IIIS - 2023 Conferences Proceedings

2023 Spring Conferences Proceedings

	The PISA Model: A Common Data Security Model for the Industrial Internet of Things (IIoT) Information Systems Gerard Ward, Lech Janczewski Proceedings of the 14th International Multi-Conference on Complexity, Informatics and Cybernetics: IMCIC 2023, pp. 113-120 (2023); https://doi.org/10.54808/IMCIC2023.01.113	The 14th International Multi-Conference on Complexity, Informatics and Cybernetics: IMCIC 2023 Virtual Conference March 28 - 31, 2023 Proceedings of IMCIC 2023 ISSN: 2771-5914 (Print) ISBN (Volume): 978-1-950492-71-8 (Print)
	Authors Information \| Citation \| Full Text \| Gerard Ward Information Systems and Operational Management, Business School, The University of Auckland, Auckland, New Zealand Lech Janczewski Information Systems and Operational Management, Business School, The University of Auckland, Auckland, New Zealand Cite this paper as: Ward, G., Janczewski, L. (2023). The PISA Model: A Common Data Security Model for the Industrial Internet of Things (IIoT) Information Systems. In N. Callaos, S. Hashimoto, N. Lace, B. Sánchez, M. Savoie (Eds.), Proceedings of the 14th International Multi-Conference on Complexity, Informatics and Cybernetics: IMCIC 2023, pp. 113-120. International Institute of Informatics and Cybernetics. https://doi.org/10.54808/IMCIC2023.01.113 DOI: 10.54808/IMCIC2023.01.113 ISBN: 978-1-950492-71-8 (Print) ISSN: 2771-5914 (Print) Copyright: © International Institute of Informatics and Systemics 2023 Publisher: International Institute of Informatics and Cybernetics
Abstract The Industrial Internet of Things (IIoT) describes a transdisciplinary Information System (IS) that integrates the previously discrete domains of Information Technology (IT) and Operational Technology (OT), as well as relatively more recent innovations such as Artificial Intelligence (AI). The IIoT requires a fidelity of data to support the orchestration of autonomous processes which may include the control of safety-critical tasks which were historically the province of OT. The data created and consumed by the IIoT IS may also be subject to privacy and regulatory considerations, particularly in use-cases centered on people, such as autonomous vehicles and smart cities. These IS domains that makeup the IIoT have different architectures, lexicons, and priorities. To contribute to the IIoT risk governance processes that the emergent and complex IIoT paradigm requires, this research builds on previous work to present a generalized data security model relevant to the IIoT ensemble, which is referred to as the PISA Model. The acronyms in this novel PISA Model relate to the controls that support Privacy, Integrity, Safety, and Availability. The model was refined over three Delphi rounds by a transdisciplinary panel of experts. The PISA Model can contribute to the safe and secure operation of the IIoT IS by assisting the identification of both safety-critical and business-critical data risk.
Full Text