{"id":"https://openalex.org/W2051986607","doi":"https://doi.org/10.1145/2523649.2530277","title":"Systems thinking for safety and security","display_name":"Systems thinking for safety and security","publication_year":2013,"publication_date":"2013-12-09","ids":{"openalex":"https://openalex.org/W2051986607","doi":"https://doi.org/10.1145/2523649.2530277","mag":"2051986607"},"language":"en","primary_location":{"id":"doi:10.1145/2523649.2530277","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2523649.2530277","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 29th Annual Computer Security Applications Conference","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"http://hdl.handle.net/1721.1/96965","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5052065733","display_name":"William Young","orcid":null},"institutions":[{"id":"https://openalex.org/I4210110987","display_name":"IIT@MIT","ror":"https://ror.org/01wp8zh54","country_code":"US","type":"facility","lineage":["https://openalex.org/I30771326","https://openalex.org/I4210110987"]},{"id":"https://openalex.org/I63966007","display_name":"Massachusetts Institute of Technology","ror":"https://ror.org/042nb2s44","country_code":"US","type":"education","lineage":["https://openalex.org/I63966007"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"William Young","raw_affiliation_strings":["MIT, Cambridge, MA","MIT, Cambridge, Ma.#TAB#"],"affiliations":[{"raw_affiliation_string":"MIT, Cambridge, MA","institution_ids":["https://openalex.org/I4210110987"]},{"raw_affiliation_string":"MIT, Cambridge, Ma.#TAB#","institution_ids":["https://openalex.org/I63966007"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5084051792","display_name":"Nancy G. Leveson","orcid":null},"institutions":[{"id":"https://openalex.org/I46020346","display_name":"American Institute of Aeronautics and Astronautics","ror":"https://ror.org/00a1rzv11","country_code":"US","type":"other","lineage":["https://openalex.org/I46020346"]},{"id":"https://openalex.org/I63966007","display_name":"Massachusetts Institute of Technology","ror":"https://ror.org/042nb2s44","country_code":"US","type":"education","lineage":["https://openalex.org/I63966007"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Nancy Leveson","raw_affiliation_strings":["Aeronautics and Astronautics, MIT, Cambridge, MA","Aeronautics and Astronautics, MIT, Cambridge, MA#TAB#"],"affiliations":[{"raw_affiliation_string":"Aeronautics and Astronautics, MIT, Cambridge, MA","institution_ids":["https://openalex.org/I46020346"]},{"raw_affiliation_string":"Aeronautics and Astronautics, MIT, Cambridge, MA#TAB#","institution_ids":["https://openalex.org/I63966007"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":2,"corresponding_author_ids":["https://openalex.org/A5052065733"],"corresponding_institution_ids":["https://openalex.org/I4210110987","https://openalex.org/I63966007"],"apc_list":null,"apc_paid":null,"fwci":15.04,"has_fulltext":false,"cited_by_count":157,"citation_normalized_percentile":{"value":0.98636177,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":96,"max":100},"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"8"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9965000152587891,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9965000152587891,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12000","display_name":"Systems Engineering Methodologies and Applications","score":0.9872000217437744,"subfield":{"id":"https://openalex.org/subfields/2207","display_name":"Control and Systems Engineering"},"field":{"id":"https://openalex.org/fields/22","display_name":"Engineering"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11807","display_name":"Infrastructure Resilience and Vulnerability Analysis","score":0.9829000234603882,"subfield":{"id":"https://openalex.org/subfields/2205","display_name":"Civil and Structural Engineering"},"field":{"id":"https://openalex.org/fields/22","display_name":"Engineering"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/risk-analysis","display_name":"Risk analysis (engineering)","score":0.683035135269165},{"id":"https://openalex.org/keywords/multidisciplinary-approach","display_name":"Multidisciplinary approach","score":0.6257306933403015},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.6179484128952026},{"id":"https://openalex.org/keywords/process","display_name":"Process (computing)","score":0.6169191598892212},{"id":"https://openalex.org/keywords/exploit","display_name":"Exploit","score":0.5706390738487244},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.5509086847305298},{"id":"https://openalex.org/keywords/domain","display_name":"Domain (mathematical analysis)","score":0.4779360592365265},{"id":"https://openalex.org/keywords/security-through-obscurity","display_name":"Security through obscurity","score":0.45464807748794556},{"id":"https://openalex.org/keywords/security-testing","display_name":"Security testing","score":0.4205549657344818},{"id":"https://openalex.org/keywords/security-information-and-event-management","display_name":"Security information and event management","score":0.3584887981414795},{"id":"https://openalex.org/keywords/process-management","display_name":"Process management","score":0.34249335527420044},{"id":"https://openalex.org/keywords/cloud-computing-security","display_name":"Cloud computing security","score":0.29320287704467773},{"id":"https://openalex.org/keywords/business","display_name":"Business","score":0.28266778588294983}],"concepts":[{"id":"https://openalex.org/C112930515","wikidata":"https://www.wikidata.org/wiki/Q4389547","display_name":"Risk analysis (engineering)","level":1,"score":0.683035135269165},{"id":"https://openalex.org/C22467394","wikidata":"https://www.wikidata.org/wiki/Q849359","display_name":"Multidisciplinary approach","level":2,"score":0.6257306933403015},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6179484128952026},{"id":"https://openalex.org/C98045186","wikidata":"https://www.wikidata.org/wiki/Q205663","display_name":"Process (computing)","level":2,"score":0.6169191598892212},{"id":"https://openalex.org/C165696696","wikidata":"https://www.wikidata.org/wiki/Q11287","display_name":"Exploit","level":2,"score":0.5706390738487244},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.5509086847305298},{"id":"https://openalex.org/C36503486","wikidata":"https://www.wikidata.org/wiki/Q11235244","display_name":"Domain (mathematical analysis)","level":2,"score":0.4779360592365265},{"id":"https://openalex.org/C114869243","wikidata":"https://www.wikidata.org/wiki/Q133735","display_name":"Security through obscurity","level":5,"score":0.45464807748794556},{"id":"https://openalex.org/C195518309","wikidata":"https://www.wikidata.org/wiki/Q13424265","display_name":"Security testing","level":5,"score":0.4205549657344818},{"id":"https://openalex.org/C103377522","wikidata":"https://www.wikidata.org/wiki/Q3493999","display_name":"Security information and event management","level":4,"score":0.3584887981414795},{"id":"https://openalex.org/C195094911","wikidata":"https://www.wikidata.org/wiki/Q14167904","display_name":"Process management","level":1,"score":0.34249335527420044},{"id":"https://openalex.org/C184842701","wikidata":"https://www.wikidata.org/wiki/Q370563","display_name":"Cloud computing security","level":3,"score":0.29320287704467773},{"id":"https://openalex.org/C144133560","wikidata":"https://www.wikidata.org/wiki/Q4830453","display_name":"Business","level":0,"score":0.28266778588294983},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0},{"id":"https://openalex.org/C79974875","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud computing","level":2,"score":0.0},{"id":"https://openalex.org/C36289849","wikidata":"https://www.wikidata.org/wiki/Q34749","display_name":"Social science","level":1,"score":0.0},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.0},{"id":"https://openalex.org/C134306372","wikidata":"https://www.wikidata.org/wiki/Q7754","display_name":"Mathematical analysis","level":1,"score":0.0},{"id":"https://openalex.org/C144024400","wikidata":"https://www.wikidata.org/wiki/Q21201","display_name":"Sociology","level":0,"score":0.0}],"mesh":[],"locations_count":3,"locations":[{"id":"doi:10.1145/2523649.2530277","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2523649.2530277","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 29th Annual Computer Security Applications Conference","raw_type":"proceedings-article"},{"id":"pmh:oai:CiteSeerX.psu:10.1.1.852.6883","is_oa":false,"landing_page_url":"http://citeseerx.ist.psu.edu/viewdoc/summary?doi=10.1.1.852.6883","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"http://dspace.mit.edu/bitstream/handle/1721.1/96965/Leveson_Systems%20thinking.pdf%3Bjsessionid%3D354A50FC989DA2D4DC538398ED805B27?sequence%3D1","raw_type":"text"},{"id":"pmh:oai:dspace.mit.edu:1721.1/96965","is_oa":true,"landing_page_url":"http://hdl.handle.net/1721.1/96965","pdf_url":null,"source":{"id":"https://openalex.org/S4306400425","display_name":"DSpace@MIT (Massachusetts Institute of Technology)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I63966007","host_organization_name":"Massachusetts Institute of Technology","host_organization_lineage":["https://openalex.org/I63966007"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by-nc-sa","license_id":"https://openalex.org/licenses/cc-by-nc-sa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"MIT web domain","raw_type":"http://purl.org/eprint/type/ConferencePaper"}],"best_oa_location":{"id":"pmh:oai:dspace.mit.edu:1721.1/96965","is_oa":true,"landing_page_url":"http://hdl.handle.net/1721.1/96965","pdf_url":null,"source":{"id":"https://openalex.org/S4306400425","display_name":"DSpace@MIT (Massachusetts Institute of Technology)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I63966007","host_organization_name":"Massachusetts Institute of Technology","host_organization_lineage":["https://openalex.org/I63966007"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by-nc-sa","license_id":"https://openalex.org/licenses/cc-by-nc-sa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"MIT web domain","raw_type":"http://purl.org/eprint/type/ConferencePaper"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":6,"referenced_works":["https://openalex.org/W642120166","https://openalex.org/W1151626334","https://openalex.org/W1492856410","https://openalex.org/W1602378215","https://openalex.org/W2058290292","https://openalex.org/W4241622823"],"related_works":["https://openalex.org/W2397931496","https://openalex.org/W3189065608","https://openalex.org/W2165898552","https://openalex.org/W2745157681","https://openalex.org/W2345270111","https://openalex.org/W2299494954","https://openalex.org/W2164920192","https://openalex.org/W2120086576","https://openalex.org/W896362041","https://openalex.org/W1811024770"],"abstract_inverted_index":{"The":[0],"fundamental":[1],"challenge":[2,27,101],"facing":[3],"security":[4,23,117,159],"professionals":[5,24],"is":[6,36],"preventing":[7],"losses,":[8],"be":[9,96],"they":[10],"operational,":[11],"financial":[12],"or":[13],"mission":[14],"losses.":[15,150],"As":[16],"a":[17,87,121,128,184],"result,":[18],"one":[19,44],"could":[20,77],"argue":[21],"that":[22,39,42,94,147,178,188],"share":[25],"this":[26],"with":[28,53],"safety":[29,62,93],"professionals.":[30],"Despite":[31],"their":[32],"shared":[33,52],"challenge,":[34],"there":[35],"little":[37],"evidence":[38],"recent":[40],"advances":[41],"enable":[43],"community":[45],"to":[46,69,92,126,149,182,192,197],"better":[47],"prevent":[48],"losses":[49,169],"have":[50,64],"been":[51],"the":[54,80,100,141,155,158,165,174,180,189,194,198],"other":[55],"for":[56,98,112],"possible":[57],"implementation.":[58],"Limitations":[59],"in":[60],"current":[61],"approaches":[63,118],"led":[65],"researchers":[66],"and":[67,73,135,139,170],"practitioners":[68],"develop":[70],"new":[71,88,152],"models":[72],"techniques.":[74],"These":[75],"techniques":[76],"potentially":[78],"benefit":[79],"field":[81],"of":[82,102,132,157,168],"security.":[83],"This":[84,151],"paper":[85],"describes":[86],"systems":[89,105],"thinking":[90],"approach":[91],"may":[95],"suitable":[97],"meeting":[99],"securing":[103],"complex":[104],"against":[106],"cyber":[107],"disruptions.":[108],"Systems-Theoretic":[109],"Process":[110],"Analysis":[111],"Security":[113],"(STPA-Sec)":[114],"augments":[115],"traditional":[116],"by":[119],"introducing":[120],"top-down":[122],"analysis":[123,160],"process":[124],"designed":[125],"help":[127],"multidisciplinary":[129],"team":[130],"consisting":[131],"security,":[133],"operations,":[134],"domain":[136],"experts":[137],"identify":[138],"constrain":[140],"system":[142,176,181,186],"from":[143,162],"entering":[144],"vulnerable":[145,185],"states":[146],"lead":[148],"framework":[153],"shifts":[154],"focus":[156],"away":[161],"threats":[163],"as":[164],"proximate":[166],"cause":[167],"focuses":[171],"instead":[172],"on":[173],"broader":[175],"structure":[177],"allowed":[179],"enter":[183],"state":[187],"threat":[190],"exploits":[191],"produce":[193],"disruption":[195],"leading":[196],"loss.":[199]},"counts_by_year":[{"year":2026,"cited_by_count":1},{"year":2025,"cited_by_count":9},{"year":2024,"cited_by_count":19},{"year":2023,"cited_by_count":15},{"year":2022,"cited_by_count":22},{"year":2021,"cited_by_count":20},{"year":2020,"cited_by_count":10},{"year":2019,"cited_by_count":13},{"year":2018,"cited_by_count":17},{"year":2017,"cited_by_count":12},{"year":2016,"cited_by_count":11},{"year":2015,"cited_by_count":4},{"year":2014,"cited_by_count":3}],"updated_date":"2026-04-05T17:49:38.594831","created_date":"2025-10-10T00:00:00"}