-
Know your enemy [Elektronski vir] : user segmentation based on human aspects of information securityFujs, Damjan ; Vrhovec, Simon ; Vavpotič, DamjanUsers of information systems are the weakest link in information security. Considering their current information security performance is essential for improving information security training. User ... segmentation can help to improve information security training by dividing users into smaller groups based on their information security performance. In this paper, we present a segmented approach for information security training of users. To test the approach, we used data collected from students at a Slovenian university (N=165) with the Human Aspects of Information Security Questionnaire (HAIS-Q). HAIS-Q data was used to divide users into groups according to their information security performance via clustering. The proposed approach inherently balances adaptation of training to the needs of users and the efforts needed to achieve it which maximizes the key benefits of existing information security training approaches. With improved personalization, it mitigates the challenges related to training boringness and lack of user motivation which are emblematic for traditional information security training approaches. The proposed approach also offers some fexibility regarding the degree of personalization and the efforts related to information security training by fine-tuning the number of user groups. Finally, the proposed approach can help to identify benficial software security requirements during development of new information systems.Source: IEEE access [Elektronski vir]. - ISSN 2169-3536 (Vol. 9, 2021, str. 157306-157315)Type of material - e-article ; adult, seriousPublish date - 2021Language - englishCOBISS.SI-ID - 86508803
Author
Fujs, Damjan |
Vrhovec, Simon |
Vavpotič, Damjan
Topics
računalniška varnost |
grozdenje podatkov |
obdelava podatkov |
vizualizacija podatkov |
informacijska varnost |
informacijski sistemi |
informacijski sistemi |
clustering methods |
computer security |
data processing |
data visualization |
information security |
information systems |
information systems
Shelf entry
Permalink
- URL:
Impact factor
Access to the JCR database is permitted only to users from Slovenia. Your current IP address is not on the list of IP addresses with access permission, and authentication with the relevant AAI accout is required.
Year | Impact factor | Edition | Category | Classification | ||||
---|---|---|---|---|---|---|---|---|
JCR | SNIP | JCR | SNIP | JCR | SNIP | JCR | SNIP |
Select the library membership card:
DRS, in which the journal is indexed
Database name | Field | Year |
---|
Links to authors' personal bibliographies | Links to information on researchers in the SICRIS system |
---|---|
Fujs, Damjan | 53821 |
Vrhovec, Simon | 33190 |
Vavpotič, Damjan | 21393 |
Select pickup location:
Material pickup by post
Notification
Subject headings in COBISS General List of Subject Headings
Select pickup location
Pickup location | Material status | Reservation |
---|
Please wait a moment.