Behavioral information security

Cyber Warfare and Cyber Terrorism

Volumn , Issue , 2007, Pages 199-205

  Fagnot, Isabelle J ^a  

^a SYRACUSE UNIVERSITY   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

EID: 84880196111     PISSN: None     EISSN: None     Source Type: Book    
DOI: 10.4018/978-1-59140-991-5.ch025     Document Type: Chapter

References (18)

1. Chand, V., & Orgun, C. O. (2006). Exploiting linguistic features in lexical steganography: Design and proofof-concept implementation. Proceedings of the 39th Annual Hawaii International Conference on System Sciences (HICSS).
2. Conner, B., Noonan, T. & Holleyman, R.W.II. (2003). Information security governance: Toward a framework for action. Business Software Alliance.
3. D'Arcy, J. (2005). Improving IS security through procedural and technical countermeasures: An analysis of organizational security measures (Research report). Temple University, Irwin L. Gross e-business Institute.
4. David, J. (2002). Policy enforcement in the workplace. Computers and Security, 21(6), 506513.
5. Ernst and Young LLP. (2002). Global information security survey. Presentation Services.
6. Fagnot, I. J., & Stanton, J. M. (2006). Using security assessment interviews to predict organizational security status. The Security Conference, Las Vegas, NV.
7. Keeney, M.M., Kowalski, E.F., Cappelli, D.M., Moore, A.P., Shimeall, T.J., and Rogers, S.N. (2005). Insider hreat study: Computer system sabotage in critical infrastructure sectors. National Threat Assessment Center, United States Secret Service; CERT® Program, Software Engineering Institute, Carnegie-Mellon University.
8. Kotulic, A. G., & Clark, G. J. (2004). Why there aren't more information security research studies. Information & Management, 41, 597-607.
9. Mitnick, K. D.,& Simon, W. L. (2002). The art of deception: Controlling the human element of security. Indianapolis, IN: Wiley
10. Nguyen, N., Reiher, P., & Kuenning, G. H. (2003). Detecting insider threats by monitoring system call activity. Proceedings of the 2003 IEEE Workshop on Information Assurance.
11. Sasse, M. A., Brostoff, S., & Weirich, D. (2001). Transforming the "weakest link": A human/computer interaction approach to usable and effective security. BT Technology Journal, 19(3), 122-131.
12. Schultz, E. E. (2002). A framework for understanding and predicting insider attacks. Computers and Security, 21(6), 526-531.
13. Stam, K., Guzman, I., Fagnot, I., & Stanton, J. (2005). What's your password? The experience of fieldworkers using ethnographic methods to study information technology in work organizations. Paper presented at the 2005 American Anthropological Association Annual Meetings, Washington, DC.
14. Stanton, J. & Fagnot, I. (2006). Extracting useful information from security assessment interviews. Proceedings of the 39th Annual Hawaii International Conference on System Sciences (HICSS).
15. Stanton, J. M., Stam, K. R., Mastrangelo, P., & Jolton, J. (2005). An analysis of end user security behaviors. Computers and Security, 24, 124-133.
16. Stanton, J. M., Yamodo-Fagnot, I., & Stam, K. R. (2005). The madness of crowds: Employees beliefs about information security in relation to security outcomes. The Security Conference, Las Vegas, NV.
17. Sushma, M., & Dhillon, G. (2006). information systems security governance research: A behavioral perspective. NYS Cyber Security Conference (NYS CSIS), Albany, NY.
18. Symonenko, S., Liddy, E. D., Yilmazel, O., Del Soppo, R., Brown, E., & Downey, M. (2004). Semantic analysis for monitoring insider threats. Presented at The Second NSF/NIJ Symposium on Intelligence and Security Informatics (ISI). Tucson, AZ.