Yevseyeva, Iryna, Morisset, Charles, Turland, James, Coventry, Lynne, Groß, Thomas, Laing, Christopher and van Moorsel, Aad (2014) Consumerisation of IT: Mitigating risky user actions and improving productivity with nudging. Procedia Technology, 16. pp. 508-517. ISSN 2212-0173
|
PDF
Centeris2014_Improving_Productivity_With_Nudging.pdf - Published Version Available under License Creative Commons Attribution Non-commercial No Derivatives. Download (345kB) | Preview |
Abstract
In this work we address the main issues of IT consumerisation that are related to security risks, and propose a ‘soft’ mitigation strategy for user actions based on nudging, widely applied to health and social behaviour influence. In particular, we propose a complementary, less strict, more flexible Information Security policies, based on risk assessment of device vulnerabilities and threats to corporate data and devices, combined with a strategy of influencing security behaviour by nudging. We argue that nudging, by taking into account the context of the decision-making environment, and the fact that the employee may be in better position to make a more appropriate decision, may be more suitable than strict policies in situations of uncertainty of security related decisions.
| Item Type: | Article |
|---|---|
| Additional Information: | Presented at Conference on ENTERprise Information Systems (CENTERIS 2014), 15-17 October 2014, Troia, Portugal. |
| Uncontrolled Keywords: | consumerisation; security; risks; mitigation strategies; nudging |
| Subjects: | G400 Computer Science |
| Department: | Faculties > Engineering and Environment > Computer and Information Sciences Faculties > Health and Life Sciences > Psychology |
| Depositing User: | Debbie Jeske |
| Date Deposited: | 10 Nov 2014 09:35 |
| Last Modified: | 17 Dec 2023 15:33 |
| URI: | https://nrl.northumbria.ac.uk/id/eprint/18019 |
Actions (login required)
 |
View Item |
Downloads
Downloads per month over past year
