liu.seSearch for publications in DiVA
Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard1
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • oxford
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
User-Centered Security Applied on Management
Linköping University, Department of Computer and Information Science.
2007 (English)Independent thesis Advanced level (degree of Magister), 20 points / 30 hpStudent thesis
Abstract [en]

The purpose of this study has been to research how to implement a graphical interface for presenting information security information to management. The major conclusion of the study is that management use this kind of information mainly for financial and strategic matters. Hence the information must be presented in a way that enhances this use of the information.

The study also concludes that people act insecure mainly due to:

a) Insufficient knowledge of how/why to act secure.

b) The users do not want to act secure due to social and organisational factors.

To fight the first factor, the management need a tool that helps them to see where to spend their resources. To fight the second factor, the organisation needs to be well educated and the company culture should allow the users to act secure.

Three heuristics for the design of information security solutions for management and a design solution for the interface are also presented in the study. The three heuristics are:

1. Provide overview information very early in the program. The ordinary manager does not have the time or the knowledge to make this overview by himself/herself.

2. Do not overwhelm the user. The ordinary management man/woman is not interested in the details of the information security and/or do not have time to read this sort of information. If he or she wants to access the details, he or she is likely to find them (if they are placed in a logical place).

3. Provide information in a way that is common to the manager. Use wordings that the user understands. Provide contextual help for expressions that must be presented in a technical way.

Place, publisher, year, edition, pages
Institutionen för datavetenskap , 2007. , 103 p.
Keyword [en]
User-Centered security management usability interaction design
National Category
Psychology (excluding Applied Psychology)
Identifiers
URN: urn:nbn:se:liu:diva-8636ISRN: LIU-KOGVET-D--07/07--SEOAI: oai:DiVA.org:liu-8636DiVA: diva2:23377
Presentation
2006-10-27, Alan Turing, B-huset, Linköpings Universitet, 581 83 Linköping, 10:00
Uppsok
samhälle/juridik
Supervisors
Examiners
Available from: 2007-04-19 Created: 2007-04-19

Open Access in DiVA

fulltext(26377 kB)765 downloads
File information
File name FULLTEXT01.pdfFile size 26377 kBChecksum SHA-1
528bcedf779f74949357dc5aafdc5735ee2ffd427104e18f723099200f739ffeece550d5
Type fulltextMimetype application/pdf

By organisation
Department of Computer and Information Science
Psychology (excluding Applied Psychology)

Search outside of DiVA

GoogleGoogle Scholar
Total: 765 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

urn-nbn

Altmetric score

urn-nbn
Total: 509 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard1
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • oxford
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf