Open access research
publication repository
publication repository
Arduin, Pierre-Emmanuel, & Vieru, Dragos (2017). Workarounds as means to identify insider threats to information systems security. In Proceedings of the Twenty-third Americas Conference on Information Systems, Boston 2017. Association for Information Systems.
File(s) available for this item:|
PDF
- PEA-DV-AMCIS-0041-2017-accepted.pdf
Content : Published Version |
|
| Item Type: | Papers in Conference Proceedings |
|---|---|
| Refereed: | Yes |
| Status: | Published |
| Abstract: | Workarounds represent deliberate actions of employees in contrast with the prescribed practices and organizations generally perceive them as unwanted processes. Workarounds may lead to information systems (IS) security policy violations, notably when prescribed practices lead employees to face obstacles in accomplishing their daily tasks. Such behavior generates new insider threats to IS security. In this article, we adopt the view that workarounds may enable the identification of new security threats. We propose a conceptual model that illustrates how workarounds generating non-malicious security violations might constitute sources of knowledge about new security threats. |
| Depositor: | Vieru, Dragos |
| Owner / Manager: | Dragos Vieru |
| Deposited: | 05 May 2017 18:37 |
| Last Modified: | 11 Sep 2017 15:56 |
|
RÉVISER |
