IDEAS home Printed from https://ideas.repec.org/a/spr/binfse/v67y2025i4d10.1007_s12599-024-00899-y.html
   My bibliography  Save this article

A Multi-level Reference Model and a Dedicated Method for Cyber-Security by Design

Author

Listed:
  • Sybren Kinderen

    (Eindhoven University of Technology)

  • Monika Kaczmarek-Heß

    (University of Duisburg-Essen)

  • Simon Hacks

    (Stockholm University)

Abstract

The increased reliance of organizations on information technology inherently increases their vulnerability to cyber-security attacks. As a response, a host of cyber-security approaches exists. While useful, these approaches exhibit shortcomings such as an inclination to be fragmented, not accounting for up-to-date organizational data, focusing on singular vulnerabilities only, and being reactive, i.e., focusing on patching up vulnerabilities in current systems. The paper presents and evaluates a modeling method aiming to address those shortcomings and to support security by design with a focus on the electricity sector. The proposed modeling method encompasses a multi-level reference model reconstructing and integrating existing initiatives and supporting top-down and bottom-up analyses. Compared to earlier work, the paper contributes (1) a process model for cyber-security by design, which proactively considers security as a first-class citizen during the design process, (2) a complete coverage of the multi-level model, in terms of three views complementing the introduced process model, (3) an elaborated evaluation, in terms of reporting on an additional design science cycle.

Suggested Citation

  • Sybren Kinderen & Monika Kaczmarek-Heß & Simon Hacks, 2025. "A Multi-level Reference Model and a Dedicated Method for Cyber-Security by Design," Business & Information Systems Engineering: The International Journal of WIRTSCHAFTSINFORMATIK, Springer;Gesellschaft für Informatik e.V. (GI), vol. 67(4), pages 511-530, August.
    • Handle: RePEc:spr:binfse:v:67:y:2025:i:4:d:10.1007_s12599-024-00899-y
    DOI: 10.1007/s12599-024-00899-y
    as

    Download full text from publisher

    File URL: http://link.springer.com/10.1007/s12599-024-00899-y
    File Function: Abstract
    Download Restriction: Access to the full text of the articles in this series is restricted.
    File URL: https://libkey.io/10.1007/s12599-024-00899-y?utm_source=ideas
    LibKey link: if access is restricted and if your library uses this service, LibKey will redirect you to where you can use your library subscription to access this item
    ---><---

    As the access to this document is restricted, you may want to

    for a different version of it.

    References listed on IDEAS

    as
    1. Frank, Ulrich, 2018. "The Flexible Multi-Level Modelling and Execution Language (FMMLx). Version 2.0: Analysis of requirements and technical terminology," ICB Research Reports 66, University Duisburg-Essen, Institute for Computer Science and Business Information Systems (ICB).
    2. Niesten, Eva & Alkemade, Floortje, 2016. "How is value created and captured in smart grids? A review of the literature and an analysis of pilot projects," Renewable and Sustainable Energy Reviews, Elsevier, vol. 53(C), pages 629-638.
    3. Abraham, Chon & Chatterjee, Dave & Sims, Ronald R., 2019. "Muddling through cybersecurity: Insights from the U.S. healthcare industry," Business Horizons, Elsevier, vol. 62(4), pages 539-548.
    4. Ute Paukstadt & Jörg Becker, 2021. "Uncovering the business value of the internet of things in the energy domain – a review of smart energy business models," Electronic Markets, Springer;IIM University of St. Gallen, vol. 31(1), pages 51-66, March.
    5. Kurt Sandkuhl & Hans-Georg Fill & Stijn Hoppenbrouwers & John Krogstie & Florian Matthes & Andreas Opdahl & Gerhard Schwabe & Ömer Uludag & Robert Winter, 2018. "From Expert Discipline to Common Practice: A Vision and Research Agenda for Extending the Reach of Enterprise Modeling," Business & Information Systems Engineering: The International Journal of WIRTSCHAFTSINFORMATIK, Springer;Gesellschaft für Informatik e.V. (GI), vol. 60(1), pages 69-80, February.
    Full references (including those not matched with items on IDEAS)

    Most related items

    These are the items that most often cite the same works as this one and are cited by the same works as this one.
    1. Eid, Cherrelle & Codani, Paul & Perez, Yannick & Reneses, Javier & Hakvoort, Rudi, 2016. "Managing electric flexibility from Distributed Energy Resources: A review of incentives for market design," Renewable and Sustainable Energy Reviews, Elsevier, vol. 64(C), pages 237-247.
    2. Will, Christian & Zimmermann, Florian & Ensslen, Axel & Fraunholz, Christoph & Jochem, Patrick & Keles, Dogan, 2024. "Can electric vehicle charging be carbon neutral? Uniting smart charging and renewables," Applied Energy, Elsevier, vol. 371(C).
    3. Lukas Sigrist & Kristof May & Andrei Morch & Peter Verboven & Pieter Vingerhoets & Luis Rouco, 2016. "On Scalability and Replicability of Smart Grid Projects—A Case Study," Energies, MDPI, vol. 9(3), pages 1-19, March.
    4. Varone, Alberto & Heilmann, Zeno & Porruvecchio, Guido & Romanino, Alessandro, 2024. "Solar parking lot management: An IoT platform for smart charging EV fleets, using real-time data and production forecasts," Renewable and Sustainable Energy Reviews, Elsevier, vol. 189(PA).
    5. Chotia, Varun & Khoualdi, Kamel & Broccardo, Laura & Yaqub, Muhammad Zafar, 2025. "The role of cyber security and digital transformation in gaining competitive advantage through Strategic Management Accounting," Technology in Society, Elsevier, vol. 81(C).
    6. Aghamolaei, Reihaneh & Shamsi, Mohammad Haris & O’Donnell, James, 2020. "Feasibility analysis of community-based PV systems for residential districts: A comparison of on-site centralized and distributed PV installations," Renewable Energy, Elsevier, vol. 157(C), pages 793-808.
    7. Szinai, Julia K. & Sheppard, Colin J.R. & Abhyankar, Nikit & Gopal, Anand R., 2020. "Reduced grid operating costs and renewable energy curtailment with electric vehicle charge management," Energy Policy, Elsevier, vol. 136(C).
    8. Camélia Radu & Nadia Smaili, 2022. "Board Gender Diversity and Corporate Response to Cyber Risk: Evidence from Cybersecurity Related Disclosure," Journal of Business Ethics, Springer, vol. 177(2), pages 351-374, May.
    9. Fabian Burmeister & Christian Kurtz & Ingrid Schirmer, 2025. "Governing information privacy in data ecosystems with architectural thinking," Electronic Markets, Springer;IIM University of St. Gallen, vol. 35(1), pages 1-22, December.
    10. Kubli, Merla & Puranik, Sanket, 2023. "A typology of business models for energy communities: Current and emerging design options," Renewable and Sustainable Energy Reviews, Elsevier, vol. 176(C).
    11. Abubakar, I. & Khalid, S.N. & Mustafa, M.W. & Shareef, Hussain & Mustapha, M., 2017. "Application of load monitoring in appliances’ energy management – A review," Renewable and Sustainable Energy Reviews, Elsevier, vol. 67(C), pages 235-245.
    12. Ellabban, Omar & Abu-Rub, Haitham, 2016. "Smart grid customers' acceptance and engagement: An overview," Renewable and Sustainable Energy Reviews, Elsevier, vol. 65(C), pages 1285-1298.
    13. Burger, Scott & Chaves-Ávila, Jose Pablo & Batlle, Carlos & Pérez-Arriaga, Ignacio J., 2017. "A review of the value of aggregators in electricity systems," Renewable and Sustainable Energy Reviews, Elsevier, vol. 77(C), pages 395-405.
    14. Stefan Feuerriegel & Jochen Hartmann & Christian Janiesch & Patrick Zschech, 2024. "Generative AI," Business & Information Systems Engineering: The International Journal of WIRTSCHAFTSINFORMATIK, Springer;Gesellschaft für Informatik e.V. (GI), vol. 66(1), pages 111-126, February.
    15. Lehtola, Timo, 2025. "Vehicle-to-grid applications and battery cycle aging: A review," Renewable and Sustainable Energy Reviews, Elsevier, vol. 208(C).
    16. Bakhuis, Jerico & Barbour, Natalia & Chappin, Émile J.L., 2025. "Exploring user willingness to adopt vehicle-to-grid (V2G): A statistical analysis of stated intentions," Energy Policy, Elsevier, vol. 203(C).
    17. Muhammad Saidu Aliero & Muhammad Asif & Imran Ghani & Muhammad Fermi Pasha & Seung Ryul Jeong, 2022. "Systematic Review Analysis on Smart Building: Challenges and Opportunities," Sustainability, MDPI, vol. 14(5), pages 1-28, March.
    18. Li, Rongling & Dane, Gamze & Finck, Christian & Zeiler, Wim, 2017. "Are building users prepared for energy flexible buildings?—A large-scale survey in the Netherlands," Applied Energy, Elsevier, vol. 203(C), pages 623-634.
    19. Heilmann, C. & Friedl, G., 2021. "Factors influencing the economic success of grid-to-vehicle and vehicle-to-grid applications—A review and meta-analysis," Renewable and Sustainable Energy Reviews, Elsevier, vol. 145(C).
    20. Leiva Vilaplana, Jose Angel & Yang, Guangya & Monaco, Roberto & Bergaentzlé, Claire & Ackom, Emmanuel & Morais, Hugo, 2025. "Digital versus grid investments in electricity distribution grids: Informed decision-making through system dynamics," Applied Energy, Elsevier, vol. 386(C).

    More about this item

    Keywords

    ;
    ;
    ;
    ;
    ;

    Statistics

    Access and download statistics

    Corrections

    All material on this site has been provided by the respective publishers and authors. You can help correct errors and omissions. When requesting a correction, please mention this item's handle: RePEc:spr:binfse:v:67:y:2025:i:4:d:10.1007_s12599-024-00899-y. See general information about how to correct material in RePEc.

    If you have authored this item and are not yet registered with RePEc, we encourage you to do it here. This allows to link your profile to this item. It also allows you to accept potential citations to this item that we are uncertain about.

    If CitEc recognized a bibliographic reference but did not link an item in RePEc to it, you can help with this form .

    If you know of missing items citing this one, you can help us creating those links by adding the relevant references in the same way as above, for each refering item. If you are a registered author of this item, you may also want to check the "citations" tab in your RePEc Author Service profile, as there may be some citations waiting for confirmation.

    For technical questions regarding this item, or to correct its authors, title, abstract, bibliographic or download information, contact: Sonal Shukla or Springer Nature Abstracting and Indexing (email available below). General contact details of provider: http://www.springer.com .

    Please note that corrections may take a couple of weeks to filter through the various RePEc services.

    IDEAS is a RePEc service. RePEc uses bibliographic data supplied by the respective publishers.