Sustainable-Security Assessment Through a Multi Perspective Benchmarking Framework

: The current cyber-attack environment has put even the most protected systems at risk as the hackers are now modifying technologies to exploit even the tiniest of weaknesses and infiltrate networks. In this situation, it’s critical to design and construct software that is both secure and long-lasting. While security is the most well-defined aspect of health information software systems, it is equally significant to prioritise sustainability because any health information software system will be more effective if it provides both security and sustainability to the customers at the same time. In this league, it is crucial to determine those characteristics in the systems that can help in the accurate assessment of the sustainable-security of the health information software during the development stage. This research work an outline that software practitioners can follow to enhance the sustainable-security of health information software systems.


Introduction
The primary goal of all the developers is to secure health information software systems from harmful assaults in long-term situations. While the establishment, identification, and estimation procedures can achieve security objectives, maintaining sustainability in the same measure necessitates the use of highly effective strategies at an early stage in the development procedure of health information software systems [1]. Furthermore, the goals of secure software systems must always be in line with the requirements of the consumer. However, the consumer of the systems is often the poor link, unknowingly inviting attacks. This call for procedures capable of eradicating potential vulnerabilities at all levels. Thus, it's critical to enlist and validate the best practices for estimating the long-term viability and security of a health information software system. Such a framework of established mechanisms would be a credible and accurate reference for the developers. Furthermore, following these principles early in the development life cycle would help in enhancing the sustainablesecurity of healthcare information systems.
The evolution of security and sustainability in the online application of all healthcare related operations occurred in the preceding few years of the twentieth century [2]. According to a survey [3], there has been a noticeable enhancement in developers' attempts to upgrade their overall security mechanisms to include sustainability at the early stage of health information software system development. However, designing this software is a difficult duty that may entail failures. Some of the reports on the failure of the security of the health information software systems need a mention in this context. To quote a few examples of the same, a report cited that significant data, including the names, phone numbers, and addresses of 1157 scholars, was leaked. According to another report, attackers attempted to breach the health information software systems more than 70 times during an institution's entrance exams [4]. These outcomes demonstrate a growing need for sustainable-security, particularly in the health information software systems for an organization due to the large quantity of sensitive data involved, the loss of which could affect thousands.
Security experts are always working on strategies to improvise upon the health information software systems' sustainable-security and its overall security [5]. The major purpose of security is to prevent unwanted access, whereas sustainability focuses on maintaining uninterrupted consumer services [3]. The sustainable-security of the healthcare systems is estimated as a machine-related problem rather than an age or industry-related problem [6]. Hence, the company's focus is on maintaining sustainable-security, i.e., ensuring continuous security procedures till the health information software systems are employed. While the experts have attempted to estimate the sustainable-security of the software by using various procedures [4], the majority of the research done in this field does not address practical difficulties [3]. "Software sustainability, as segment of its consistency and associated to non-functional criteria," as Agrawal et al., put it, "is a means of strengthening security for health information software systems" [5].
Sustainability and security features are vital for developing a maintainable security of the health information software systems [7][8][9]. The main aspects that affect the sustainability and security of health information software systems are confidentiality, integrity, availability, and energy consumption, as well as software-based resource management, perdurability. Each of these are included in security and sustainability characteristics [10][11][12][13]. The importance of these features in maximising the health information software system's sustainable-security cannot be overstated. Furthermore, no evaluation can be completed without taking into account the aforementioned features. The evaluations based on these indices would be more efficient and trustworthy. In the same row, it is critical to recognise that estimating sustainable-security is an issue of decision-making because each organisation adopts its own procedures and regulations, thus involving the process of taking judicious decisions for analyzing the security of its software systems [14][15][16][17][18][19].
The majority of research done to date hasn't employed the characteristics of both sustainablesecurity for assessing the efficacy of the health information software systems. As an outcome, an additional operational approach for evaluating the health information software systems' sustainablesecurity is required, allowing specialists to discern between preferences of qualities. Designing a health information software system with security-sustainability for an organisation is a multi-step decisionmaking procedure involving several people. The Multi-Criteria Decision-Making (MCDM) procedure is important in merging the judgement of various experts into a single frame [20][21][22][23][24][25][26]. The MCDM is a set of procedures to address issues relating to sustainable and renewable energy, according to Calabrese et al. [6]. The researchers analyzed the restrictions for implementing sustainable and green technologies using the Fuzzy ANP-TOPSIS procedure. This procedure encompasses a range of quite varied procedures. Furthermore, Fuzzy MCDM is a well-known approach for estimating, predicting, and resolving flaws from several perspectives. The evaluation facilitates any selection that identifies the options while ensuring sustainable-security of healthcare systems.
The rest of the document is built in the same way: Following the introduction in the first unit, the second unit discusses some of the relevant work in the areas of MCDM, sustainability, and security in the linked work section. A hierarchy that acknowledges the characteristics that affect sustainability and security must be constructed. In this context, the third section of the study is dedicated to sustainable-security and the hierarchy of its qualities. The Fuzzy ANP-TOPSIS is employed to compute the health information software system's sustainable-security. Authors have used the Fuzzy ANP-TOPSIS technique in the current research work to estimate the sustainable-security; as explained in the procedure section. The fifth section of the study includes data processing, sensitivity analysis, and final outcomes on six versions of the hospital's software. The overall findings will assist the security designers in adding sustainable-security into health information software systems during the development procedure. In the sixth section, the outcomes are compared with the earlier research investigations done in this regard. Finally, in sections seven and eight, respectively, the discussion and conclusion are listed. Main contributions of this study are as follows: • To carry out the in-depth study of health information software systems' sustainable-security, i.e., in health information software systems' perspective, security and sustainability impacts are analyzed in terms of weakness and strength. • To conduct implementations through Fuzzy ANP to estimate the most noteworthy features of health information software systems sustainable-security. • The performance of the health information software system's sustainable-security has been estimated on six different healthcare systems by using Fuzzy TOPSIS. • To show the efficacy of our proposed clarification by accompanying sensitivity analysis on the estimated outcomes.
• Comparisons between the estimated outcomes in the present research work and the earlier techniques have been done to highlight on the profits of the current contributions.

Literature Review
Sustainable-security focuses on safe end-user health information software systems services, which have already become a top priority for every industry; nonetheless, there is still much more to be done in this area. A research involving 4000 specialists was conducted by the Global Executive Report on Sustainability [6]. According to the study, 65% of the defendants agreed that the goals of sustainability obliged them to use health information software systems security models that were freely accessible, regardless of whether the programme was protected or not. Evidently, health information software systems security is commonly overlooked, despite the fact that it is critical during the design phase. The majority of security specialists rely on simple network architecture and rudimentary frameworks [7], thus jeopardizing the data of the consumers. There should be no loophole or possibilities of errors in either security or sustainability while designing health information software systems for an organisation where data, time, and large assets are at risk. Hence to eliminate vulnerabilities, the examination of sustainable-security of the institutional health information software systems architecture becomes essential. In reality, the impact of sustainability on design characteristics should be quantified. The following are some of the most important research sources that we referred to during our research: Calabrese et al. [6] talk about both sustainability and security in their work on responsible software engineering. The authors also explore numerous aspects of responsible software engineering, including design for sustainability. This paper proposes ethical standards for software engineering.
Agrawal et al. [5] evaluated the sustainable-security of healthcare systems using a multi-criteria decision-making tactics based on fuzzy logic in 2020. Four key parameters of confidentiality, integrity, availability, and longevity were identified and estimated to determine the results. The outcomes were compared to those of other multi-criteria decision-making procedures.
Calero et al. [7] wrote a paper in 2019 related to the sustainable-security of health information software systems. The paper was divided into three sections including economic viability, environmental, and human, respectively. According to the authors, perdurability as a sustainability quality, as well as coupling and cohesion of design elements are crucial characteristics that have a major impact on the security of health information software systems.
Calero et al. [8] proposed a library of health information software systems sustainability designs to aid the developers in creating a long-lasting health information software systems that meets the expectations of consumers. The evaluations of current and prior studies linked to sustainable health information software systems were employed to compile this catalogue. An outline was also presented in this effort, which featured a set of sustainability targets in terms of quality and security. According to a report, the availability and durability of sustainability features, as well as the encapsulation, heredity, and abstraction of design traits, are important qualities that have a major impact on sustainability.
Kumar et al. [9] developed a sensitive procedure for detecting and mitigating denial of service attacks on cloud-based services based on a rate limit tactic with minimum overhead. The relationship between security, stability, and sustainability was discussed in the essay, which is essential for the twenty-first century. Researchers combined three areas of research: security, sustainability, and health. They also came up with an innovative way for determining availability.
A study on the role of health information software systems in sustainable architectural design was published in 2013 by Calero et al., and team [10]. The authors of this paper chose to focus on specific sustainability opportunities in order to propose research approaches that would emphasise the issue of architectural sustainability. The researchers also mentioned that it was only recently decided to incorporate sustainability in software design as a research theme.
Calero et al. [11] expanded an edge computing procedure for mobile that is built on a security configuration based on fuzzy theory in 2019. A security intermediary was added in the paper, which was comparable to typical security capabilities. To achieve numerous optimal potentials and the finest order of the needed security facilities, the researchers presented a procedure based on a Fuzzy Inference Scheme (FIS). Because of FIS, the findings demonstrated effective performance.
Kumar et al. [12] proposed the idea of combining sustainable software design and development. Divergent viewpoints and programmes on design for longevity were also discussed in the report. Li et al. [13] discussed the possibility of using Facebook to promote public healthcare related information and enhance services in 2017. The work looked at the advantages and disadvantages of adopting such a forum as a tactic for healthcare initiatives in perspective of public. According to the findings, Facebook is a right potential resource for supporting software 2.0 e-health services, and that security and sustainability attributes interact or are interlinked.
Luthra et al. [14] focussed the most important software risk that must be estimated in advance for to developing an appropriate risk management and deliberate mitigation plan of risk. The research work outlined some of the most significant concerns from a long-term security standpoint, as well as a map that depicted the rigorousness of each attribute, such as integrity, availability, and confidentiality. To estimate, mitigate, and enhance sustainable security, the study employed linear programming and fuzzy optimization procedures.
Mardani et al. [15] looked at 54 studies in 2015 that had used multiple MCDM procedures. The studies were divided into different categories based on procedures, years of publication, and two categories: renewable and sustainable strength. Finally, the scholars highlighted that the number of submissions had increased from preceding years, and that new MCDM approaches, such as Fuzzy ANP-TOPSIS, Fuzzy ANP-VIKOR, and others, had been identified.
While much has been written about sustainability in the past, we discovered that the recommended security and sustainability estimation procedures in the existing references lacked a configuration for evaluating sustainability with preferable design qualities. The proposed plan in this study will be a watershed moment in sustainability study by achieving higher environmental security in the health information software systems for a hospital. During the creation of a health information software system, a quantitative evaluation of sustainable-security is required. In addition, the goal of this research is to evaluate the security of six modified versions of locally produced healthcare institutional software. For our study, we analysed the security of the software being used in Sanjay Gandhi Postgraduate Institute of Medical Sciences, Lucknow, India. The Fuzzy ANP procedure, as outlined in the next section, was utilised to estimate the sustainable-security of the health information software. [27][28][29]. Mikhailov's intent on health information software systems security is applicable in this situation [30]. A stable health information software systems, according to the study, entails developing a health information software systems to make it safe and secure, ensuring that the health information software systems remains reliable, and educating health information software systems engineers and end-users on how to design secure health information software system [20]. Adapting environmentally friendly procedures to create existing goods and services sustainable and viable is now a commercial and social requirement [21]. The concept of balancing sustainability and security as a bottom line concept for health information software systems security is not commonly acknowledged. Additionally, numerous practitioners argue that reliability cannot be negotiated while dealing with the security of healthcare systems.
One of the most credible approaches to create efficient and stable health information software systems is to estimate and maintain CIA in a secure environment during health information software systems development [22]. Because of the significance of sustainable-security in health information software systems nowadays, everyone must ensure security. Security monitoring, on the other hand, necessitates a high level of sophistication, which renders solutions less scalable, complex, and reusable. This is a major worry for lengthier health information software systems services, and it is harming long-term software. Sustainability, according to Penzenstadler et al., must be considered high quality amongst the other essential criteria such as security, performance, reliability, and durability [23]. Because of the enhancing number of security risks, money theft, and personal frauds, sustainablesecurity is becoming a top priority [24]. Organizations that develop health information software systems nowadays must concentrate on both security and sustainability.
As a leading technology company, Robillard, M. P., defines longevity as "the quantity of how strong a system is to secure a product and meet its set duties" [25]. Furthermore, sustainable software has a negligible impact on culture, economics, human beings, and climate as a result of diverse types of development and implementation, and has a beneficial impact on the environment through its use [26]. "Sustainable software development," as Sahu, K., & Srivastava, R. K., put it, "seeks to meet the needs of consumers while protecting the natural systems and the environment" [28]. Recognizing the qualities that contribute to both can help define the link between security and sustainability. In addition, Fig. 1 depicts a hierarchy of sustainable-security attributes.  the health information software system's sustainable-security is affected by availability, and integrity, confidentiality, and energy consumption, as well as perdurability and software-based resource optimization. Collaboration between characteristics can enhance sustainablesecurity [29]. Therefore, while determining the sustainable-security of the health information software systems, the above features will be considered. The following are definitions and interpretations of sustainable-security characteristics: Security (F1): Security of health information software system is an important feature that protects the healthcare related systems from destructive attacks and various hazards engineered by the hackers and malicious information, ensuring that the software continues to function effectively in the face of potential threats. Security is also necessary for facilitating giving secrecy, authentication, and availability [29]. These characteristics, on the other hand, must be combined with the concept of sustainability.
Sustainability (F2): Sustainability is defined as meeting the current demands of the customer without jeopardising the capability of future generations to meet their own needs [30]. Security of health information software system that is built sustainably could aid in reaching life's sustainability goals. Furthermore, security technologies have a greater impact on our day-to-day life. Thus, combining security and sustainability will provide the world with secure and sustainable health information software system. Confidentiality (F11): Confidentiality can be characterised in terms of security as guaranteeing that sensitive information can only be used by the individuals who are authorized to access the same while also confirming the data of the intended consumer [31]. Furthermore, confidentiality is a characteristic that impacts security and is linked to sustainable-security. Hence, it has an impact on sustainable-security in several ways. [32]. Maintaining integrity enhances the sustainable-security. Therefore, it is incorporated as a wellinformed quality of sustainable-security. Integrity plays a crucial part in achieving sustainable-security. The quantitative estimation of sustainable-security will aid in ensuring the long-term viability of secure health information software system. Availability (F13): Availability confirms that knowledge is accessible to permitted consumers in a sustainable environment. If the hackers are not permitted to compromise on integrity and confidentiality, they can try to bring down the server [33] and make the data unavailable for a short period of time. This has a negative impact on the sustainable-security of health information software system. Thus, availability must be considered while evaluating sustainable-security.

Integrity (F12): Maintaining the reliability of the information is what integrity is all about
Energy Consumption (F21): In sustainable-security, energy consumption refers to the degree to which the quantity of energy is required by a healthcare system to fulfill its security activities for meeting the security standards [34]. When considering sustainable-security, this is an important sustainability concept to consider.
Software-based Resource Optimization (F22): Software-based resource management is a set of prototypes and strategies for aligning existing resources, such as equipment, money, and human resources, with the organization's security standards in order to accomplish well-known security and sustainability objectives. The term "resource optimization" refers to accomplishing the preferred outcomes within the budget and set time while using the fewest resources possible [35].
Perdurability (F23): It is the idea of creating adaptable, recyclable, and long-lasting, sustainable information security products, i.e., those characteristics that allow data to subsist for a long time while maintaining its quality-related functioning [36,37]. Perdurability is a feature of sustainability, but it also has an impact on security. This makes it a crucial feature in the context of sustainable-security in healthcare systems perspective.
Reliability (F231): The degree to which sustainable-security of health information software system functions safely in a specific sustainable environment for a set amount of time is characterized as reliability [5]. In every scenario, reliability is either 1 or 0. Hence, reliable sustainability is entirely dependent on sustainable-security.
Maintainability (F232): The degree of effectiveness and efficiency with which the intended creators can update the health information software system to preserve sustainability is maintainability [6]. It's the degree to which healthcare system has been corrected or comprehended. Maintainability is a health information software system notion that can also be employed to gauge sustainable-security.
Portability (F233): Portability can be explained as the degree of efficiency and efficacy with which health information software system and its security may be moved from one software product to another [7]. In sustainable-security, the efficacy of shifting security applications from one location to another is measured as portability.
Developers in the fields of computer sustainability and security must learn to work with sharedenvironment ideas [8]. This is due to the fact that security and sustainability may coexist together. Despite the fact that several strategies for merging the two have been devised, each procedure has its own set of limits and benefits [9]. Sustainability in security must be incorporated into sustainablesecurity at the very beginning of development and must be maintained before security services are put in place [10][11][12][13]. All the ambiguities that exist between sustainability and security appear to be due to sustainability. The sustainable-security evaluation proposed in this work considers the weights and constraints of both the procedures and proposes a way to achieve increased levels of sustainability while maintaining security.

Methodology
The framework within which a researcher does research is known as research methodology [17,18]. The research methodology used in this research work to estimate the sustainable-security of healthcare systems is based on fuzzy ANP-TOPSIS technique, a popular MCDM tactic. The weights of the characteristics and their dependencies on every ANP network are estimated using Fuzzy-ANP. In the end, the TOPSIS approach is used to rank the alternates. The following is a detailed explanation of these techniques.
Fuzzy-Analytic Network Process (F-ANP): Srivastava et al. [33] created the term "fuzzy logic," which is an enhanced variant of classical logic based on fuzzy-set theory. All hesitations in an issue where determining the solution is difficult, or are considered to be either entirely true or completely false can be resolved by fuzzy logic. To handle and address imprecise and uncertain data in decisionmaking situations, it considers 1 and 0 as two extreme cases of truth and denotes various cases in between 1 and 0 [14,15]. In decision-making difficulties, the ANP is a multi-criteria decision analysis technique. It's a broadening of the AHP [17]. T.L. Saaty developed the Analytic Hierarchy Process (AHP) approach for MCDM problems, but due to the limitation of not evaluating probable relationships among the criteria [27], T.L. Saaty later presented ANP to overcome the constraint of AHP [26]. To answer issues with dependencies, ANP depicts the dependencies among criteria or options [17,18]. Because dependencies and interactions among the problem's features are portrayed in a network, AHP is signified by a hierarchy, whereas ANP is showed by a network [17]. The overall impact of these dependencies on the network is also determined by ANP. ANP also uses loops to describe interdependencies between elements of the same cluster, as well as feedback between clusters in the same network [18]. The fuzzy-ANP approach combines fuzzy logic and ANP to manage imprecise data and improve the precision and accuracy of the outcomes.
Fuzzy-TOPSIS Method: F-TOPSIS was discussed by Kumar et al., to tackle MCDM problems using a multi-criteria decision analysis technique [18][19][20][21]. TOPSIS has been determined to be the greatest approach belong to multi-criteria decision making techniques for addressing the rank reversal problem, defining that when a non-optimal alternative is discovered, the alternative ranking can be modified [22][23][24][25]. TOPSIS' key notion is that the best alternative among all competing alternatives should be the furthest away from PIS and the furthest away from NIS [26][27][28]. PIS maximizes benefit criteria while minimising cost criteria, whereas NIS maximizes cost criteria while minimising benefit criteria [29][30][31]. TOPSIS is the most well-known method for MCDM problem alternative rankings. The authors of this paper apply a fuzzy-ANP TOPSIS hybrid technique to evaluate the sustainablesecurity of health information software systems, resulting in precise, accurate, and efficient results. The Fuzzy ANP-TOPSIS approach's step-by-step technique for analysing weightage and ranking is outlined below, and Fig. 2 depicts an overview of the study's total work. Triangular Fuzzy Numbers were created after language concepts were translated into crisp numeric values (TFN). TFN can be written as (c1, c2, c3), where (c1 c2 c3) and c1, c2, c3 are parameters representing the TFN's smallest, middle, and biggest values, respectively. Assume A is a fuzzy number, and its membership function can be well-defined as shown in Fig. 3 [26] using Eqs. (1) and (2). Where, and Jijk denotes the relative significance of the values between the two features indicated in the equations above, as determined by practitioner judgement. Where I and j indicate a pair of expertselected qualities. The geometric mean of practitioner views for a given comparison is used to calculate TFN (η ij). Eqs. (7)-(9) also aid in the aggregation of triangular fuzzy number values. A1 and A2 are two TFNs, with A1 equaling (c11, c21, c31) and A2 equaling (c11, c21, c31) (c12, c22, c32). The following are the operating guidelines for them: (c1 1 , c2 1 , c3 1 ) × (c1 2 , c2 2 , c3 2 ) = (c1 1 * c1 2 , c2 1 * c2 2 , c3 1 * c3 2 ) (8) The responses from the decision makers are used to create a pair-wise comparison matrix. The CI is deliberated using the formula in Eq. (10), which is as follows: where CI stands for Consistency Index and t denotes the number of pieces to be compared. The following is a random index-based estimate of the Consistency Ratio (CR) (Eq. (11)): If CR is less than 0.1, the produced matrix is fairly consistent. The random index is abbreviated as RI. Saaty [26] is the source of the random index.
TFN values are turned to measurable values using the defuzzification process after generating a generally consistent matrix. The alpha-cut approach, as described in Eqs. (12)- (14), is the defuzzification method used in this study, which is based on [17,28].
This stage involves constructing the super-matrix, which is the outcome of the priority vector derived through paired group comparisons, and includes goals, characteristics, sub-characteristics, and alternatives. The usual form of super matrix [18] is shown Eq. (15).
where Cn is the nth cluster, emn denotes the mth element of the nth cluster, and Wij denotes the principal eigenvector.
TOPSIS uses Eq. (16) to normalise the entire decision matrix in order to determine the performance rating of each alternative over each normalised characteristic through Tab. 2.
Assessment of negative-ideal solution I_ matrix and positive-ideal solution I+ matrix are performed through Eq. (18).
where, max zij if j is an advantage and Min zij if j is a cost characteristic, or Min zij if j is an advantage and Min zij if j is a cost feature.
The following step is to calculate the distance between each option value and the negative-ideal solutions and positive-ideal solutions Eqs. (19) and (20): Positive ideal solution: Negative ideal solution: where the distance from one is option to the positive-ideal solution and is the distance from one option to the negative-ideal solution. Calculating the value of each alternative's performance (Pi) (Eq. (21)).
where, i= 1, 2, 3 . . . .m Using the Fuzzy-ANP TOPSIS technique with a varying number of options, the above-defined step-by-step process will be performed to estimate the sustainable-security of healthcare systems. The following part conducts a case study and provides a numerical analysis.

Numerical Analysis and Outcomes
Because sustainable-security assessment is primarily a qualitative metric, quantifying the sustainable-security of health information software systems is a complex and difficult task. Prioritizing quality features during the development process of health information software systems is critical for building secure and long-lasting software products. Using fuzzy ANP-TOPSIS, this research work presents a tactic for estimating the sustainable-security security of healthcare systems. Two level 1 criteria, namely security and sustainability, are represented as F1 and F2, respectively, for determining the sustainable-security of health information software systems. Confidentiality, integrity, and availability are symbolized as F11, F12, and F13, respectively, in terms of sustainable-security of health information software systems at level 2. Energy consumption, software-based resource optimization, and perdurability are symbolized as F21, F22, and F23, respectively, in terms of sustainable-security of health information software systems at level 2. The features of perdurability in terms of level-3 sustainable security include reliability, maintainability, and portability, which are represented as F231, F232, and F233, respectively. The following Eqs. (1)-(21) were used to estimate the sustainable-security of health information software systems using Fuzzy-ANP-TOPSIS: Authors obtained the numeric values from linguistic values and then accumulated triangular fuzzy numbers using the standard Saaty scale shown in Tab. 1 and Eqs. (1)- (9). To transform the crisp numerical values into fuzzy TFN numbers, Eqs. (3)-(6) were used. The level-1 criteria pair-wise comparison matrixes are then calculated and shown in Tab. 1. After that, the consistency index and random index were calculated using Eqs. (10)- (11). The pair-wise comparison matrix's random index is less than 0.1, indicating that our pair-wise matrix is consistent. Further, Eqs. (7)-(9) are employed for intermediate operations on fuzzy numbers, such as multiplication, reciprocal, and addition. These intermediate operations are not presented in the current research work because they would exceed the study's page limit. In addition, local weights and normalised values of level-1 characteristics are displayed in Tab. 3. Local pair-wise comparison matrices for sub-characteristics of detecting attacks, resisting attacks, reacting and recovering from attacks at level-2 have been deliberated and displayed in Tabs. 4-6, respectively, using the same operations and Eqs. (1)-(11) as for level-1 characteristics. The alpha cut method was used to defuzzify pair-wise comparison matrices, and the normalised values and defuzzified local weights of these sub-characteristics are displayed in Tabs. 7-10, respectively, using Eqs. (12)- (14).  An unweighted super-matrix is created using the significances derived from the numerous pairwise comparisons. The unweighted super matrix is generated using Eq. (15), and the results are displayed in Tab. 11. The weighted super-matrix is then calculated by converting all column sums to unity ( [18,26], with the results displayed in Tab. 12. The limit super-matrix is then calculated using a weighted super matrix, with the results displayed in Tab. 13. In addition, global characteristic weights are calculated, and the results are displayed in Tab. 14 with characteristic ranking.         Goal 0.00000 0.00000 0.00000 0.00000 0.00000 0.00000 0.00000 0.00000 0.00000 0.00000 0.00000 0.00000 F1 0.25300 0.49100 0.35400 0.00000 0.00000 0.00000 0.00000 0.00000 0.00000 0.00000 0.00000 0.00000 F2 0.37900 0.44900 0.32100 0.00000 0.00000 0.00000 0.00000 0.00000 0.00000 0.00000 0.00000 0.00000 F11 0.00000 0.19600 0.00000 0.03400 0.03400 0.03900 0.03300 0.03300 0.03700 0.03500 0.04000 0.03400 F12 0.00000 0.16003 0.00000 0.05900 0.05900 0.05700 0.05900 0.05300 0.05200 0.05100 0.05500 0.05900 F13 0.00000 0.13400 0.00000 0.04600 0.04600 0.05400 0.05600 0.04500 0.05500 0.05600 0.05800 0.05000 F21 0.00000 0.00000 0.22700 0.05400 0.05300 0.04400 0.05000 0.04600 0.04800 0.04400 0.04500 0.04500 F22 0.00000 0.00000 0.29400 0.04900 0.04900 0.04000 0.04400 0.04900 0.04800 0.04000 0.04700 0.04800 F23 0.00000 0.00000 0.19100 0.05800 0.05700 0.04300 0.04200 0.05300 0.04600 0.04200 0.04600 0.04300 F231 0.00000 0.00000 0.00000 0.03700 0.03600 0.04900 0.04300 0.04800 0.04400 0.03800 0.04300 0.05200 F232 0.00000 0.00000 0.00000 0.04500 0.04500 0.05000 0.04400 0.04800 0.05600 0.05000 0.04500 0.05400 F233 0.00000 0.00000 0.00000 0.05500 0.05400 0.04900 0.04300 0.04200 0.04200 0.04300 0.04400 0.04200  Goal  F1  F2  F11  F12  F13  F21  F22  F23  F231  F232   Authors took inputs on the technological data of six healthcare system projects as given in Tab. 15 using Tab. 2 from the methodology section. The fuzzy-TOPSIS tactic uses the final weights of characteristics acquired by fuzzy-ANP as inputs to produce a rank for respectively alternative. For this, Eq. (16) is used, and a normalised decision-matrix is created for 8 criteria and 6 options, as shown in Tab. 15. Then, using Eq. (17), each cell value (known as normalised value) of the normalised decision-matrix is multiplied by the weights of each criterion, yielding a fuzzy weighted normalised decision-matrix, as shown in Tab. 16. The Fuzzy Negative-Ideal Solution (NIS) and Fuzzy Positive-Ideal Solution (PIS) are then calculated using Eq. (18). The distance of respectively option value from the NIS and PIS is then evaluated using Eqs. (19) and (20) and is shown in Tab. 17 under the column names D-I and D+I. Lastly, using Eq. (21), the performance value of respectively criterion was computed, and the ranking of alternatives was determined based on the derived performance score, which is also shown in Tab. 17 and Fig. 4. According to the findings of this present research work, Alternative-1 has the finest security tactic in terms of security methods among the 6 competitors.    As a result, the rating of each characteristic in each alternative varies depending on its functioning and the needs of the consumer. Furthermore, a combined estimate of attribute weights and attribute ratings is created as follows to evaluate the influence of sustainable-security of health information software systems throughout the hierarchy. The findings demonstrate that, out of all the options, the Alternative 1 has the greatest influence on the sustainable-security of health information software systems. The "Sensitivity Analysis" [26,27] approach is employed to define how the values of independent variables will affect a certain variable under a specified set of expectations. Sensitivity analysis evaluates the effect in a project's basic values and is based on one or more input variables that are kept within certain limitations. The authors used the values of and as 0.5 and 0.5, respectively, throughout the defuzzification technique in this study. These two numbers range from 0 to 1, with a lower value indicating more ambiguity in the participants' decision-making. Because values are dependent on environmental hesitations, the 0.5 value for and is employed to reflect a symmetrical environment. This specifies that the participants are neither overly optimistic nor overly pessimistic about their choices. Those ideals would have a direct impact on sustainable-security.

Figure 5: Variation in outcomes
Variability in outcomes is shown in Tab. 18 and Fig. 5 due to the values. The findings from the values (as 0.5) suggested that a symmetrical environment in terms of practitioner judgments could provide the best outcomes. After reviewing the outcomes of the sensitivity analysis, it was concluded that the values of the overall sustainable-security of health information software systems do not vary significantly. The importance of health information software systems sustainable-security is positively influenced by participants' expectations and risk perceptions.

Comparing the Outcomes with Other Methodologies
With the same data, different procedures produce different results (Srivastava et al., 2010). The majority of practitioners use one or more procedures to check the accuracy of the outcomes achieved using the projected method [5][6][7][8]. Following the Fuzzy ANP-TOPSIS process's implementation, this segment employs four further procedures to demonstrate the accuracy of the overall assessments and results. Classical-ANP-TOPSIS process [9], Classical AHP-TOPSIS process [12], Fuzzy AHP-TOPSIS process [15], and Fuzzy AHP-Average Weighted process [17][18][19] were among the ANP and AHP based procedures used by the authors. Furthermore, estimation in the ANP procedure is accomplished through ratio-scale pair-wise judgments [21][22][23]. It's also used to assess decisions based on practitioners' first impressions. This is one of the most important MCDM procedures for defining unstructured problems during the development of health information software systems [25][26][27]. Furthermore, fuzzy set theory has played an important role in accepting uncertainty and inconsistent judgments, such as the nature of human decision investigation, which was not adequately addressed in previous ANP [29][30][31].
In addition, Fuzzy ANP-TOPSIS process allows for further comprehensive justifications of practitioners' confusing and undefined knowledge [32,33]. The number of experts is used in the Fuzzy ANP-TOPSIS procedure during combination, and the Fuzzy AHP-Average Weighted Procedure is employed only for simple average procedures of fuzzified values. Furthermore, Classical AHP-TOPSIS Process is a procedure for creating a gathering relationship procedure in one step. Furthermore, Fuzzy AHP-TOPSIS Process is a procedure based on fuzzy logic and tree structure that uses information gathering, analysis procedures, and forecasts to collect and revise practitioners' judgments [34,35]. The data is now collected in its purest form. Tab. 19 shows the differences in the impacts of sustainablesecurity, and Fig. 6 shows a graphical representation of the same.  The difference in the impacts of sustainable-security through diverse processes is minor, as indicated in Tab. 19. Pearson's correlation technique was used in this work for empirical testing [36]. This process is used to calculate the associated value of the main outcomes and other approaches' outcomes. Furthermore, the correlation coefficient depicts the degree of similarity between two outcomes. The proximity value ranges from 1 to + 1 [37][38][39]. The value close to 1 specifies a weaker connection between values, whereas the value close to + 1 specifies a stronger bond. Pearson correlations between outcomes are highly correlated.
The correlations show a strong link between the obtained outcomes. Also, the data show that the selected and detected features, as well as their contribution to positive sustainable-security, are important. Saaty T. L., just published an essay on the estimation of sustainable-security [38]. One of the three characteristics of security (CIA) chosen in this article was sustainability. Only one sustainability attribute was taken into consideration in that study, therefore these characteristics were not entirely balanced. Furthermore, Sahu et al. [40] point out that sustainable-security is fully dependent on its contributing qualities. According to Sahu et al. [41], features of sustainability and security play equal roles in preserving sustainable-security for a certain life-span.

Discussion
As health information software systems adapt to contemporary requirements, the unpredictability of health information software systems is also on the rise. According to Khan et al., piece, the tax data of millions of Bulgarians was taken, and the attacker gave the same stolen data to the international media outlets as proof of his crime [42]. Such instances call for the urgent need for well-designed health information software solutions. Alfakeeh et al., also asserted in his blog post that "sustainable software design satisfies its clients' current requirements without jeopardising the ability to meet those expectations in the future" [43]. As a result, the transformation of health information software systems into sustainable and secure software architecture is an essential prerequisite.
This research focuses on both security and sustainability aspects and proposes a classified construction that fundamentally underlines the noteworthy and contributing elements in the design of health information software systems for sustainable-security. The goal of this current research work is to evaluate the sustainable-security of health information software systems at an early stage during development process. Because evaluation is the most effective way to attain sustainable-security, this study includes security and sustainability qualities and puts them to the test [44,45]. The findings of the research, as cited in this study, will aid developers in strengthening the sustainable-security of health information software systems as it grows.
There are a variety of security models that quantify sustainable-security. However, employing Fuzzy-ANP and other MCDM techniques, a strategy or devoted framework that integrates sustainability and security in a single column is inherently more cost-effective [46,47]. The methodology described here would aid in determining the sustainable-security of health information software systems while also opening the road for improved economic and environmental sustainability to meet the consumers' expectations. In the present research work, we looked at nine sustainable-security criteria that might be incorporated during the construction of health information software systems.
The majority of the organisations distinguish between rapidly changing industry and regulatory demands to alter how security is controlled (essentially preserving CIA) and dependability is maintained only at some point in the procedure of developing health information software systems. The proposed study offers a quantitative assessment to enhance the sustainability and security of health information software systems. In the design phase of healthcare systems, the sustainable-security hierarchical structure aids in elucidating the connection between the features that lead to sustainablesecurity. The writers of this research gathered comments of the experts on the contributing security and sustainability aspects of three different health information software systems in order to write this paper. Fuzzy ANP-TOPSIS is used to collect data from the experts, and the results are then doublechecked using various ANP-based techniques. The study's findings and drawbacks are summarised below:-• The characteristics used in this study are unique to each and every health information software system's security. As a result, the estimation would be valuable for all the developers. • It is critical to strike a balance between sustainability and security qualities for achieving high sustainability. As a result of these findings, developers may be able to create a technique with important qualities that contribute to the sustainable-security of health information software systems. • Determining sustainable-security will enhance economic, environmental, and social sustainability, thus adding to the customers' satisfaction. • More essential characteristics for increasing the overall effectiveness of health information software systems are sustainability and longevity. • Other ANP, AHP, and TOPSIS based processes have been demonstrated to generate less accurate results than MCDM procedures like Fuzzy ANP-TOPSIS. The results of the current investigation and the numerical analysis back this up. • For statistical validation, the correlation coefficients are estimated. It is close to 1, indicating that the influence of the link between the Fuzzy ANP-TOPSIS outcomes and the outcomes from other ANP-based methods is minor. • While Fuzzy ANP-TOPSIS produced better results in this study than ANP-based other methods, it is possible to achieve superior results using more traditional MCDM procedures, such as decision-making procedures based on fuzzy hesitant sets. • This review yielded metric-based recommendations that can assist the practitioners in improving long-term security by utilising high-priority characteristics of concern.
The discussion has shown that evaluating sustainable-security is vital and critical in its own right. However, this approach may have some boundaries that can be addressed in future research. The following are the outcomes' limitations: • The data for health information software systems was gathered from a small sample of people. The outcomes may alter if the data is gathered from a larger sample. • Various sustainability and security qualities may exist in addition to those that are presented in this study. The number of elements that influence the outcome of the sustainable-security effect can vary. • The methodology used in this research work is solely dependent on the opinions of 110 experts.
As a result, a huge dataset can assist in producing more precise and dependable results.

Conclusion
For security specialists, well-organized sustainable-security engineering and its effective implementation in developing the health information software systems necessitates a specific security review technique. In this research work, the sustainability and security attributes of current research are identified, and the sustainability of health information software systems is investigated. This work uses the Fuzzy ANP-TOPSIS process for quantitative estimates, which are then confirmed using four different ANP-based approaches. Sustainability is the utmost important aspect of the nine key qualities for efficient and effective sustainable-security of health information software systems, according to all approaches. The current state of security for health information software systems is insufficient in comparison to the threat that the current attack environment provides to the systems. The fact that development organisations have established a wide number of unsecure systems with numerous unsustainable vulnerabilities and applications is comical but compelling. The formulation of security rules that also focus on sustainability is a demand of our age. As a result, our study's sustainablesecurity assessment will aid the developers in developing secure and sustainable health information software systems.