{"id":"https://openalex.org/W4320024045","doi":"https://doi.org/10.1109/bigdata55660.2022.10020529","title":"An Effect Analysis of ISO/IEC 27001 Certification on Technical Security of Norwegian Grid Operators","display_name":"An Effect Analysis of ISO/IEC 27001 Certification on Technical Security of Norwegian Grid Operators","publication_year":2022,"publication_date":"2022-12-17","ids":{"openalex":"https://openalex.org/W4320024045","doi":"https://doi.org/10.1109/bigdata55660.2022.10020529"},"language":"en","primary_location":{"id":"doi:10.1109/bigdata55660.2022.10020529","is_oa":false,"landing_page_url":"https://doi.org/10.1109/bigdata55660.2022.10020529","pdf_url":null,"source":{"id":"https://openalex.org/S4363607709","display_name":"2022 IEEE International Conference on Big Data (Big Data)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2022 IEEE International Conference on Big Data (Big Data)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5049075018","display_name":"\u00d8yvind Toftegaard","orcid":"https://orcid.org/0000-0002-9135-6891"},"institutions":[{"id":"https://openalex.org/I204778367","display_name":"Norwegian University of Science and Technology","ror":"https://ror.org/05xg72x27","country_code":"NO","type":"education","lineage":["https://openalex.org/I204778367"]}],"countries":["NO"],"is_corresponding":true,"raw_author_name":"Oyvind Anders Arntzen Toftegaard","raw_affiliation_strings":["Norwegian University of Science and Technology","Norwegian Energy Regulatory Authority"],"affiliations":[{"raw_affiliation_string":"Norwegian University of Science and Technology","institution_ids":["https://openalex.org/I204778367"]},{"raw_affiliation_string":"Norwegian Energy Regulatory Authority","institution_ids":[]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":1,"corresponding_author_ids":["https://openalex.org/A5049075018"],"corresponding_institution_ids":["https://openalex.org/I204778367"],"apc_list":null,"apc_paid":null,"fwci":0.8739,"has_fulltext":false,"cited_by_count":7,"citation_normalized_percentile":{"value":0.77450696,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"2620","last_page":"2629"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9983999729156494,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9983999729156494,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10430","display_name":"Software Engineering Techniques and Practices","score":0.9775000214576721,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11357","display_name":"Risk and Safety Analysis","score":0.9769999980926514,"subfield":{"id":"https://openalex.org/subfields/1804","display_name":"Statistics, Probability and Uncertainty"},"field":{"id":"https://openalex.org/fields/18","display_name":"Decision Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/certification","display_name":"Certification","score":0.6431957483291626},{"id":"https://openalex.org/keywords/information-security-management-system","display_name":"Information security management system","score":0.5583084225654602},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.5493431687355042},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.5315696001052856},{"id":"https://openalex.org/keywords/certified-information-systems-security-professional","display_name":"Certified Information Systems Security Professional","score":0.5099486112594604},{"id":"https://openalex.org/keywords/information-security","display_name":"Information security","score":0.4675620496273041},{"id":"https://openalex.org/keywords/itil-security-management","display_name":"ITIL security management","score":0.43286532163619995},{"id":"https://openalex.org/keywords/standard-of-good-practice","display_name":"Standard of Good Practice","score":0.4285096526145935},{"id":"https://openalex.org/keywords/grid","display_name":"Grid","score":0.41829192638397217},{"id":"https://openalex.org/keywords/accounting","display_name":"Accounting","score":0.3846651613712311},{"id":"https://openalex.org/keywords/business","display_name":"Business","score":0.34492382407188416},{"id":"https://openalex.org/keywords/security-service","display_name":"Security service","score":0.20330315828323364},{"id":"https://openalex.org/keywords/cloud-computing-security","display_name":"Cloud computing security","score":0.15827417373657227},{"id":"https://openalex.org/keywords/security-information-and-event-management","display_name":"Security information and event management","score":0.12905427813529968},{"id":"https://openalex.org/keywords/mathematics","display_name":"Mathematics","score":0.10988360643386841},{"id":"https://openalex.org/keywords/management","display_name":"Management","score":0.08127173781394958},{"id":"https://openalex.org/keywords/cloud-computing","display_name":"Cloud computing","score":0.07881566882133484}],"concepts":[{"id":"https://openalex.org/C46304622","wikidata":"https://www.wikidata.org/wiki/Q374814","display_name":"Certification","level":2,"score":0.6431957483291626},{"id":"https://openalex.org/C111153917","wikidata":"https://www.wikidata.org/wiki/Q1662500","display_name":"Information security management system","level":5,"score":0.5583084225654602},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.5493431687355042},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5315696001052856},{"id":"https://openalex.org/C169537543","wikidata":"https://www.wikidata.org/wiki/Q1056312","display_name":"Certified Information Systems Security Professional","level":5,"score":0.5099486112594604},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.4675620496273041},{"id":"https://openalex.org/C114351632","wikidata":"https://www.wikidata.org/wiki/Q5974820","display_name":"ITIL security management","level":5,"score":0.43286532163619995},{"id":"https://openalex.org/C47309137","wikidata":"https://www.wikidata.org/wiki/Q7598357","display_name":"Standard of Good Practice","level":5,"score":0.4285096526145935},{"id":"https://openalex.org/C187691185","wikidata":"https://www.wikidata.org/wiki/Q2020720","display_name":"Grid","level":2,"score":0.41829192638397217},{"id":"https://openalex.org/C121955636","wikidata":"https://www.wikidata.org/wiki/Q4116214","display_name":"Accounting","level":1,"score":0.3846651613712311},{"id":"https://openalex.org/C144133560","wikidata":"https://www.wikidata.org/wiki/Q4830453","display_name":"Business","level":0,"score":0.34492382407188416},{"id":"https://openalex.org/C29983905","wikidata":"https://www.wikidata.org/wiki/Q7445066","display_name":"Security service","level":3,"score":0.20330315828323364},{"id":"https://openalex.org/C184842701","wikidata":"https://www.wikidata.org/wiki/Q370563","display_name":"Cloud computing security","level":3,"score":0.15827417373657227},{"id":"https://openalex.org/C103377522","wikidata":"https://www.wikidata.org/wiki/Q3493999","display_name":"Security information and event management","level":4,"score":0.12905427813529968},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.10988360643386841},{"id":"https://openalex.org/C187736073","wikidata":"https://www.wikidata.org/wiki/Q2920921","display_name":"Management","level":1,"score":0.08127173781394958},{"id":"https://openalex.org/C79974875","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud computing","level":2,"score":0.07881566882133484},{"id":"https://openalex.org/C162324750","wikidata":"https://www.wikidata.org/wiki/Q8134","display_name":"Economics","level":0,"score":0.0},{"id":"https://openalex.org/C2524010","wikidata":"https://www.wikidata.org/wiki/Q8087","display_name":"Geometry","level":1,"score":0.0},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0},{"id":"https://openalex.org/C117110713","wikidata":"https://www.wikidata.org/wiki/Q3394676","display_name":"Network security policy","level":4,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/bigdata55660.2022.10020529","is_oa":false,"landing_page_url":"https://doi.org/10.1109/bigdata55660.2022.10020529","pdf_url":null,"source":{"id":"https://openalex.org/S4363607709","display_name":"2022 IEEE International Conference on Big Data (Big Data)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2022 IEEE International Conference on Big Data (Big Data)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":12,"referenced_works":["https://openalex.org/W2162739315","https://openalex.org/W2296469796","https://openalex.org/W2923242417","https://openalex.org/W2941175079","https://openalex.org/W3127452190","https://openalex.org/W3181892924","https://openalex.org/W4205879951","https://openalex.org/W4231698228","https://openalex.org/W4385885728","https://openalex.org/W6632628401","https://openalex.org/W6762331978","https://openalex.org/W6855210740"],"related_works":["https://openalex.org/W578019356","https://openalex.org/W2546952811","https://openalex.org/W40842196","https://openalex.org/W203815982","https://openalex.org/W3089669902","https://openalex.org/W2000891179","https://openalex.org/W2232533402","https://openalex.org/W4205358031","https://openalex.org/W1495551475","https://openalex.org/W2584162156"],"abstract_inverted_index":{"Digital":[0],"vulnerabilities":[1],"and":[2,17,127,154,159,169,191],"the":[3,8,49,71,110,143,161,202,219],"risk":[4],"of":[5,61,73,135,167,221],"cyberattacks":[6],"against":[7],"electric":[9],"grid":[10,30,38,95,152,157,182,189,199],"are":[11,20],"a":[12,164,175,194],"concern":[13],"for":[14,23,93,179,187,197],"both":[15],"governments":[16],"businesses.":[18],"There":[19],"several":[21],"opportunities":[22],"authorities":[24],"to":[25,32,40,48,57,88,108,206,216],"impose":[26],"security":[27,44,77,91,114,147,209,227],"measures":[28],"on":[29,75,101,225],"operators":[31,39,153],"reduce":[33],"risks.":[34],"German":[35,156,170],"legislation":[36],"requires":[37],"certify":[41],"their":[42],"information":[43],"management":[45],"system":[46],"according":[47],"ISO/IEC":[50,62,83,136,222],"27001":[51,63,84,137,223],"standard.":[52],"Some":[53],"researchers":[54],"have":[55],"tried":[56],"measure":[58],"various":[59],"effects":[60],"certification,":[64],"but":[65],"nobody":[66],"has":[67],"so":[68],"far":[69],"assessed":[70],"effect":[72,134,178,196,220],"certification":[74,85,138,224],"technical":[76,90,113,146,226],"performance.":[78,228],"This":[79],"study":[80],"hypothesizes":[81],"that":[82],"will":[86],"lead":[87],"increased":[89],"performance":[92,148],"Norwegian":[94,151,168,181],"operators.":[96,200],"A":[97],"Quasi-Experimental":[98],"methodology":[99],"based":[100],"Difference":[102],"in":[103,145],"Differences":[104],"logic":[105],"is":[106,185,214],"applied":[107],"test":[109],"hypothesis.":[111],"11.010":[112],"scores":[115],"from":[116],"400":[117],"entities":[118],"were":[119],"collected":[120],"through":[121],"BlackKite\u2019s":[122],"Technical":[123],"Cyber":[124],"Rating":[125,131],"tool":[126],"Security":[128,130],"Scorecard\u2019s":[129],"tool.":[132],"The":[133,172],"was":[139,204],"estimated":[140],"by":[141],"taking":[142],"difference":[144,162],"between":[149,163],"uncertified":[150],"certified":[155],"operators,":[158,183,190],"subtracting":[160],"control":[165],"group":[166],"banks.":[171],"analysis":[173],"predicts":[174],"significant":[176],"positive":[177],"small":[180],"it":[184,192],"inconclusive":[186],"medium-sized":[188],"indicates":[193],"negative":[195],"large":[198],"Since":[201],"research":[203,213],"limited":[205],"externally":[207],"identifiable":[208],"mechanisms":[210],"only,":[211],"more":[212],"necessary":[215],"fully":[217],"understand":[218]},"counts_by_year":[{"year":2026,"cited_by_count":1},{"year":2025,"cited_by_count":3},{"year":2024,"cited_by_count":2},{"year":2022,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}