Browse by author
Lookup NU author(s): Dr Iryna Yevseyeva, Dr Charles Morisset, James Turland, Professor Thomas GrossORCiD, Christopher Laing, Professor Aad van Moorsel
This work is licensed under a Creative Commons Attribution-NonCommercial-NoDerivatives 4.0 International License (CC BY-NC-ND).
In this work we address the main issues of IT consumerisation that are related to security risks, and propose a 'soft' mitigation strategy for user actions based on nudging, widely applied to health and social behaviour influence. In particular, we propose a complementary, less strict, more flexible Information Security policies, based on risk assessment of device vulnerabilities and threats to corporate data and devices, combined with a strategy of influencing security behaviour by nudging. We argue that nudging, by taking into account the context of the decision-making environment, and the fact that the employee may be in better position to make a more appropriate decision, may be more suitable than strict policies in situations of uncertainty of security-related decisions. (C) 2014 The Authors. Published by Elsevier Ltd.
Author(s): Yevseyeva I, Morisset C, Turland J, Coventry L, Gross T, Laing C, van Moorsel A
Editor(s): João Varajão, Manuela Cunha, Niels Bjørn-Andersen, Rodney Turner, Duminda Wijesekera, Ricardo Martinho, Rui Rijo
Publication type: Conference Proceedings (inc. Abstract)
Publication status: Published
Conference Name: CENTERIS 2014 / ProjMAN 2014 / HCIST 2014
Year of Conference: 2014
Pages: 508-517
Online publication date: 11/11/2014
Acceptance date: 01/01/1900
Date deposited: 31/07/2019
ISSN: 2212-0173
Publisher: Elsevier BV
URL: https://doi.org/10.1016/j.protcy.2014.10.118
DOI: 10.1016/j.protcy.2014.10.118