利用网络评估框架对bim / cde设计环境进行网络安全评估

IF 4.3 3区 工程技术 Q1 ENGINEERING, CIVIL
Žiga Turk, Muammer Semih Sonkor, Robert Klinc
{"title":"利用网络评估框架对bim / cde设计环境进行网络安全评估","authors":"Žiga Turk, Muammer Semih Sonkor, Robert Klinc","doi":"10.3846/jcem.2022.16682","DOIUrl":null,"url":null,"abstract":"Digitalisation of the construction industry is exposing it to cybersecurity risks. All phases of construction can be affected. Particularly vulnerable are information-intensive phases such as building design and building operation. Construction is among the last industries that are discovering its cybersecurity risks and can rely on frameworks developed for other contexts. In this paper, we evaluate the cybersecurity risks of the design phase of construction using the Cyber Assessment Framework from the National Cybersecurity Centre (NCSC) of the UK. The goal of this study is twofold. First, to examine cybersecurity risks themselves, and second, to evaluate the applicability of the NCSC framework for construction to see if and how construction is specific. The analysis shows that the cybersecurity risks follow the information impact curve that has been motivating the introduction of Building Information Modelling (BIM). The framework is applicable but is weak in addressing the specifics of the construction industrial ecosystem, which involves a multitude of dynamically connected actors, their overlapping authorities, and conflicting motives. It is suggested that a specialized constructionrelated framework should be developed.","PeriodicalId":15524,"journal":{"name":"Journal of Civil Engineering and Management","volume":" ","pages":""},"PeriodicalIF":4.3000,"publicationDate":"2022-05-03","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"7","resultStr":"{\"title\":\"CYBERSECURITY ASSESSMENT OF BIM/CDE DESIGN ENVIRONMENT USING CYBER ASSESSMENT FRAMEWORK\",\"authors\":\"Žiga Turk, Muammer Semih Sonkor, Robert Klinc\",\"doi\":\"10.3846/jcem.2022.16682\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Digitalisation of the construction industry is exposing it to cybersecurity risks. All phases of construction can be affected. Particularly vulnerable are information-intensive phases such as building design and building operation. Construction is among the last industries that are discovering its cybersecurity risks and can rely on frameworks developed for other contexts. In this paper, we evaluate the cybersecurity risks of the design phase of construction using the Cyber Assessment Framework from the National Cybersecurity Centre (NCSC) of the UK. The goal of this study is twofold. First, to examine cybersecurity risks themselves, and second, to evaluate the applicability of the NCSC framework for construction to see if and how construction is specific. The analysis shows that the cybersecurity risks follow the information impact curve that has been motivating the introduction of Building Information Modelling (BIM). The framework is applicable but is weak in addressing the specifics of the construction industrial ecosystem, which involves a multitude of dynamically connected actors, their overlapping authorities, and conflicting motives. It is suggested that a specialized constructionrelated framework should be developed.\",\"PeriodicalId\":15524,\"journal\":{\"name\":\"Journal of Civil Engineering and Management\",\"volume\":\" \",\"pages\":\"\"},\"PeriodicalIF\":4.3000,\"publicationDate\":\"2022-05-03\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"7\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Journal of Civil Engineering and Management\",\"FirstCategoryId\":\"5\",\"ListUrlMain\":\"https://doi.org/10.3846/jcem.2022.16682\",\"RegionNum\":3,\"RegionCategory\":\"工程技术\",\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"Q1\",\"JCRName\":\"ENGINEERING, CIVIL\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Journal of Civil Engineering and Management","FirstCategoryId":"5","ListUrlMain":"https://doi.org/10.3846/jcem.2022.16682","RegionNum":3,"RegionCategory":"工程技术","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"ENGINEERING, CIVIL","Score":null,"Total":0}
引用次数: 7

摘要

建筑行业的数字化使其面临网络安全风险。施工的所有阶段都可能受到影响。尤其脆弱的是信息密集的阶段,如建筑设计和建筑运营。建筑业是最后发现其网络安全风险的行业之一,可以依赖为其他环境开发的框架。在本文中,我们使用英国国家网络安全中心(NCSC)的网络评估框架来评估建设设计阶段的网络安全风险。这项研究的目的是双重的。首先,检查网络安全风险本身,其次,评估NCSC框架建设的适用性,以了解建设是否具体以及如何具体。分析表明,网络安全风险遵循信息影响曲线,这推动了建筑信息模型(BIM)的引入。该框架是适用的,但在解决建筑工业生态系统的具体问题时很弱,因为建筑工业生态系统涉及大量动态连接的参与者,他们的重叠权限和相互冲突的动机。建议制定一个专门的建筑相关框架。
本文章由计算机程序翻译,如有差异,请以英文原文为准。
CYBERSECURITY ASSESSMENT OF BIM/CDE DESIGN ENVIRONMENT USING CYBER ASSESSMENT FRAMEWORK
Digitalisation of the construction industry is exposing it to cybersecurity risks. All phases of construction can be affected. Particularly vulnerable are information-intensive phases such as building design and building operation. Construction is among the last industries that are discovering its cybersecurity risks and can rely on frameworks developed for other contexts. In this paper, we evaluate the cybersecurity risks of the design phase of construction using the Cyber Assessment Framework from the National Cybersecurity Centre (NCSC) of the UK. The goal of this study is twofold. First, to examine cybersecurity risks themselves, and second, to evaluate the applicability of the NCSC framework for construction to see if and how construction is specific. The analysis shows that the cybersecurity risks follow the information impact curve that has been motivating the introduction of Building Information Modelling (BIM). The framework is applicable but is weak in addressing the specifics of the construction industrial ecosystem, which involves a multitude of dynamically connected actors, their overlapping authorities, and conflicting motives. It is suggested that a specialized constructionrelated framework should be developed.
求助全文
通过发布文献求助,成功后即可免费获取论文全文。 去求助
来源期刊
CiteScore
6.70
自引率
4.70%
发文量
0
审稿时长
1.7 months
期刊介绍: The Journal of Civil Engineering and Management is a peer-reviewed journal that provides an international forum for the dissemination of the latest original research, achievements and developments. We publish for researchers, designers, users and manufacturers in the different fields of civil engineering and management. The journal publishes original articles that present new information and reviews. Our objective is to provide essential information and new ideas to help improve civil engineering competency, efficiency and productivity in world markets. The Journal of Civil Engineering and Management publishes articles in the following fields: building materials and structures, structural mechanics and physics, geotechnical engineering, road and bridge engineering, urban engineering and economy, constructions technology, economy and management, information technologies in construction, fire protection, thermoinsulation and renovation of buildings, labour safety in construction.
×
引用
GB/T 7714-2015
复制
MLA
复制
APA
复制
导出至
BibTeX EndNote RefMan NoteFirst NoteExpress
×
提示
您的信息不完整,为了账户安全,请先补充。
现在去补充
×
提示
您因"违规操作"
具体请查看互助需知
我知道了
×
提示
确定
请完成安全验证×
copy
已复制链接
快去分享给好友吧!
我知道了
右上角分享
点击右上角分享
0
联系我们:info@booksci.cn Book学术提供免费学术资源搜索服务,方便国内外学者检索中英文文献。致力于提供最便捷和优质的服务体验。 Copyright © 2023 布克学术 All rights reserved.
京ICP备2023020795号-1
ghs 京公网安备 11010802042870号
Book学术文献互助
Book学术文献互助群
群 号:481959085
Book学术官方微信