A Fuzzy Programming-Based Framework for Enhancing Cybersecurity in Healthcare Systems under Uncertain Environments
Abstract
In the era of digital healthcare transformation, cybersecurity threats pose significant risks to sensitive medical data and patient safety, especially in uncertain environments. This study presents a fuzzy programming-based decision-making framework to enhance cybersecurity in healthcare systems, where ambiguity and imprecision in data and risk evaluation are prominent. The proposed framework integrates the Fuzzy Analytic Hierarchy Process (F-AHP) for risk prioritization, the Fuzzy Technique for Order Preference by Similarity to Ideal Solution (F-TOPSIS) for evaluating cybersecurity measures, and a fuzzy linear programming model for optimal resource allocation. The model is mathematically formulated to minimize risk exposure subject to budgetary and operational constraints, with fuzzy parameters capturing uncertainty in the effectiveness, cost, and feasibility of security measures. A numerical example involving three cybersecurity risks and three mitigation strategies demonstrates the framework's practical application. The fuzzy evaluation process identifies end-to-end encryption as the most effective and feasible solution, and the optimization model allocates limited resources accordingly to minimize overall cyber vulnerability. The results validate the robustness and applicability of the proposed approach in guiding healthcare decision-makers toward secure and efficient cybersecurity strategies under uncertainty. This research bridges the gap between cyber risk modeling and practical security implementation in healthcare environments.
Keywords:
Fuzzy programming, Cybersecurity, Healthcare information systems, Uncertainty modeling, Risk assessment, TOPSISReferences
- [1] Alubaie, M. A., Sayed, M. Y., Alnakhli, R. E., Alshaia, F. I. N., Aldossary, S. B., Alsubaie, N. M., … & Hassani, A. M. (2024). The efficiency and accuracy gains of real-time health data integration in healthcare management: A comprehensive review of current practices and future directions. Egyptian journal of chemistry, 67(13), 1725–1729. https://dx.doi.org/10.21608/ejchem.2025.343595.10967
- [2] Leighton, P., Barak, G., Cotton, A., Buist, C. L., & León, K. S. (2024). Class, race, gender, and crime: The social realities of justice in America. Bloomsbury Publishing PLC. https://B2n.ir/xr9872
- [3] Kolluri, V. (2024). Cybersecurity challenges in telehealth services: Addressing the security vulnerabilities and solutions in the expanding field of telehealth. International journal of advanced research and interdisciplinary scientific endeavours, 1(1), 23–33. https://doi.org/10.61359/11.2206-2403
- [4] Zimmermann, H.-J. (2010). Fuzzy set theory. WIREs computational statistics, 2(3), 317–332. https://doi.org/10.1002/wics.82
- [5] Attaallah, A., Al-Sulbi, K., Alasiry, A., Marzougui, M., Ansar, S. A., Agrawal, A., … & Khan, R. A. (2023). Fuzzy-based unified decision-making technique to evaluate security risks: A healthcare perspective. Mathematics, 11(11), 1–26. https://doi.org/10.3390/math11112554
- [6] El-Saleh, A., Sheikh, A., Albreem, M., & Honnurvali, M. (2024). The internet of medical things (IoMT): opportunities and challenges. Wireless networks, 31, 327–344. http://dx.doi.org/10.1007/s11276-024-03764-8
- [7] Mishra, P., & Singh, G. (2023). Internet of medical things healthcare for sustainable smart cities: current status and future prospects. Applied sciences, 13(15), 8869. https://doi.org/10.3390/app13158869
- [8] Suzuki, A., & Negishi, E. (2024). Fuzzy logic systems for healthcare applications. Journal of biomedical and sustainable healthcare applications, 4(1), 1–9. https://b2n.ir/fj2594
- [9] Beaulieu, M., & Bentahar, O. (2021). Digitalization of the healthcare supply chain: A roadmap to generate benefits and effectively support healthcare delivery. Technological forecasting and social change, 167, 120717. https://doi.org/10.1016/j.techfore.2021.120717
- [10] Bhatt, S. I. (2025). Cybersecurity risks in connected medical devices: mitigating threats to patient safety. International journal of trend in scientific research and development, 9(2), 433–444. http://eprints.umsida.ac.id/id/eprint/15929
- [11] Balogun, A. Y. (2025). Strengthening compliance with data privacy regulations in US healthcare cybersecurity. Asian journal of research in computer science, 18(1), 154–173. https://doi.org/10.9734/ajrcos/2025/v18i1555
- [12] Alali, M., Almogren, A., Hassan, M. M., Rassan, I. A. L., & Bhuiyan, M. Z. A. (2018). Improving risk assessment model of cyber security using fuzzy logic inference system. Computers & security, 74, 323–339. https://doi.org/10.1016/j.cose.2017.09.011
- [13] Mashaleh, A. S., Ibrahim, N. F. B., Alauthman, M., Almseidin, M., & Gawanmeh, A. (2024). IoT smart devices risk assessment model using fuzzy logic and PSO. Computers, materials & continua, 78(2), 2246–2267. http://dx.doi.org/10.32604/cmc.2023.047323
- [14] Al-Zahrani, F. A. (2020). Evaluating the usable-security of healthcare software through unified technique of fuzzy logic, ANP and TOPSIS. IEEE access, 8(1), 1–12. https://doi.org/10.1109/ACCESS.2020.3001996
- [15] Alharbi, A., Ahmad, D., Alosaimi, W., Alyami, H., Sarkar, A., Agrawal, A., … & Khan, P. R. (2022). Securing healthcare information system through fuzzy based decision-making methodology. Health informatics journal, 28(4), 146045822211354. http://dx.doi.org/10.1177/14604582221135420
- [16] Gupta, K., Kumar, P., Upadhyaya, Sh., Poriye, m., & Aggarwal, Sh. (2024). Fuzzy logic and machine learning integration: Enhancing healthcare decision-making. International journal of computer information systems and industrial management applications, 16(3), 20. https://cspub-ijcisim.org/index.php/ijcisim/article/view/723
Issue 1