@book{MTMT:34719051, title = {Az ellátórendszerek kiberbiztonsági kitettsége napjainkban, különös tekintettel a vízközmű-infrastruktúrára}, url = {https://m2.mtmt.hu/api/publication/34719051}, author = {Szádeczky, Tamás}, publisher = {Nemzeti Közszolgálati Egyetem Nemzetbiztonsági Intézet}, unique-id = {34719051}, year = {2023}, orcid-numbers = {Szádeczky, Tamás/0000-0001-7191-4924} } @misc{MTMT:34714330, title = {Az IEC 62443 szabványcsalád szerepe az ipar 4.0 biztonságában}, url = {https://m2.mtmt.hu/api/publication/34714330}, author = {Szádeczky, Tamás}, unique-id = {34714330}, year = {2023}, orcid-numbers = {Szádeczky, Tamás/0000-0001-7191-4924} } @inproceedings{MTMT:34400707, title = {Security issues in AI-generated source codes}, url = {https://m2.mtmt.hu/api/publication/34400707}, author = {Nagy, Roland and Szádeczky, Tamás}, booktitle = {2023 IEEE 6th International Conference and Workshop Óbuda on Electrical and Power Engineering (CANDO-EPE)}, doi = {10.1109/CANDO-EPE60507.2023.10418012}, unique-id = {34400707}, year = {2023}, pages = {125-129}, orcid-numbers = {Nagy, Roland/0000-0003-1338-4704; Szádeczky, Tamás/0000-0001-7191-4924} } @article{MTMT:34139601, title = {The Economic Measurement of Cyber Incidents}, url = {https://m2.mtmt.hu/api/publication/34139601}, author = {Szádeczky, Tamás and Bederna, Zsolt}, doi = {10.3311/PPso.22150}, journal-iso = {PERIOD POLYTECH SOC MANAG SCI}, journal = {PERIODICA POLYTECHNICA SOCIAL AND MANAGEMENT SCIENCES}, unique-id = {34139601}, issn = {1416-3837}, abstract = {In recent decades, Information and Communication Technologies (ICT) have significantly evolved, further establishing the information society. However, ICT systems are subject to security incidents, and most malicious attacks have cascading effects. Decision-makers need to understand the potential financial effects of incidents if they wish to clearly perceive the potential risks and thus make an appropriate allocation of resources to ICT security.Our research attempts to develop a comprehensive toolset for the analysis of cybersecurity incidents. The toolset is based on conventional methodologies of cash-flow evaluation and balance of payments. We discuss several use cases of real-world examples with incidents affecting essential service providers and manufacturers. The case studies involve incidents affecting energy service providers, banks, water utilities, aircraft manufacturers, car manufacturers, IT software providers, air, rail, and water transport companies, the pharmacy, and the health sector. Analysis of the incidents involves our framework being applied at three levels: organisational, governmental, and international.}, year = {2023}, eissn = {1587-3803}, orcid-numbers = {Szádeczky, Tamás/0000-0001-7191-4924; Bederna, Zsolt/0000-0003-0444-7275} } @article{MTMT:34025040, title = {Water 4.0 in Hungary: Prospects and Cybersecurity Concerns}, url = {https://m2.mtmt.hu/api/publication/34025040}, author = {Szádeczky, Tamás}, doi = {10.12700/APH.20.7.2023.7.12}, journal-iso = {ACTA POLYTECH HUNG}, journal = {ACTA POLYTECHNICA HUNGARICA}, volume = {20}, unique-id = {34025040}, issn = {1785-8860}, abstract = {This paper discusses the increasing significance of smart water management, within the context of the fourth industrial revolution and the associated cybersecurity risks, particularly in Hungary and Central Europe. By examining the current state of smart water management and analyzing the various cybersecurity threats, this study seeks to raise awareness around the need for enhanced security measures, in this critical sector. The research methodology is primarily based on a through literature review and secondarily, on related data analysis. The paper identifies several cybersecurity challenges and potential solutions for smart water management and finally suggests future research directions, to ensure the safe and sustainable development of this critical infrastructure.}, year = {2023}, eissn = {1785-8860}, pages = {211-230}, orcid-numbers = {Szádeczky, Tamás/0000-0001-7191-4924} } @article{MTMT:33674521, title = {Managing the financial impact of cybersecurity incidents}, url = {https://m2.mtmt.hu/api/publication/33674521}, author = {Bederna, Zsolt and Szádeczky, Tamás}, doi = {10.35467/sdq/159625}, journal-iso = {SECURITY AND DEFENCE}, journal = {SECURITY AND DEFENCE QUARTERLY}, volume = {41}, unique-id = {33674521}, issn = {2300-8741}, abstract = {The complex relationships of economic actors and the high dependency on information and communication technologies make it necessary for all relevant entities to develop protection. This protection should include preventive and reactive controls in a risk-proportionate manner in relation to the business value protected. We aimed to develop a solution to support cybersecurity-related business decisions with financial analytics. The risk-based approach helps management find the optimum solution with minimal costs, where protection prevents some incidents from occurring, while the risks associated with other incidents are accepted in an informed way. The security industry developed a number of apparatuses to find the optimum security controls that enforced the fiscal aspects, which typically contain solutions used in planning. However, the actual expenditure often differs from the planned budget for several reasons, one of which isthe occurrence of security incidents. We used the common methodology toolset for financial analysis (NPV, NFV, risk assessment). We developed novel metrics based on these that can be used in cybersecurity management. Within the framework thus defined, the article discusses the economic context of the effects of incidents involving Meta (previously Facebook) services from 2016 to 2020. This paper introduces the ‘Effect of incidents’ metric to measure the impact of unplanned incidents’ on actual expenditure compared to the planned budget and the ‘Incidence of incident recognition’ metric to measure deviations of an incident’s impact as perceived by owners relative to the effect on the value of the assets. The paper also proves the applicability of those metrics using the example of Meta.}, keywords = {economic analysis; cybersecurity; economic impact; cybersecurity incidents}, year = {2023}, eissn = {2544-994X}, pages = {1-21}, orcid-numbers = {Bederna, Zsolt/0000-0003-0444-7275; Szádeczky, Tamás/0000-0001-7191-4924} } @article{MTMT:33418946, title = {Ipar 4.0 a vízműnél - előnyök és kiberbiztonsági kihívások}, url = {https://m2.mtmt.hu/api/publication/33418946}, author = {Szádeczky, Tamás}, journal-iso = {MASZESZ HÍRCSATORNA}, journal = {MASZESZ HÍRCSATORNA}, volume = {2022}, unique-id = {33418946}, year = {2022}, pages = {36-43}, orcid-numbers = {Szádeczky, Tamás/0000-0001-7191-4924} } @inproceedings{MTMT:33197650, title = {Industry 4.0-based critical infrastructure and the NIS Directive}, url = {https://m2.mtmt.hu/api/publication/33197650}, author = {Bederna, Zsolt and Szádeczky, Tamás}, booktitle = {Proceedings of Central and Eastern European e|Dem and e|Gov Days 2022. CEEE|Gov Days 2022}, doi = {10.1145/3551504.3551546}, unique-id = {33197650}, year = {2022}, pages = {93-99}, orcid-numbers = {Bederna, Zsolt/0000-0003-0444-7275; Szádeczky, Tamás/0000-0001-7191-4924} } @inproceedings{MTMT:33106407, title = {Quality 4.0 on the small scale}, url = {https://m2.mtmt.hu/api/publication/33106407}, author = {Kicska, Brigitta and Nagy, Vivien and Szádeczky, Tamás}, unique-id = {33106407}, year = {2022}, pages = {1039-1050}, orcid-numbers = {Szádeczky, Tamás/0000-0001-7191-4924} } @{MTMT:32848064, title = {Gamification as a talent management tool in public sector education – a case study of cyber security simulation game}, url = {https://m2.mtmt.hu/api/publication/32848064}, author = {Szakos, Judit and Szádeczky, Tamás}, booktitle = {The 29th NISPAcee Annual Conference e-proceedings: Citizens' Engagement and Empowerment - The Era of Collaborative Innovation in Governance}, unique-id = {32848064}, year = {2022}, orcid-numbers = {Szakos, Judit/0000-0001-5991-3929; Szádeczky, Tamás/0000-0001-7191-4924} }