Ceesay, E.N. and Myers, K. and Watters, P.A. (2018) Human-centered strategies for cyber-physical systems security. EAI Endorsed Transactions on Security and Safety, 4 (14). e5. ISSN 2032-9393
eai.15-5-2018.154773.pdf
Available under License Creative Commons Attribution No Derivatives.
Download (606kB) | Preview
Abstract
Human error contributes to information system losses. Exposure to significant risk will continue and is not effectively addressed with conventional training. Broader strategy that addresses the social system is recommended. Such strategies have been successfully developed in industrial settings to deal with workplace hazards that are functionally similar to cyber loss. Four of these strategies are reviewed and found to be relevant to the needs of the IT-enabled organization in mitigating cyber security risks. These strategies are not consistent with each other or uniformly applicable, however, and would need to be adapted to contemporary knowledge work settings and used cautiously. Long-term institutionalization and development of organizational practices pose further challenges. While a holistic, sociotechnical systems (STS) approach to cyber security requires significant effort, IT-enabled organizations, as industrial organizations before them, will realize the effort is justified.
Item Type: | Article |
---|---|
Uncontrolled Keywords: | Sociotechnical systems; human factors; cyber security. |
Subjects: | H Social Sciences > H Social Sciences (General) Q Science > QA Mathematics > QA75 Electronic computers. Computer science QA75 Electronic computers. Computer science |
Depositing User: | EAI Editor IV |
Date Deposited: | 26 Mar 2021 13:52 |
Last Modified: | 26 Mar 2021 13:52 |
URI: | https://eprints.eudl.eu/id/eprint/2086 |