Information and Computer Security
Issue(s) available: 27 – From Volume: 23 Issue: 1, to Volume: 28 Issue: 2
Category:
Information and Knowledge Management
Volume 28
Volume 27
Volume 26
Volume 25
Volume 24
Volume 23
Utilizing a privacy impact assessment method using metrics in the healthcare sector
Eleni-Laskarina Makri, Zafeiroula Georgiopoulou, Costas LambrinoudakisThis study aims to assist organizations to protect the privacy of their users and the security of the data that they store and process. Users may be the customers of the…
GDPR compliance: proposed technical and organizational measures for cloud provider
Zafeiroula Georgiopoulou, Eleni-Laskarina Makri, Costas LambrinoudakisThe purpose of this paper is to give a brief guidance on what a cloud provider should consider and what further actions to take to comply with General Data Protection…
Discovering “Insider IT Sabotage” based on human behaviour
Antonia Michael, Jan EloffMalicious activities conducted by disgruntled employees via an email platform can cause profound damage to an organization such as financial and reputational losses. This…
PRISM: a strategic decision framework for cybersecurity risk assessment
Rajni Goel, Anupam Kumar, James HaddowThis study aims to develop a framework for cybersecurity risk assessment in an organization. Existing cybersecurity frameworks are complex and implementation oriented. The…
Mobile users’ information privacy concerns instrument and IoT
C. Bryan Foltz, Laura FoltzInternet of Things (IoT) presents new privacy dilemmas. While IoT is becoming more common, a model to understand privacy concerns has not been established. The purpose of…
Information and cyber security maturity models: a systematic literature review
Anass Rabii, Saliha Assoul, Khadija Ouazzani Touhami, Ounsa RoudiesThis paper aims to clarify the uncertainty reflected in the current state of information security maturity evaluation where it has not enough matured and converged so that…
Comparing the protection and use of online personal information in South Africa and the United Kingdom in line with data protection requirements
Adéle Da Veiga, Ruthea Vorster, Fudong Li, Nathan Clarke, Steven M. FurnellThe purpose of this study was to investigate the difference between South Africa (SA) and the United Kingdom (UK) in terms of data protection compliance with the aim to…
The impact of information security management practices on organisational agility
Muhamad Khairulnizam Zaini, Mohamad Noorman Masrek, Mad Khir Johari Abdullah SaniThis study aims to determine the extent to which information security management (ISM) practices impact the organisational agility by examining the relationship between…
Response biases in policy compliance research
Sebastian KurowskiThe purpose of this study is to use a developed and pre-tested scenario-based measurement instrument for policy compliance and determine whether policy compliance…
Privacy, security, legal and technology acceptance elicited and consolidated requirements for a GDPR compliance platform
Aggeliki Tsohou, Emmanouil Magkos, Haralambos Mouratidis, George Chrysoloras, Luca Piras, Michalis Pavlidis, Julien Debussche, Marco Rotoloni, Beatriz Gallego-Nicasio CrespoGeneral data protection regulation (GDPR) entered into force in May 2018 for enhancing personal data protection. Even though GDPR leads toward many advantages for the data…
From ISO/IEC27001:2013 and ISO/IEC27002:2013 to GDPR compliance controls
Vasiliki Diamantopoulou, Aggeliki Tsohou, Maria KarydaThis paper aims to identify the controls provisioned in ISO/IEC 27001:2013 and ISO/IEC 27002:2013 that need to be extended to adequately meet, data protection requirements…
Towards a maturity model for health-care cloud security (M2HCS)
Opeoluwa Ore Akinsanya, Maria Papadaki, Lingfen SunThe purpose of this paper is to propose a novel maturity model for health-care cloud security (M2HCS), which focuses on assessing cyber security in cloud-based health-care…
A novel trust model for fog computing using fuzzy neural networks and weighted weakest link
Mhamed ZineddineTrust is one of the main pillars of many communication and interaction domains. Computing is no exception. Fog computing (FC) has emerged as mitigation of several cloud…
Assessing the current state of information security policies in academic organizations
Jake Weidman, Jens GrossklagsColleges and universities across the USA have seen data breaches and intellectual property theft rise at a heightened rate over the past several years. An integral step in…
A systematic literature review of the factors affecting smartphone user threat avoidance behaviour
Rika ButlerThere is a need for behavioural research within the smartphone context to better understand users’ behaviour, as it is one of the reasons for the proliferation of mobile…
The role of norms in information security policy compliance
Isaac Wiafe, Felix Nti Koranteng, Abigail Wiafe, Emmanuel Nyarko Obeng, Winfred YaokumahThe purpose of this paper is to determine which factors influence information system security policy compliance. It examines how different norms influence compliance intention.
Constructing secure and memorable passwords
Joakim Kävrestad, Markus Lennartsson, Marcus Birath, Marcus NohlbergUsing authentication to secure data and accounts has grown to be a natural part of computing. Even if several authentication methods are in existence, using passwords…
A Clark-Wilson and ANSI role-based access control model
Tamir Tsegaye, Stephen FlowerdayAn electronic health record (EHR) enables clinicians to access and share patient information electronically and has the ultimate goal of improving the delivery of…
An activity theory approach to information security non-compliance
Rima Khatib, Henri BarkiThe purpose of this paper is to introduce activity theory (AT) as a new theoretical lens to the field of information security non-compliance by explaining how research in…
Security behaviour of mobile financial service users
Esther Dzidzah, Kwame Owusu Kwateng, Benjamin Kofi AsanteThe inception of mobile financial services (MFSs) has positively provoked economic growth and productivity, nonetheless, it has pessimistically caused an upward surge in…
Analyzing the usage of character groups and keyboard patterns in password creation
Joakim Kävrestad, Johan Zaxmy, Marcus NohlbergUsing passwords to keep account and data safe is very common in modern computing. The purpose of this paper is to look into methods for cracking passwords as a means of…
It is not my job: exploring the disconnect between corporate security policies and actual security practices in SMEs
Moufida Sadok, Steven Alter, Peter BednarThis paper aims to present empirical results exemplifying challenges related to information security faced by small and medium enterprises (SMEs). It uses guidelines based…
ISSN:
2056-4961Renamed from:
Information Management & Computer SecurityOnline date, start – end:
2015Copyright Holder:
Emerald Publishing LimitedOpen access:
hybridEditor:
- Prof Steven Furnell
Further Information
