Modelling the Human and Technological Costs and Benefits of USB Memory Stick Security

Adam  Beautement; Robert  Coles; Jonathan Griffin; Christos Ioannidis; Brian Monahan; David J. Pym; Angela Sasse; Michael Wonham

doi:10.1007/978-0-387-09762-6_7

Modelling the Human and Technological Costs and Benefits of USB Memory Stick Security

Adam Beautement, Robert Coles, Jonathan Griffin, Christos Ioannidis, Brian Monahan, David J. Pym, Angela Sasse, Michael Wonham

Computing Science

Research output: Chapter in Book/Report/Conference proceeding › Chapter

Abstract

Organizations deploy systems technologies in order to support their operations and achieve their business objectives. In so doing, they encounter tensions between the confidentiality, integrity, and availability of information, and must make investments in information security measures to address these concerns. We discuss how a macroeconomics-inspired model, analogous to models of interest rate policy used by central banks, can be used to understand trade-offs between investments against threats to confidentiality and availability. We investigate how such a model might be formulated by constructing a process model, based on empirically obtained data, of the use of USB memory sticks by employees of a financial management company.

Original language	English
Title of host publication	Managing Information Risk and the Economics of Security
Editors	M. Eric Johnson
Place of Publication	New York, NY, USA
Publisher	Springer Science+Business Media
Pages	141-163
Number of pages	23
ISBN (Print)	0387097619, 978-0387097619
DOIs	https://doi.org/10.1007/978-0-387-09762-6_7
Publication status	Published - 2 Dec 2008

Access to Document

10.1007/978-0-387-09762-6_7

Cite this

Beautement, A., Coles, R., Griffin, J., Ioannidis, C., Monahan, B., Pym, D. J., Sasse, A., & Wonham, M. (2008). Modelling the Human and Technological Costs and Benefits of USB Memory Stick Security. In M. E. Johnson (Ed.), Managing Information Risk and the Economics of Security (pp. 141-163). Springer Science+Business Media. https://doi.org/10.1007/978-0-387-09762-6_7

Modelling the Human and Technological Costs and Benefits of USB Memory Stick Security. / Beautement, Adam ; Coles, Robert ; Griffin, Jonathan et al.

Managing Information Risk and the Economics of Security. ed. / M. Eric Johnson. New York, NY, USA : Springer Science+Business Media, 2008. p. 141-163.

Research output: Chapter in Book/Report/Conference proceeding › Chapter

Beautement, A, Coles, R, Griffin, J, Ioannidis, C, Monahan, B, Pym, DJ, Sasse, A & Wonham, M 2008, Modelling the Human and Technological Costs and Benefits of USB Memory Stick Security. in ME Johnson (ed.), Managing Information Risk and the Economics of Security. Springer Science+Business Media, New York, NY, USA, pp. 141-163. https://doi.org/10.1007/978-0-387-09762-6_7

@inbook{41b98db71a7c4e17bb7bada983c94086,

title = "Modelling the Human and Technological Costs and Benefits of USB Memory Stick Security",

abstract = "Organizations deploy systems technologies in order to support their operations and achieve their business objectives. In so doing, they encounter tensions between the confidentiality, integrity, and availability of information, and must make investments in information security measures to address these concerns. We discuss how a macroeconomics-inspired model, analogous to models of interest rate policy used by central banks, can be used to understand trade-offs between investments against threats to confidentiality and availability. We investigate how such a model might be formulated by constructing a process model, based on empirically obtained data, of the use of USB memory sticks by employees of a financial management company.",

author = "Adam Beautement and Robert Coles and Jonathan Griffin and Christos Ioannidis and Brian Monahan and Pym, {David J.} and Angela Sasse and Michael Wonham",

year = "2008",

month = dec,

day = "2",

doi = "10.1007/978-0-387-09762-6_7",

language = "English",

isbn = "0387097619",

pages = "141--163",

editor = "Johnson, {M. Eric }",

booktitle = "Managing Information Risk and the Economics of Security",

publisher = "Springer Science+Business Media",

}

TY - CHAP

T1 - Modelling the Human and Technological Costs and Benefits of USB Memory Stick Security

AU - Beautement, Adam

AU - Coles, Robert

AU - Griffin, Jonathan

AU - Ioannidis, Christos

AU - Monahan, Brian

AU - Pym, David J.

AU - Sasse, Angela

AU - Wonham, Michael

PY - 2008/12/2

Y1 - 2008/12/2

N2 - Organizations deploy systems technologies in order to support their operations and achieve their business objectives. In so doing, they encounter tensions between the confidentiality, integrity, and availability of information, and must make investments in information security measures to address these concerns. We discuss how a macroeconomics-inspired model, analogous to models of interest rate policy used by central banks, can be used to understand trade-offs between investments against threats to confidentiality and availability. We investigate how such a model might be formulated by constructing a process model, based on empirically obtained data, of the use of USB memory sticks by employees of a financial management company.

AB - Organizations deploy systems technologies in order to support their operations and achieve their business objectives. In so doing, they encounter tensions between the confidentiality, integrity, and availability of information, and must make investments in information security measures to address these concerns. We discuss how a macroeconomics-inspired model, analogous to models of interest rate policy used by central banks, can be used to understand trade-offs between investments against threats to confidentiality and availability. We investigate how such a model might be formulated by constructing a process model, based on empirically obtained data, of the use of USB memory sticks by employees of a financial management company.

U2 - 10.1007/978-0-387-09762-6_7

DO - 10.1007/978-0-387-09762-6_7

M3 - Chapter

SN - 0387097619

SN - 978-0387097619

SP - 141

EP - 163

BT - Managing Information Risk and the Economics of Security

A2 - Johnson, M. Eric

PB - Springer Science+Business Media

CY - New York, NY, USA

ER -

Modelling the Human and Technological Costs and Benefits of USB Memory Stick Security

Abstract

Access to Document

Fingerprint

Cite this