 |
ICT Systems Security and Privacy Protection 31st IFIP TC 11 International Conference, SEC 2016 Ghent, Belgium, May 30-June 1, 2016 |
 |
Conference papers
Developing a Human Activity Model for Insider IS Security Breaches Using Action Design Research
Abstract : Insider security breaches in organizations have been identified as a pressing problem for academics and practitioners. The literature generally addresses this problem by focusing on the compliance of human behavior to stated policy or the conformance with organizational culture. The cultural stance and resultant activities of organizational insiders are key determinants of information security. However, whilst compliance with security policies and regulations is of great importance, the very structure of human activities that facilitates or hinders such compliance have seldom appeared in the literature. In this paper we present a human activity model that captures different aspects of a security culture. The model elucidates the patterns of behavior in organizations. Applying the model before and after an insider security breach allows us to make salient, critical areas that need attention.
Cited literature [44 references]
https://hal.inria.fr/hal-01369541
Contributor : Hal Ifip <>
Submitted on : Wednesday, September 21, 2016 - 10:51:51 AM
Last modification on : Thursday, October 18, 2018 - 6:06:02 PM
Document(s) archivé(s) le : Thursday, December 22, 2016 - 1:03:22 PM
Contributor : Hal Ifip <>
Submitted on : Wednesday, September 21, 2016 - 10:51:51 AM
Last modification on : Thursday, October 18, 2018 - 6:06:02 PM
Document(s) archivé(s) le : Thursday, December 22, 2016 - 1:03:22 PM
File
421518_1_En_4_Chapter.pdf
Files produced by the author(s)
Licence
Distributed under a Creative Commons Attribution 4.0 International License
