute of Setúbal/INSTICC, Setúbal, Portugal

    Joaquim Filipe

  2. Warsaw University of Technology, Warsaw, Poland

    Michał Śmiałek

  3. George Mason University, Fairfax, VA, USA

    Alexander Brodsky

  4. MODESTE/ESEO, Angers, France

    Slimane Hammoudi

Rights and permissions

Reprints and permissions

Copyright information

© 2021 Springer Nature Switzerland AG

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Grabis, J., Stirna, J., Zdravkovic, J. (2021). A Capability Based Method for Development of Resilient Digital Services. In: Filipe, J., Śmiałek, M., Brodsky, A., Hammoudi, S. (eds) Enterprise Information Systems. ICEIS 2020. Lecture Notes in Business Information Processing, vol 417. Springer, Cham. https://doi.org/10.1007/978-3-030-75418-1_23

Download citation

  • DOI: https://doi.org/10.1007/978-3-030-75418-1_23

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-030-75417-4

  • Online ISBN: 978-3-030-75418-1

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation