Henson, Richard and Kuzma, Joanne (2010) End User Computing and Information Security: a Retrospective Look at the De-centralisation of Data Processing and Emerging Organisational Information Risk. In: UK Academy for Information Systems, 15th Annual Conference, 23-24 March 2010, University of Oxford.
|
PDF
hensonukais2010.pdf Download (59kB) | Preview |
Abstract
Information security assured on centralised systems through application of principles previously established for paper-based systems. The advent of personal computing and distributed computing potentially turned that model upside down. It seems that the eagerness of organisations for encouraging technology (Availability part of the CIA acronym) seemed to take precedence over the finer meaning of Confidentiality and Integrity, in spite of (in the UK, at least) changes to legislation.
The huge increase in portable data storage capacities ensured that what may have been perceived as a minor irritant in the 1980s became a potential nightmare scenario by 2007, which caused two government reports to report “systemic failure”. This paper looks at the development of end-user computing, and suggests that the problem occurred because of a lack of information risk assessment over many years
Item Type: | Conference or Workshop Item (Paper) |
---|---|
Uncontrolled Discrete Keywords: | confidentiality, integrity, availability, end-user computing, information security, information systems management |
Subjects: | T Technology > T Technology (General) |
Divisions: | College of Business, Psychology and Sport > Worcester Business School |
Depositing User: | Joanne Kuzma |
Date Deposited: | 25 Mar 2010 13:54 |
Last Modified: | 08 Jun 2021 09:24 |
URI: | https://eprints.worc.ac.uk/id/eprint/875 |
Actions (login required)
View Item |