485 research outputs found

    A Survey on Forensics and Compliance Auditing for Critical Infrastructure Protection

    Get PDF
    The broadening dependency and reliance that modern societies have on essential services provided by Critical Infrastructures is increasing the relevance of their trustworthiness. However, Critical Infrastructures are attractive targets for cyberattacks, due to the potential for considerable impact, not just at the economic level but also in terms of physical damage and even loss of human life. Complementing traditional security mechanisms, forensics and compliance audit processes play an important role in ensuring Critical Infrastructure trustworthiness. Compliance auditing contributes to checking if security measures are in place and compliant with standards and internal policies. Forensics assist the investigation of past security incidents. Since these two areas significantly overlap, in terms of data sources, tools and techniques, they can be merged into unified Forensics and Compliance Auditing (FCA) frameworks. In this paper, we survey the latest developments, methodologies, challenges, and solutions addressing forensics and compliance auditing in the scope of Critical Infrastructure Protection. This survey focuses on relevant contributions, capable of tackling the requirements imposed by massively distributed and complex Industrial Automation and Control Systems, in terms of handling large volumes of heterogeneous data (that can be noisy, ambiguous, and redundant) for analytic purposes, with adequate performance and reliability. The achieved results produced a taxonomy in the field of FCA whose key categories denote the relevant topics in the literature. Also, the collected knowledge resulted in the establishment of a reference FCA architecture, proposed as a generic template for a converged platform. These results are intended to guide future research on forensics and compliance auditing for Critical Infrastructure Protection.info:eu-repo/semantics/publishedVersio

    Making sense of solid for data governance and GDPR

    Get PDF
    Solid is a new radical paradigm based on decentralising control of data from central organisations to individuals that seeks to empower individuals to have active control of who and how their data is being used. In order to realise this vision, the use-cases and implementations of Solid also require us to be consistent with the relevant privacy and data protection regulations such as the GDPR. However, to do so first requires a prior understanding of all actors, roles, and processes involved in a use-case, which then need to be aligned with GDPR's concepts to identify relevant obligations, and then investigate their compliance. To assist with this process, we describe Solid as a variation of `cloud technology' and adapt the existing standardised terminologies and paradigms from ISO/IEC standards. We then investigate the applicability of GDPR's requirements to Solid-based implementations, along with an exploration of how existing issues arising from GDPR enforcement also apply to Solid. Finally, we outline the path forward through specific extensions to Solid's specifications that mitigate known issues and enable the realisation of its benefits

    Making sense of solid for data governance and GDPR

    Get PDF
    Solid is a new radical paradigm based on decentralising control of data from central organisations to individuals that seeks to empower individuals to have active control of who and how their data is being used. In order to realise this vision, the use-cases and implementations of Solid also require us to be consistent with the relevant privacy and data protection regulations such as the GDPR. However, to do so first requires a prior understanding of all actors, roles, and processes involved in a use-case, which then need to be aligned with GDPR's concepts to identify relevant obligations, and then investigate their compliance. To assist with this process, we describe Solid as a variation of `cloud technology' and adapt the existing standardised terminologies and paradigms from ISO/IEC standards. We then investigate the applicability of GDPR's requirements to Solid-based implementations, along with an exploration of how existing issues arising from GDPR enforcement also apply to Solid. Finally, we outline the path forward through specific extensions to Solid's specifications that mitigate known issues and enable the realisation of its benefits

    Operational Research: methods and applications

    Get PDF
    This is the final version. Available on open access from Taylor & Francis via the DOI in this recordThroughout its history, Operational Research has evolved to include methods, models and algorithms that have been applied to a wide range of contexts. This encyclopedic article consists of two main sections: methods and applications. The first summarises the up-to-date knowledge and provides an overview of the state-of-the-art methods and key developments in the various subdomains of the field. The second offers a wide-ranging list of areas where Operational Research has been applied. The article is meant to be read in a nonlinear fashion and used as a point of reference by a diverse pool of readers: academics, researchers, students, and practitioners. The entries within the methods and applications sections are presented in alphabetical order. The authors dedicate this paper to the 2023 Turkey/Syria earthquake victims. We sincerely hope that advances in OR will play a role towards minimising the pain and suffering caused by this and future catastrophes

    Strategic Assortment Decisions in Omnichannel Retailing: The Design and Evaluation of an Omnichannel Assortment Ontology for Consumer Confusion.

    Get PDF
    Consumer confusion is a phenomenon observed in retail settings where consumers feel irritation or frustration during the shopping journey. Consumers can be overwhelmed by assortment size, complex product variety, brand similarities, information inconsistencies or by intense stimuli from store atmospherics inducing information overload, leading to adverse reactions. Oftentimes, these experiences result in various negative short- and long-term consequences such as helplessness, purchase abandonment, dissatisfaction, or loss of trust or loyalty, thus representing a crucial challenge for retailers to prevent or mitigate. Consumer confusion has been studied extensively in a single-channel context, for instance, by investigating information overload phenomena in online shopping situations or examining increased choice sets resulting from large assortment sizes in physical stores. However, although omnichannel retailing has become the current state-of-the-art in the retail industry today, consumer confusion research from an omnichannel perspective is still very scarce. With the increased adoption of the omnichannel strategy by retailers that allow free switching behaviour for their customers during their shopping journeys, a new dimension to the consumer confusion phenomenon is observed. Customers are not only exposed to potential confusion at a specific retail situation in a single channel but are now confronted with potential new negative experiences while comparing products, prices, or information across channels. Particularly, when confronted with assortment inconsistencies across channels while switching channels, customers can experience irritation, frustration, or annoyance if the desired item is not to be found on the other channel, leading to adverse reactions that can potentially impact the retailer's financial performance. Prior literature has considered consumer confusion induced by assortment size, variety, or layout, but neglected its occurrence from assortment inconsistencies across channels from a channel switching perspective so far. This thesis focuses on the consumer confusion phenomenon resulting from assortment inconsistencies across channels from a channel-switching perspective in omnichannel retailing. Strategic assortment decisions in omnichannel retailing involve the coordination of the assortment between channels. Retailers can decide to realise a “Full”, “Asymmetric”, or “No Integration” approach for their assortment across channels. These strategic assortment decisions are taken at the Marketing-Operations-Interface (MOI), an interface harmonizing oftentimes conflicting relationships between objectives of the marketing and operations functions of the retailer. Although identical assortment across channels seems to be the desired solution to prevent consumer confusion (representing an objective from the marketing function), retailers oftentimes apply partial integration to benefit from channel-specific advantages such as the Long Tail effect (representing an objective from the operations function) which is detrimental to consumer confusion prevention. Retailers seem to neglect the significance of consumer confusion while making strategic assortment decisions at the MOI indicating that the phenomenon is not sufficiently explored or captured in an omnichannel context. Retailers appear to lack knowledge of the relevant concepts, dimensions, and consequences of the consumer confusion phenomenon. As a result, retailers are likely to fail in addressing and preventing the occurrence of the consumer confusion phenomenon in an omnichannel context. Current studies on strategic assortment decisions and consumer confusion in omnichannel retailing are very scarce and primarily based on experimental studies with a strong lack of empirical contributions. More importantly, none of the studies considers channel switching behaviour in the context of consumer confusion although representing the primary condition for the phenomenon to occur. There is a need for the integration and alignment of knowledge capturing the domains for strategic assortment decisions, the consumer confusion concept, and its short- and long-term consequences from a channel switching behaviour perspective in order to inform strategic assortment decisions at the MOI. Ontologies are explicit and formal specifications of shared conceptualisations that can structure and link information of specific domains and thus are a suitable technique for knowledge representation. Grounded on a Design Science project, this research designs and develops an ontology-based knowledge representation that captures and aligns domain knowledge on strategic assortment decisions, the consumer confusion concept and its consequences from a channel switching behaviour perspective in an omnichannel retailing context. The literature- and practitioner-informed Omnichannel Assortment Ontology for Consumer Confusion is able to integrate and represent relevant concepts and their relationships at the MOI in order to inform omnichannel retailers on the link between strategic assortment decisions and the consumer confusion phenomenon. The ontology is instantiated and evaluated through a System Dynamics model based on a case study that demonstrates successfully its ability to inform omnichannel retailers on strategic assortment decisions and the consumer confusion concept at the MOI. This study contributes to theory and practice in various ways. From a theoretical perspective, this is the first study to link strategic assortment decisions with the consumer confusion concept from a channel switching behaviour perspective. The solution design embodies novel design knowledge on the construction of an ontology-based knowledge representation. Moreover, the study enhances the fields of omnichannel assortment, consumer confusion, and channel switching behaviour research by introducing novel concepts, tools, and an improved understanding of the domains and their interplay with each other. From a managerial perspective, the ontology effectively serves as a knowledge reference that is able to guide strategic decision-making in assortment integration for omnichannel retailers at the MOI. This allows omnichannel retailers to identify and mitigate potential adverse consumer reactions induced by consumer confusion, thus eventually preventing financial impact on their retail performance

    The 6G Architecture Landscape:European Perspective

    Get PDF

    Operational research:methods and applications

    Get PDF
    Throughout its history, Operational Research has evolved to include a variety of methods, models and algorithms that have been applied to a diverse and wide range of contexts. This encyclopedic article consists of two main sections: methods and applications. The first aims to summarise the up-to-date knowledge and provide an overview of the state-of-the-art methods and key developments in the various subdomains of the field. The second offers a wide-ranging list of areas where Operational Research has been applied. The article is meant to be read in a nonlinear fashion. It should be used as a point of reference or first-port-of-call for a diverse pool of readers: academics, researchers, students, and practitioners. The entries within the methods and applications sections are presented in alphabetical order

    The value of community pharmacy incident reporting in optimising the safety and quality use of medicines

    Get PDF
    Medication safety has emerged as a healthcare priority with the launch of the World Health Organization’s third global patient safety challenge. Understanding the complex interplay between human and system factors that potentiate medication incidents can illuminate improvement opportunities in organisational safeguards and safe medication practices. This thesis aimed to develop, implement, and evaluate systematic incident reporting system (IRS) to identify, characterise and address risks to medication safety and quality use of medicines (QUM) in primary care. The study was conducted in 30-community pharmacies in Sydney, Australia, through a confidential and anonymous IRS called QUMwatch. The study used the Advanced Incident Management System (AIMS) taxonomy, which is a hierarchical classification system based on error theory. Analysis of 1,013 incident reports collected over 30 months, identified medication incidents (MIs) that affected patients over 65 years old, the prescribing stage, and medicines acting on the cardiovascular and nervous systems. Human, task, and organisational factors contributed to MIs, particularly healthcare providers' cognitive errors, communication problems, poor risk management, and safety culture. Factors that facilitated error recovery included individual attributes, appropriate intervention, effective communication, and the use of standardised protocols. Remedial actions included changes in care plans, dosages, reviews of medicines, and medicine cessation. The study evaluated the QUMwatch program's tools and methods using a mixed-methods approach and found that 16 out of 20 variables on the data collection form had over 90% complete data, and data consistency was high. Anonymity was the preferred method of reporting. The stimulatory package significantly raised the reporting rate from a baseline average of 32.4 to 77.3 reports/month (p < .001). The AIMS taxonomy for MIs had substantial validity for high-order medication processes for the Australian community pharmacy context. The study demonstrated the feasibility of a well-designed IRS in community pharmacy to identify MIs and to generate safety lessons and recommendations
    • 

    corecore