Information security risks assessment in telecommunication network of the university

Purpose The purpose of this study is to understand the information security behaviour of the students of the University of Dhaka, Bangladesh in the use of smartphones. Bangladesh is well-known as one of the largest and fastest growing mobile phone market of the world, and the University of Dhaka is also the largest student’s assembly in the country in terms of using smartphones. Besides, the rising use of smartphones is also likely to be typical of other sub-continent countries. Design/methodology/approach To gain an understanding of the information security behaviours of the students of University of Dhaka, Bangladesh, a quantitative survey method was deployed in revealing the approaches of the students towards avoidance of various security risks. A total of 356 students participated in the study, although eight of the participants did not carry out the full survey because they do not use smartphones. The collected data were analysed with suitable statistical methods. Findings The findings of the study reveal that students of University of Dhaka possess a moderately secure behaviour in terms of avoiding harmful behaviours, using useful phone settings and add-on utilities and disaster recovery. This study also shows that the students do not behave securely in all aspects of using different security features in the same way, and it also varies somewhat according to gender, and between faculties and institutions. The university library is recommended as the focus for instruction and guidance on the best practice in smartphone use by students. Research limitations/implications The study does not include any other universities of Bangladesh except University of Dhaka due to the shortage of time. A further study can be conducted to gain an understanding in a greater extent by including students of the other universities and perhaps also other countries. Originality/value This is the first paper in Bangladesh related to the study of information security behaviour regarding the use of smartphone among the student of University of Dhaka. This study will help to raise information security awareness among the students and encourage the authorities to adopt appropriate strategies and policies to resolve information security risks in the use of smartphones. Specially, the university library can take some initiatives in this case, such as providing advice, seminars, workshops and lectures to make the students aware about security issues.

Download Full-text

On the Issue of Information Security Risks Assessment of Business Processes

2018 XIV International Scientific-Technical Conference on Actual Problems of Electronics Instrument Engineering (APEIE) ◽

10.1109/apeie.2018.8545576 ◽

2018 ◽

Cited By ~ 2

Author(s):

Viktor M. Belov ◽

Andrey I. Pestunov ◽

Tamara M. Pestunova

Keyword(s):

Information Security ◽

Business Processes ◽

Security Risks ◽

Risks Assessment

Download Full-text

Flow-based Routing Model with Load Balancing on the Traffic Engineering Principles Taking into Account the Information Security Risks

Problemi telekomunìkacìj ◽

10.30837/pt.2020.2.03 ◽

2020 ◽

pp. 32-42

Author(s):

Maryna Yevdokymenko ◽

Maryna Shapoval ◽

Alla Krepko

Keyword(s):

Network Security ◽

Information Security ◽

Load Balancing ◽

Traffic Engineering ◽

Telecommunication Network ◽

Packet Transmission ◽

Secure Routing ◽

Security Requirements ◽

Security Risks ◽

Link Utilization

A practical approach to load balancing in a telecommunication network (TCN) is implementing Traffic Engineering (TE) technology principles to reduce link utilization and improve QoS level. In order to adapt TE solutions with network security requirements, this paper proposes a mathematical model for secure routing, which belongs to the class of flow-based optimization solutions. The model is based on the conditions of multi-flow routing implementation, flow conservation, and TCN link overload prevention. Due to this, the problem of secure routing is formulated in an optimization form. The model’s novelty is the modified conditions of load balancing in TCN. Along with the indicators of link capacity with the help of weighting coefficients, the network security (NS) indicators of TCN elements are also taken into account. The network security (NS) indicators in the TCN modeling process include information security risks of routers and communication links, losses from breach of confidentiality and integrity of information, probability of existing vulnerabilities exploitation, etc. The study confirmed the effectiveness of the proposed solution. On the test TCN topology, it is demonstrated that the use of a secure routing model allows to calculate the routes and provide such an order of load balancing, which compromises meeting the requirements of both QoS and NS. In the routing process, information security risk reduction in packet transmission by about 11.3% was accompanied by an increase (on average by 26%) in the upper bound of the network link utilization

Download Full-text

Book Reviews

Journal of Economic Literature ◽

10.1257/jel.52.4.1160.r10 ◽

2014 ◽

Vol 52 (4) ◽

pp. 1177-1178

Keyword(s):

Information Security ◽

Credit Card ◽

Personal Data ◽

Security And Privacy ◽

Management Tool ◽

Security Risks ◽

Economics Of Information ◽

Security Costs ◽

The Cost ◽

The University

Shane Greenstein of Northwestern University reviews “The Economics of Information Security and Privacy”, by Rainer Bohme. The Econlit abstract of this book begins: “Thirteen papers, revised and previously presented at the 11th Workshop on the Economics of Information Security held in Berlin in June 2012, explore the economics of information security and privacy, focusing on the management of information security, the economics of information security, the economics of privacy, and the economics of cybercrime. Papers discuss information security costs; whether to invest or not to invest--assessing the economic viability of a policy and security configuration management tool; ad-blocking games--monetizing online content under the threat of ad avoidance; software security economics--theory, in practice; an empirical study on information security behaviors and awareness; sectoral and regional interdependency of Japanese firms under the influence of information security risks; whether we can afford integrity by proof-of-work--scenarios inspired by the Bitcoin currency; online promiscuity--prophylactic patching and the spread of computer transmitted infections; the privacy economics of voluntary overdisclosure in web forms; choice architecture and smartphone privacy--there's a price for that; personal data disclosure in a simulated credit card application; measuring the cost of cybercrime; and an analysis of e-crime in crowd-sourced labor markets--Mechanical Turk versus Freelancer. Böhme is with the European Research Center for Information Systems at the University of Münster.”

Download Full-text

A Web based Information Security Risks Assessment Model

Journal of Internet Technology and Secured Transaction ◽

10.20533/jitst.2046.3723.2015.0050 ◽

2015 ◽

Vol 4 (3) ◽

pp. 396-404

Author(s):

B. K. Alese ◽

O. Oyebade ◽

O. Iyare ◽

Osuolale A. Festus ◽

A. F. Thompson

Keyword(s):

Information Security ◽

Assessment Model ◽

Security Risks ◽

Web Based ◽

Risks Assessment

Download Full-text

Information Security Risks Assessment Method Based on AHP and Fuzzy Sets

2nd International Conference on Advances in Engineering Sciences and Applied Mathematics (ICAESAM’2014) May 4-5, 2014 Istanbul (Turkey) ◽

10.15242/iie.e0514043 ◽

2014 ◽

Cited By ~ 1

Keyword(s):

Information Security ◽

Fuzzy Sets ◽

Assessment Method ◽

Security Risks ◽

Risks Assessment

Download Full-text

DISTANCE LEARNING AND INFORMATION SECURITY

RSUH/RGGU Bulletin. Series Information Science. Information Security. Mathematics ◽

10.28995/2686-679x-2021-1-51-65 ◽

2021 ◽

pp. 51-65

Author(s):

Andrei V. Gavrilenko ◽

Keyword(s):

Distance Education ◽

Distance Learning ◽

Information Security ◽

Learning System ◽

Learning Problems ◽

Security Assessment ◽

Critical Nodes ◽

Distance Learning System ◽

Principal Directions ◽

The University

The article considers an issue of information security of the distance education systems. It analyzes the functions and architecture of the typical distance education system. With considering the requirements of information security it also discusses the university information system for solving the distance learning problems. The author defines valuable assets and information resources and describes the existing security threats. The subjects of interaction in the distance learning mode are presented. There is a consideration of the principal directions of the university’s activity in the distance learning system, requiring constant monitoring of information security. A threat model is worked out and the main security vulnerabilities are highlighted. The analysis of the causes and consequences of information security violation in the distance learning system is carried out and most vulnerable and critical nodes were identified. The hardware and software requirements for the remote mode work are regarded. A recommended list of hardware and software tools that ensure compliance with safety requirements is presented. The major lines of protection for distance learning systems are highlighted. The article proves the necessity of conducting a regular security assessment as a means for monitoring an effectiveness of the protection system.

Download Full-text

Research on Network and Information Security Risks of County-level Fusion Media in Zhejiang Province

10.1145/3482632.3487472 ◽

2021 ◽

Author(s):

Minyan Ma

Keyword(s):

Information Security ◽

Zhejiang Province ◽

County Level ◽

Security Risks ◽

Level Fusion

Download Full-text

Knowledge Transfer in Information Security Capacity Building for Community-Based Organizations

International Journal of Knowledge Management ◽

10.4018/ijkm.2015100104 ◽

2015 ◽

Vol 11 (4) ◽

pp. 52-69 ◽

Cited By ~ 1

Author(s):

Janine L. Spears ◽

Tonia San Nicolas-Rocca

Keyword(s):

Service Learning ◽

Information Security ◽

Knowledge Transfer ◽

Initial Study ◽

Security Risk ◽

Security Risks ◽

Community Based ◽

Services Sector ◽

Community Based Organizations ◽

Study Results

Community-based organizations (CBOs) in the health and human services sector handle very sensitive client information, such as psychiatric, HIV testing, criminal justice, and financial records. With annual revenue often in the range of $1 to $10 million, these organizations typically lack the financial, labor, and technical resources to identify and manage information security risks within their environment. Therefore, information security risk assessments were conducted at CBOs as part of a university service learning course intended to ultimately improve security within participating CBOs. Knowledge transfer between trainees and trainers is essential in order for security improvements to be realized. Therefore, this paper constructs a theoretical model of knowledge transfer that is used as a lens through which to examine initial study results of the CBO interventions as part of an exploratory study.

Download Full-text