Show/Hide Menu
Hide/Show Apps
anonymousUser
Logout
Türkçe
Türkçe
Search
Search
Login
Login
OpenMETU
OpenMETU
About
About
Open Science Policy
Open Science Policy
Communities & Collections
Communities & Collections
Help
Help
Frequently Asked Questions
Frequently Asked Questions
Videos
Videos
Thesis submission
Thesis submission
Publication submission with DOI
Publication submission with DOI
Publication submission
Publication submission
Contact us
Contact us
Regulatory approaches for cyber security of critical infrastructures: The case of Turkey
Date
2016-06-01
Author
Karabacak, Bilge
Özkan Yıldırım, Sevgi
Baykal, Nazife
Metadata
Show full item record
This work is licensed under a
Creative Commons Attribution-NonCommercial-NoDerivatives 4.0 International License
.
Item Usage Stats
17
views
0
downloads
Cite This
Critical infrastructures are vital assets for public safety, economic welfare and/or national security of countries. Today, cyber systems are extensively used to control and monitor critical infrastructures. A considerable amount of the infrastructures are connected to the Internet over corporate networks. Therefore, cyber security is an important item for the national security agendas of several countries. The enforcement of security principles on the critical infrastructure operators through the regulations is a still-debated topic. There are several academic and governmental studies that analyze the possible regulatory approaches for the security of the critical infrastructures. Although most of them favor the market-oriented approaches, some argue the necessity of government interventions. This paper presents a three phased-research to identify the suitable regulatory approach for the critical infrastructures of Turkey. First of all, the data of the critical infrastructures of Turkey are qualitatively analyzed, by using grounded theory method, to extract the vulnerabilities associated with the critical infrastructures. Secondly, a Delphi survey is conducted with six experts to extract the required regulations to mitigate the vulnerabilities. Finally, a focus group interview is conducted with the employees of the critical infrastructures to specify the suitable regulatory approaches for the critical infrastructures of Turkey. The results of the research show that the critical infrastructure operators of Turkey, including privately held operators, are mainly in favor of regulations. (C) 2016 Bilge Karabacak, Sevgi Ozkan Yildirim, Nazife Baykal. Published by Elsevier Ltd. All rights reserved.
Subject Keywords
Focus group interview
,
Grounded theory method
,
Delphi survey
,
Regulatory agency
,
Regulation
,
National security
,
Critical infrastructure protection
,
Critical infrastructures
,
Cyber security
URI
https://hdl.handle.net/11511/31199
Journal
COMPUTER LAW & SECURITY REVIEW
DOI
https://doi.org/10.1016/j.clsr.2016.02.005
Collections
Graduate School of Informatics, Article
Citation Formats
IEEE
ACM
APA
CHICAGO
MLA
BibTeX
B. Karabacak, S. Özkan Yıldırım, and N. Baykal, “Regulatory approaches for cyber security of critical infrastructures: The case of Turkey,”
COMPUTER LAW & SECURITY REVIEW
, vol. 32, no. 3, pp. 526–539, 2016, Accessed: 00, 2020. [Online]. Available: https://hdl.handle.net/11511/31199.
