Sciweavers

DESRIST
2009
Springer

An empirical evaluation of information security awareness levels in designing secure business processes

14 years 4 months ago
An empirical evaluation of information security awareness levels in designing secure business processes
Information Systems Security (ISS) is critical to ensuring the integrity and credibility of digitally exchanged information in business processes. Information systems development methodology that considers security requirements in the early phases of systems development is essential for ISS. In the context of ISS, information security awareness (SA) can play a vital role in minimizing end-user related security faults and maximizing the efficiency of security techniques. This information security awareness should be present in the requirements gathering phase of the software development process so that analysts become more aware of security constraints and possible violations resulting into secure business processes. In this paper, we extend the work by D’Aubeterre et al. (2008b) to evaluate the utility of Secure Activity Resource Coordination artifacts in generating three levels of security awareness: perception, comprehension and prediction. The experimental evaluation shows that u...
Fergle D'Aubeterre, Lakshmi S. Iyer, Rahul Singh
Added 24 Jul 2010
Updated 24 Jul 2010
Type Conference
Year 2009
Where DESRIST
Authors Fergle D'Aubeterre, Lakshmi S. Iyer, Rahul Singh
Comments (0)