IDEAS home Printed from https://ideas.repec.org/a/gam/jftint/v13y2021i2p39-d491932.html
   My bibliography  Save this article

A Systematic Review of Cybersecurity Risks in Higher Education

Author

Listed:
  • Joachim Bjørge Ulven

    (Deptment of Information Security and Communication Technology, Faculty of Information Technology and Electrical Engineering, NTNU—Norwegian University of Science and Technology, Teknologivegen 22, 2815 Gjøvik, Norway
    These authors contributed equally to this work.)

  • Gaute Wangen

    (Deptment of Information Security and Communication Technology, Faculty of Information Technology and Electrical Engineering, NTNU—Norwegian University of Science and Technology, Teknologivegen 22, 2815 Gjøvik, Norway
    These authors contributed equally to this work.)

Abstract

The demands for information security in higher education will continue to increase. Serious data breaches have occurred already and are likely to happen again without proper risk management. This paper applies the Comprehensive Literature Review (CLR) Model to synthesize research within cybersecurity risk by reviewing existing literature of known assets, threat events, threat actors, and vulnerabilities in higher education. The review included published studies from the last twelve years and aims to expand our understanding of cybersecurity’s critical risk areas. The primary finding was that empirical research on cybersecurity risks in higher education is scarce, and there are large gaps in the literature. Despite this issue, our analysis found a high level of agreement regarding cybersecurity issues among the reviewed sources. This paper synthesizes an overview of mission-critical assets, everyday threat events, proposes a generic threat model, and summarizes common cybersecurity vulnerabilities. This report concludes nine strategic cyber risks with descriptions of frequencies from the compiled dataset and consequence descriptions. The results will serve as input for security practitioners in higher education, and the research contains multiple paths for future work. It will serve as a starting point for security researchers in the sector.

Suggested Citation

  • Joachim Bjørge Ulven & Gaute Wangen, 2021. "A Systematic Review of Cybersecurity Risks in Higher Education," Future Internet, MDPI, vol. 13(2), pages 1-40, February.
    • Handle: RePEc:gam:jftint:v:13:y:2021:i:2:p:39-:d:491932
    as

    Download full text from publisher

    File URL: https://www.mdpi.com/1999-5903/13/2/39/pdf
    Download Restriction: no
    File URL: https://www.mdpi.com/1999-5903/13/2/39/
    Download Restriction: no
    ---><---

    References listed on IDEAS

    as
    1. Jaime A. Teixeira da Silva & Aceil Al-Khatib & Panagiotis Tsigaris, 2020. "Spam emails in academia: issues and costs," Scientometrics, Springer;Akadémiai Kiadó, vol. 122(2), pages 1171-1188, February.
    2. Samaher Al-Janabi & Ibrahim Al-Shourbaji, 2016. "A Study of Cyber Security Awareness in Educational Environment in the Middle East," Journal of Information & Knowledge Management (JIKM), World Scientific Publishing Co. Pte. Ltd., vol. 15(01), pages 1-30, March.
    Full references (including those not matched with items on IDEAS)

    Citations

    Citations are extracted by the CitEc Project, subscribe to its RSS feed for this item.
    as


    Cited by:

    1. Frank Cremer & Barry Sheehan & Michael Fortmann & Arash N. Kia & Martin Mullins & Finbarr Murphy & Stefan Materne, 2022. "Cyber risk and cybersecurity: a systematic review of data availability," The Geneva Papers on Risk and Insurance - Issues and Practice, Palgrave Macmillan;The Geneva Association, vol. 47(3), pages 698-736, July.
    2. Jin Li & Wei Xiao & Chong Zhang, 2023. "Data security crisis in universities: identification of key factors affecting data breach incidents," Palgrave Communications, Palgrave Macmillan, vol. 10(1), pages 1-18, December.
    3. BANA Philbert, 2024. "Model Based On Virtual Private Network: Enhancing Cybersecurity In The Rwandan University Sector," Working papers 2024-50-03, Voice of Research.

    Most related items

    These are the items that most often cite the same works as this one and are cited by the same works as this one.
    1. Octavian-Dragomir Jora & Adrian-Ioan Damoc & Vlad I. Rosca & Matei-Alexandru Apavaloaei & Mihaela Iacob, 2022. "“Cyberspace Ecologism 4.0”: Between Software Softeners of and Hardware Hardships on the Natural Environment," The AMFITEATRU ECONOMIC journal, Academy of Economic Studies - Bucharest, Romania, vol. 24(59), pages 1-9.
    2. Mustufa Haider Abidi & Hisham Alkhalefah & Usama Umer, 2022. "Fuzzy harmony search based optimal control strategy for wireless cyber physical system with industry 4.0," Journal of Intelligent Manufacturing, Springer, vol. 33(6), pages 1795-1812, August.
    3. Jaime A. Teixeira da Silva, 2021. "CiteScore: risk of copy-cat, fake and misleading metrics," Scientometrics, Springer;Akadémiai Kiadó, vol. 126(2), pages 1859-1862, February.

    Corrections

    All material on this site has been provided by the respective publishers and authors. You can help correct errors and omissions. When requesting a correction, please mention this item's handle: RePEc:gam:jftint:v:13:y:2021:i:2:p:39-:d:491932. See general information about how to correct material in RePEc.

    If you have authored this item and are not yet registered with RePEc, we encourage you to do it here. This allows to link your profile to this item. It also allows you to accept potential citations to this item that we are uncertain about.

    If CitEc recognized a bibliographic reference but did not link an item in RePEc to it, you can help with this form .

    If you know of missing items citing this one, you can help us creating those links by adding the relevant references in the same way as above, for each refering item. If you are a registered author of this item, you may also want to check the "citations" tab in your RePEc Author Service profile, as there may be some citations waiting for confirmation.

    For technical questions regarding this item, or to correct its authors, title, abstract, bibliographic or download information, contact: MDPI Indexing Manager (email available below). General contact details of provider: https://www.mdpi.com .

    Please note that corrections may take a couple of weeks to filter through the various RePEc services.

    IDEAS is a RePEc service. RePEc uses bibliographic data supplied by the respective publishers.