Toggle Main Menu Toggle Search

Open Access padlockePrints

Consumerisation of IT: Mitigating risky user actions and improving productivity with nudging

Lookup NU author(s): Dr Iryna Yevseyeva, Dr Charles Morisset, James Turland, Professor Thomas GrossORCiD, Christopher Laing, Professor Aad van Moorsel

Downloads


Licence

This work is licensed under a Creative Commons Attribution-NonCommercial-NoDerivatives 4.0 International License (CC BY-NC-ND).


Abstract

In this work we address the main issues of IT consumerisation that are related to security risks, and propose a 'soft' mitigation strategy for user actions based on nudging, widely applied to health and social behaviour influence. In particular, we propose a complementary, less strict, more flexible Information Security policies, based on risk assessment of device vulnerabilities and threats to corporate data and devices, combined with a strategy of influencing security behaviour by nudging. We argue that nudging, by taking into account the context of the decision-making environment, and the fact that the employee may be in better position to make a more appropriate decision, may be more suitable than strict policies in situations of uncertainty of security-related decisions. (C) 2014 The Authors. Published by Elsevier Ltd.


Publication metadata

Author(s): Yevseyeva I, Morisset C, Turland J, Coventry L, Gross T, Laing C, van Moorsel A

Editor(s): João Varajão, Manuela Cunha, Niels Bjørn-Andersen, Rodney Turner, Duminda Wijesekera, Ricardo Martinho, Rui Rijo

Publication type: Conference Proceedings (inc. Abstract)

Publication status: Published

Conference Name: CENTERIS 2014 / ProjMAN 2014 / HCIST 2014

Year of Conference: 2014

Pages: 508-517

Online publication date: 11/11/2014

Acceptance date: 01/01/1900

Date deposited: 31/07/2019

ISSN: 2212-0173

Publisher: Elsevier BV

URL: https://doi.org/10.1016/j.protcy.2014.10.118

DOI: 10.1016/j.protcy.2014.10.118


Share