Modelling the human and technological costs and benefits of USB memory stick security

Adam Beautement, Robert Coles, Jonathan Griffin, Christos Ioannidis, Brian Monahan, David Pym, Angela Sasse, Mike Wonham

Research output: Chapter in Book/Published conference outputChapter

Abstract

Organizations deploy systems technologies in order to support their ope­rations and achieve their business objectives. In so doing, they encounter tensions between the confidentiality, integrity, and availability of information, and must make investments in information security measures to address these concerns. We discuss how a macroeconomics-inspired model, analogous to models of interest rate policy used by central banks, can be used to understand trade-offs between investments against threats to confidentiality and availability. We investigate how such a model might be formulated by constructing a process model, based on empirically obtained data, of the use of USB memory sticks by employees of a financial services company.
Original languageEnglish
Title of host publicationManaging information risk and the economics of security
EditorsM. Eric Johnson
PublisherSpringer
Pages141-163
Number of pages23
ISBN (Electronic)978-0-387-09762-6
ISBN (Print)978-0-387-09761-9
DOIs
Publication statusPublished - 22 Dec 2009

Fingerprint

Dive into the research topics of 'Modelling the human and technological costs and benefits of USB memory stick security'. Together they form a unique fingerprint.

Cite this