liu.seSearch for publications in DiVA
Change search
ReferencesLink to record
Permanent link

Direct link
User-Centered Security Applied on Management
Linköping University, Department of Computer and Information Science.
2007 (English)Independent thesis Advanced level (degree of Magister), 20 points / 30 hpStudent thesis
Abstract [en]

The purpose of this study has been to research how to implement a graphical interface for presenting information security information to management. The major conclusion of the study is that management use this kind of information mainly for financial and strategic matters. Hence the information must be presented in a way that enhances this use of the information.

The study also concludes that people act insecure mainly due to:

a) Insufficient knowledge of how/why to act secure.

b) The users do not want to act secure due to social and organisational factors.

To fight the first factor, the management need a tool that helps them to see where to spend their resources. To fight the second factor, the organisation needs to be well educated and the company culture should allow the users to act secure.

Three heuristics for the design of information security solutions for management and a design solution for the interface are also presented in the study. The three heuristics are:

1. Provide overview information very early in the program. The ordinary manager does not have the time or the knowledge to make this overview by himself/herself.

2. Do not overwhelm the user. The ordinary management man/woman is not interested in the details of the information security and/or do not have time to read this sort of information. If he or she wants to access the details, he or she is likely to find them (if they are placed in a logical place).

3. Provide information in a way that is common to the manager. Use wordings that the user understands. Provide contextual help for expressions that must be presented in a technical way.

Place, publisher, year, edition, pages
Institutionen för datavetenskap , 2007. , 103 p.
Keyword [en]
User-Centered security management usability interaction design
National Category
Psychology (excluding Applied Psychology)
URN: urn:nbn:se:liu:diva-8636ISRN: LIU-KOGVET-D--07/07--SEOAI: diva2:23377
2006-10-27, Alan Turing, B-huset, Linköpings Universitet, 581 83 Linköping, 10:00
Available from: 2007-04-19 Created: 2007-04-19

Open Access in DiVA

fulltext(26377 kB)743 downloads
File information
File name FULLTEXT01.pdfFile size 26377 kBChecksum SHA-1
Type fulltextMimetype application/pdf

By organisation
Department of Computer and Information Science
Psychology (excluding Applied Psychology)

Search outside of DiVA

GoogleGoogle Scholar
Total: 743 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

Total: 478 hits
ReferencesLink to record
Permanent link

Direct link