Application of Structural Equation Modelling to Cybersecurity Risk Analysis in the Era of Industry 4.0
In the current digital transformation to Industry 4.0, the demands on the ability of countries to react responsibly and effectively to threats in the field of cyber security (CS) are increasing. Cyber safety is one of the pillars and concepts of Industry 4.0, as digitization brings convergence and i...
Main Authors: | , , , |
---|---|
Format: | Article |
Language: | English |
Published: |
MDPI AG
2024-01-01
|
Series: | Mathematics |
Subjects: | |
Online Access: | https://www.mdpi.com/2227-7390/12/2/343 |
_version_ | 1797343008400605184 |
---|---|
author | Miroslav Gombár Alena Vagaská Antonín Korauš Pavlína Račková |
author_facet | Miroslav Gombár Alena Vagaská Antonín Korauš Pavlína Račková |
author_sort | Miroslav Gombár |
collection | DOAJ |
description | In the current digital transformation to Industry 4.0, the demands on the ability of countries to react responsibly and effectively to threats in the field of cyber security (CS) are increasing. Cyber safety is one of the pillars and concepts of Industry 4.0, as digitization brings convergence and integration of information technologies (IT) and operational technologies (OT), IT/OT systems, and data. Collecting and connecting a large amount of data in smart factories and cities poses risks, in a broader context for the entire state. The authors focus attention on the issue of CS, where, despite all digitization, the human factor plays a key role—an actor of risk as well as strengthening the sustainability and resilience of CS. It is obvious that in accordance with how the individuals (decision-makers) perceive the risk, thus they subsequently evaluate the situation and countermeasures. Perceiving cyber threats/risks in their complexity as a part of hybrid threats (HT) helps decision-makers prevent and manage them. Due to the growing trend of HT, the need for research focused on the perception of threats by individuals and companies is increasing. Moreover, the literature review points out a lack of methodology and evaluation strategy. This study presents the results of the research aimed at the mathematical modelling of risk perception of threats to the state and industry through the disruption of CS. The authors provide the developed factor model of cyber security (FMCS), i.e., the model of CS threat risk perception. When creating the FMCS, the researchers applied SEM (structural equation modelling) and confirmatory factor analysis to the data obtained by the implementation of the research tool (a questionnaire designed by the authors). The pillars and sub-pillars of CS defined within the questionnaire enable quantification in the perception of the level of risk of CS as well as differentiation and comparison between the analyzed groups of respondents (students of considered universities in SK and CZ). The convergent and discriminant validity of the research instrument is verified, and its reliability is confirmed (Cronbach’s alpha = 0.95047). The influence of the individual pillars is demonstrated as significant at the significance level of α = 5%. For the entire research set <i>N</i> = 964, the highest share of risk perception of CS threats is achieved by the DISRIT pillar (disruption or reduction of the resistance of IT infrastructure). |
first_indexed | 2024-03-08T10:41:27Z |
format | Article |
id | doaj.art-9f10c0b0e2834ee6af60a2040f66c702 |
institution | Directory Open Access Journal |
issn | 2227-7390 |
language | English |
last_indexed | 2024-03-08T10:41:27Z |
publishDate | 2024-01-01 |
publisher | MDPI AG |
record_format | Article |
series | Mathematics |
spelling | doaj.art-9f10c0b0e2834ee6af60a2040f66c7022024-01-26T17:34:13ZengMDPI AGMathematics2227-73902024-01-0112234310.3390/math12020343Application of Structural Equation Modelling to Cybersecurity Risk Analysis in the Era of Industry 4.0Miroslav Gombár0Alena Vagaská1Antonín Korauš2Pavlína Račková3Department of Management, Faculty of Management and Business, University of Prešov, 080 01 Prešov, SlovakiaDepartment of Natural Sciences and Humanities, Faculty of Manufacturing Technologies with a Seat in Prešov, Technical University of Košice, 080 01 Prešov, SlovakiaDepartment of Information Science and Management, Academy of the Police Force in Bratislava, 835 17 Bratislava, SlovakiaDepartment of Mathematics and Physics, Faculty of Military Technology, University of Defence, 662 10 Brno, Czech RepublicIn the current digital transformation to Industry 4.0, the demands on the ability of countries to react responsibly and effectively to threats in the field of cyber security (CS) are increasing. Cyber safety is one of the pillars and concepts of Industry 4.0, as digitization brings convergence and integration of information technologies (IT) and operational technologies (OT), IT/OT systems, and data. Collecting and connecting a large amount of data in smart factories and cities poses risks, in a broader context for the entire state. The authors focus attention on the issue of CS, where, despite all digitization, the human factor plays a key role—an actor of risk as well as strengthening the sustainability and resilience of CS. It is obvious that in accordance with how the individuals (decision-makers) perceive the risk, thus they subsequently evaluate the situation and countermeasures. Perceiving cyber threats/risks in their complexity as a part of hybrid threats (HT) helps decision-makers prevent and manage them. Due to the growing trend of HT, the need for research focused on the perception of threats by individuals and companies is increasing. Moreover, the literature review points out a lack of methodology and evaluation strategy. This study presents the results of the research aimed at the mathematical modelling of risk perception of threats to the state and industry through the disruption of CS. The authors provide the developed factor model of cyber security (FMCS), i.e., the model of CS threat risk perception. When creating the FMCS, the researchers applied SEM (structural equation modelling) and confirmatory factor analysis to the data obtained by the implementation of the research tool (a questionnaire designed by the authors). The pillars and sub-pillars of CS defined within the questionnaire enable quantification in the perception of the level of risk of CS as well as differentiation and comparison between the analyzed groups of respondents (students of considered universities in SK and CZ). The convergent and discriminant validity of the research instrument is verified, and its reliability is confirmed (Cronbach’s alpha = 0.95047). The influence of the individual pillars is demonstrated as significant at the significance level of α = 5%. For the entire research set <i>N</i> = 964, the highest share of risk perception of CS threats is achieved by the DISRIT pillar (disruption or reduction of the resistance of IT infrastructure).https://www.mdpi.com/2227-7390/12/2/343mathematical modellingIndustry 4.0cybersecurity IT regulationcybersecurity factor modelrisk perceptionstructural equations modelling |
spellingShingle | Miroslav Gombár Alena Vagaská Antonín Korauš Pavlína Račková Application of Structural Equation Modelling to Cybersecurity Risk Analysis in the Era of Industry 4.0 Mathematics mathematical modelling Industry 4.0 cybersecurity IT regulation cybersecurity factor model risk perception structural equations modelling |
title | Application of Structural Equation Modelling to Cybersecurity Risk Analysis in the Era of Industry 4.0 |
title_full | Application of Structural Equation Modelling to Cybersecurity Risk Analysis in the Era of Industry 4.0 |
title_fullStr | Application of Structural Equation Modelling to Cybersecurity Risk Analysis in the Era of Industry 4.0 |
title_full_unstemmed | Application of Structural Equation Modelling to Cybersecurity Risk Analysis in the Era of Industry 4.0 |
title_short | Application of Structural Equation Modelling to Cybersecurity Risk Analysis in the Era of Industry 4.0 |
title_sort | application of structural equation modelling to cybersecurity risk analysis in the era of industry 4 0 |
topic | mathematical modelling Industry 4.0 cybersecurity IT regulation cybersecurity factor model risk perception structural equations modelling |
url | https://www.mdpi.com/2227-7390/12/2/343 |
work_keys_str_mv | AT miroslavgombar applicationofstructuralequationmodellingtocybersecurityriskanalysisintheeraofindustry40 AT alenavagaska applicationofstructuralequationmodellingtocybersecurityriskanalysisintheeraofindustry40 AT antoninkoraus applicationofstructuralequationmodellingtocybersecurityriskanalysisintheeraofindustry40 AT pavlinarackova applicationofstructuralequationmodellingtocybersecurityriskanalysisintheeraofindustry40 |