User-centred security applied to the development of a management information system

Information Management and Computer Security

Volumn 15, Issue 5, 2007, Pages 372-381

  Nohlberg, Marcus ^a   Bäckström, Johannes ^b  

^a UNIVERSITY OF SKÖVDE   (Sweden)

^b LINKÖPING UNIVERSITY   (Sweden)

Author keywords

Data security; Information; Information systems; User interfaces

Indexed keywords

COMPUTER AIDED DESIGN; GRAPHICAL USER INTERFACES; SECURITY OF DATA;

ITERATIVE DESIGN PROCESS; PROTOTYPE GRAPHICAL INTERFACE; USER-CENTRED SECURITY;

MANAGEMENT INFORMATION SYSTEMS;

EID: 34948879255     PISSN: 09685227     EISSN: None     Source Type: Journal    
DOI: 10.1108/09685220710831116     Document Type: Article

References (16)

1. Berson, J. (2005), "Zone alarm: Creating usable security products for consumers", in Lorrie, F.C. and Simson, G. (Eds), Security and Usability, O' Reilly Media, Sebastopol, CA.
2. DePaula, R., Ding, X., Dourish, P., Nies, K., Pillet, B., Redmiles, D., Ren, J., Rode, J. and Silva, F.R. (2005), "Two experiences designing for effective security", available at: http://cups.cs.cmu.edu/soups/2005/2005proceedings/p25/depaula.pdf (accessed November 2006).
3. Department of Trade and Industry (2004) United Kingdom's department of trade and industry's information security breaches survey 2004, available at: www.pwc.com/uk/eng/ins/sol/publ/pwc_DTI-InfoSecutiry/ Survey2004/Exec.pdf (accessed 10 May 2006).
4. Dourish, P. and Redmiles, D. (2002), "An approach to usable security based on event monitoring and visualization", paper presented at New Security Paradigms Workshop 02.
5. Flechais, I. and Sasse, A.M. (2005), "Usable security", in Lorrie, F.C. and Simson, G. (Eds), Security and Usability, O'Reilly Media, Sebastopol, CA.
6. Furnell, S.M., Jusoh, A., Katsabas, D. and Dowland, P. (2006), "Considering the usability of end-user security software", Proceedings of 21st IFIP International Information Security Conference (IFIP SEC 2006), Karlstad, Sweden, May 22-24, pp. 307-16.
7. Hackos, J.T. and Redish, J.C. (1998), User and Task Analysis for Interface Design, Wiley, New York, NY.
8. Holmström, U. (1999), "User-centered design of security software", available at: www.hft.org/HFT99/paper99/Design/5_99.pdf (accessed 10 October 2006).
9. Long, C.A. and Moskowitz, C. (2005), "Simple desktop security with chameleon", in Lorrie, F.C. and Simson, G. (Eds), Security and Usability, O'Reilly Media, Sebastopol, CA.
10. Nielsen, J. (1994), "Heuristic evaluation", in Nielsen, J. and Mack, R.L. 9Eds), Usability Inspection Methods, Wiley, New York, NY.
11. Nohlberg, M. and Bäckström, J. (2007), "Talking security to management: How to do it", unpublished paper submitted for review.
12. Norman, D. (2002), The Design of Everyday Things Basic Books, New York, NY.
13. Rasmussen, M. (2002), "IT-trends 2003: Information security standards, regulations and legislation", available at: http://images.telos.com/files/external/Giga_IT_Trends_2003.pdf (accessed 5 August 2006).
14. Simon, R.T. and Zurko, M.E. (1996), "User-centered security", Proceedings of the UCLA Conference on New Security Paradigms Workshops, September 17-20, available at: http://portal.acm.org/citation.cfm?id= 304859 (accessed 5 August 2006).
15. Tygar, J.D. and Whitten, A. (1998), "Usability of security: A case study", available at: http://reports-archive.adm.cs.cmu.edu/anon/ 1998/abstracts/98-155.html (accessed 2 August 2006).
16. Von Solms, B. and Von Solms, R. (2004), "The 10 deadly sins of information security management", Computers & Security, Vol. 23 No. 5, pp. 371-6.