TIM-8715 v2

Fang, J., Wang, J., Zhao, K., Jiang, Y., & Liang, W. (2025). A new dual memristor hyperchaotic system: dynamic properties, electronic circuit, and image encryption. Analog Integrated Circuits and Signal Processing: An International Journal, 122(2).
This article introduces a novel memristor-based hyperchaotic system and demonstrates its successful application in developing robust image encryption schemes and secure communication protocols.

Raddatz, N. I., Marett, K., & Trinkle, B. S. (2020). The impact of awareness of being monitored on computer usage policy compliance: An agency view. Journal of Information Systems, 34(1), 135–149.
This journal article explores the need for organizations to understand the factors that motivate employees to follow computer usage policies. The authors investigate the impact of different countermeasures, such as perceived sanctions, and awareness of being monitored on compliance with computer usage policies by drawing upon agency theory and general deterrence theory.

Ganye, D., & Smith, K. (2025). Examining the effects of cognitive load on information systems security policy compliance. Internet Research, 35(1), 380–418.
The article investigates how different types of cognitive load (intrinsic, extraneous, and germane) influence individuals' efficacy and coping appraisals, subsequently affecting their compliance intentions and behaviors regarding information systems security policies.

Sonani, R. (2024). Cloud-enabled trust-aware multi-agent reinforcement learning framework for dynamic, regulation-compliant border patrol resource optimization. Spectrum of Research, 4(2).
• This article introduces a novel cloud-enabled, trust-aware multi-agent reinforcement learning framework designed to dynamically optimize border patrol resource allocation while ensuring compliance with regulations.

National Institute of Standards and Technology. (2024). The NIST cybersecurity framework (CSF) 2.0 (No. NIST CSWP 29; p. NIST CSWP 29). National Institute of Standards and Technology.
This document provides guidance to industry, government agencies, and other organizations to manage cybersecurity risks, offering a taxonomy of high-level cybersecurity outcomes.

Force, J. T. (2018). Risk management framework for information systems and organizations: A system life cycle approach for security and privacy (No. NIST Special Publication (SP) 800-37 Rev. 2). National Institute of Standards and Technology.
The NIST Risk Management Framework (RMF) provides a comprehensive, flexible, repeatable, and measurable 7-step process that any organization can use to manage information security and privacy risk for organizations and systems and links to a suite of NIST standards and guidelines to support the implementation of risk management programs to meet the requirements of the Federal Information Security Modernization Act (FISMA).

Center for Internet Security. (2024, June). CIS Critical Security Controls v8.1. CIS.
This document provides the official, current list and description of the 18 CIS Critical Security Controls (v8.1), offering a prioritized set of consensus-developed cybersecurity best practices to defend against prevalent cyber threats.

Center for Internet Security. (2025, May 12). Guide to Asset Classes: CIS Critical Security Controls v8.1. CIS.
Note: This is a white paper directly from CIS, providing guidance on a key aspect of v8.1.
This official CIS white paper offers detailed guidance on the revised asset classes introduced in CIS Controls v8.1, helping organizations effectively categorize their assets for the application of specific safeguards.

MITRE Corporation. (n.d.). MITRE ATT&CK framework. MITRE Corporation.
MITRE ATT&CK® is a globally-accessible knowledge base of adversary tactics and techniques based on real-world observations. The ATT&CK knowledge base is used as a foundation for the development of specific threat models and methodologies in the private sector, in government, and in the cybersecurity product and service community.

International Organization for Standardization. (2022). Information security, cybersecurity, and privacy protection — Information security controls (ISO/IEC 27002:2022). ISO.
This international standard provides a comprehensive set of information security controls and implementation guidance, serving as a reference for selecting controls within the context of an Information Security Management System (ISMS) based on ISO/IEC 27001. (Note: Access to the full standard from ISO.org typically requires purchase).

Quinn, S., Ivy, N., Barrett, M., Witte, G., & Gardner, R.(2022). Integrating cybersecurity and enterprise risk management (ERM) (NISTIR 8286). National Institute of Standards and Technology (NIST).
This document is designed as a framework to assist individual organizations within an enterprise to improve their cybersecurity risk information, which they provide as inputs to their enterprise’s ERM processes through communications and risk information sharing. Section 2 focuses on various frameworks and models used to identify and understand risk in the enterprise.