Enhancing Personal Information Security on Android with a New Synchronization Scheme

An information security culture is influenced by various factors, one being regulatory requirements. The United Kingdom (UK) has been regulated through the UK Data Protection Act since 1995, whereas South Africa (SA) only promulgated the Protection of Personal Information Act (PoPI) in 2013. Both laws stipulate requirements from an information security perspective with regard to the processing of personal information, however in the UK this has been regulated for a longer period. Consequently, it is to be expected that the information security culture for organisations in the UK will be significantly different from that of SA. This raises the question as to whether the same information security culture assessment (ISCA) instrument could be used in an organisation with offices in both jurisdictions, and whether it might be necessary to customise it according the particular country’s enforcement of information security and privacy-related conditions. This is reviewed, firstly from a theoretical perspective, and secondly a factorial invariance analysis was conducted in a multinational organisation with offices in both the UK and SA, using data from an ISCA questionnaire, to determine possible factorial invariances in terms of the ISCA.

Download Full-text

Social engineering as a threat to personal financial security

National Interests Priorities and Security ◽

10.24891/ni.17.1.150 ◽

2021 ◽

Vol 17 (1) ◽

pp. 150-166

Author(s):

Andrei L. LOMAKIN ◽

Evgenii Yu. KHRUSTALEV ◽

Gleb A. KOSTYURIN

Keyword(s):

Information Security ◽

Personal Information ◽

Public Awareness ◽

Social Engineering ◽

Training System ◽

Security Threats ◽

Security Threat ◽

Public And Private ◽

Security Issues ◽

The Government

Subject. As the socio-economic relationships are getting digitalized so quickly, the society faces more and more instances of cybercrime. To effectively prevent arising threats to personal information security, it is necessary to know key social engineering methods and security activities to mitigate consequences of emerging threats. Objectives. We herein analyze and detect arising information security threats associated with social engineering. We set forth basic guidelines for preventing threats and improving the personal security from social engineering approaches. Methods. The study relies upon methods of systems analysis, synthesis, analogy and generalization. Results. We determined the most frequent instances associated with social engineering, which cause personal information security threats and possible implications. The article outlines guidelines for improving the persona; security from social engineering approaches as an information security threat. Conclusions and Relevance. To make information security threats associated with social engineering less probable, there should be a comprehensive approach implying two strategies. First, the information security protection should be technologically improved, fitted with various data protection, antivirus, anti-fishing software. Second, people should be more aware of information security issues. Raising the public awareness, the government, heads of various departments, top executives of public and private organizations should set an integrated training system for people, civil servants, employees to proliferate the knowledge of information security basics.

Download Full-text

A framework to assist email users in the identification of phishing attacks

Information and Computer Security ◽

10.1108/ics-10-2014-0070 ◽

2015 ◽

Vol 23 (4) ◽

pp. 370-381 ◽

Cited By ~ 1

Author(s):

André Lötter ◽

Lynn Futcher

Keyword(s):

User Interface ◽

Focus Group ◽

Information Security ◽

Personal Information ◽

Future Research ◽

Security Level ◽

Literature Study ◽

Content Type ◽

Phishing Attacks ◽

Research Students

Purpose – The purpose of this paper is to propose a framework to address the problem that email users are not well-informed or assisted by their email clients in identifying possible phishing attacks, thereby putting their personal information at risk. This paper therefore addresses the human weakness (i.e. the user’s lack of knowledge of phishing attacks which causes them to fall victim to such attacks) as well as the software related issue of email clients not visually assisting and guiding the users through the user interface. Design/methodology/approach – A literature study was conducted in the main field of information security with a specific focus on understanding phishing attacks and a modelling technique was used to represent the proposed framework. This paper argues that the framework can be suitably implemented for email clients to raise awareness about phishing attacks. To validate the framework as a plausible mechanism, it was reviewed by a focus group within the School of Information and Communication Technology (ICT) at the Nelson Mandela Metropolitan University (NMMU). The focus group consisted of academics and research students in the field of information security. Findings – This paper argues that email clients should make use of feedback mechanisms to present security related aspects to their users, so as to make them aware of the characteristics pertaining to phishing attacks. To support this argument, it presents a framework to assist email users in the identification of phishing attacks. Research limitations/implications – Future research would yield interesting results if the proposed framework were implemented into an existing email client to determine the effect of the framework on the user’s level of awareness of phishing attacks. Furthermore, the list of characteristics could be expanded to include all phishing types (such as clone phishing, smishing, vishing and pharming). This would make the framework more dynamic in that it could then address all forms of phishing attacks. Practical implications – The proposed framework could enable email clients to provide assistance through the user interface. Visibly relaying the security level to the users of the email client, and providing short descriptions as to why a certain email is considered suspicious, could result in raising the awareness of the average email user with regard to phishing attacks. Originality/value – This research presents a framework that email clients can use to identify common forms of normal and spear phishing attacks. The proposed framework addresses the problem that the average Internet user lacks a baseline level of online security awareness. It argues that the email client is the ideal place to raise the awareness of users regarding phishing attacks.

Download Full-text

INFORMATION OVERLOAD AS A RISK FACTOR FOR PERSONAL INFORMATION SECURITY

4th SGEM International Multidisciplinary Scientific Conferences on SOCIAL SCIENCES and ARTS Proceedings4th, Science and Society ◽

10.5593/sgemsocial2017/33/s12.048 ◽

2017 ◽

Author(s):

A.A. Krivouhov

Keyword(s):

Risk Factor ◽

Information Security ◽

Information Overload ◽

Personal Information

Download Full-text

Research on Collaborative Governance Mechanism of Personal Information Security Chaos

2018 4th International Conference on Education & Training, Management and Humanities Science (ETMHS 2018) ◽

10.23977/etmhs.2018.29030 ◽

2018 ◽

Keyword(s):

Information Security ◽

Personal Information ◽

Collaborative Governance ◽

Governance Mechanism

Download Full-text

INFLUENCE OF THE COUNTRY ECONOMIC DEVELOPMENT ON THE DEPENDENCE OF THE USE OF PERSONAL INFORMATION SECURITY AND THE CONSEQUENCES OF CYBERCRIME

Vìsnik Sumsʹkogo deržavnogo unìversitetu ◽

10.21272/1817-9215.2020.1-22 ◽

2020 ◽

pp. 188-198

Author(s):

H. Yarovenko

Keyword(s):

Cluster Analysis ◽

Economic Development ◽

Information Security ◽

Personal Information ◽

Practical Importance ◽

Social Engineering ◽

The State ◽

Security Measures ◽

Personal Security ◽

The Impact

Over the past decade, there has been an increase in the volume of cybercrime in various spheres of life at the level of the state, economic agents, and individuals. Therefore, the issues of studying the processes of forming information security and identifying the impact on its effectiveness are becoming topical. The aim of this study is to prove the hypothesis that the behaviour of the population associated with the use of personal security measures and the formation of the corresponding consequences of incidents occurs under the influence of the level of economic development of the country. This was done using k-means cluster analysis via the Deductor Academic analytical platform and based on data from a survey conducted among respondents from EU countries. Analysis of the responses showed that there is a growing trend in the use of online banking and e-commerce services; there is an increase in the number of respondents who have become victims of cybercrimes, especially social engineering; the trend towards the use of reliable personal security equipment is declining. The results of the cluster analysis, for which data on the number of respondents who are victims of cybercrimes and the number of respondents using various personal security tools were used, made it possible to form 7 clusters of countries. Analysis of GDP per capita for the obtained clusters and visualization of the map of countries allowed us to confirm the hypothesis, but it was also determined that the dependence of the use of personal security measures and the consequences of cybercrimes is also influenced by the mental characteristics of countries formed due to the close territorial location of neighboring countries. The results obtained will be of practical importance for the development of the concept of information security and economic development of the state. They can be used to determine which sets of protection are appropriate for the income level of the population. Priority areas for further research are to determine the influence of other factors on the formation of the country's information security and the formation of a barycentric model of their measurements to ensure sustainable economic development of the state.

Download Full-text

A Framework for Information Security Management Based on Guiding Standards: A United States Perspective

10.28945/3188 ◽

2008 ◽

Author(s):

Janice Sipior ◽

Burke Ward

Keyword(s):

Information Security ◽

Personal Information ◽

Security Policies ◽

Global Competition ◽

Operational Environment ◽

Consumer Concerns ◽

Strategic Approach ◽

Process View ◽

Security Standards ◽

Audit Information

Despite government oversight, consumers continue to be concerned about the security of personal information used by corporations. Consumer concerns give rise to the necessity for corporations to manage information security. Navigating the multitude of existing security standards, including dedicated standards for information security and frameworks for controlling the implementation of information technology, presents a challenge to organizations. In response, we propose our ISM framework which considers global, national, organizational, and employee standards to guide ISM. We contend that a strategic approach to ISM will enable a focus on managing information as a key resource in global competition. This framework is intended to promote a cohesive approach which considers a process view of information within the context of the entire organizational operational environment. This framework can be used by international, national, and regional corporations to formulate, implement, enforce, and audit information security policies and practices.

Download Full-text

Research on Internet Information Security in the Big Data Era

E3S Web of Conferences ◽

10.1051/e3sconf/202021804008 ◽

2020 ◽

Vol 218 ◽

pp. 04008

Author(s):

Yang Shen

Keyword(s):

Big Data ◽

Information Security ◽

Data Transmission ◽

Work Experience ◽

Personal Information ◽

Great Influence ◽

Public Security ◽

Security Systems ◽

Internet Information ◽

Big Data Technology

In the era of big data, due to the great influence of big data itself, Internet information security has also become the focus of attention. In order to avoid disturbing people’s lives, this article summarizes the opportunities and challenges in the era of big data based on previous work experience. This article analyzes and studies five aspects including establishing complete laws and regulations, protecting personal information, applying big data technology to public security systems, doing a good job in data management and classification, and ensuring the security of data transmission. The author discusses specific measures for the maintenance of Internet information security in the era of big data from the above five aspects.

Download Full-text

Internet Fraud as a Threat to Personal Information Security

NBI Technologies ◽

10.15688/nbit.jvolsu.2019.2.4 ◽

2019 ◽

pp. 25-28

Author(s):

Marija Maslova ◽

Kristina Ryzhaja

Keyword(s):

Information Security ◽

Human Activity ◽

Personal Information ◽

The Internet ◽

Software Protection ◽

Online Fraud ◽

Internet Fraud ◽

Internet Users ◽

Internet Sales ◽

Almost All

The paper analyzes the statistics of implementing known information threats, considers new types of Internet fraud and develops recommendations for protecting against unauthorized actions of Internet scammers. Internet fraud has long gone beyond mailing and has become widespread. Fraudsters operate in almost all spheres of human activity, and with the advent of various means of communication their activities have acquired new trends. The most common methods of online fraud are the following: fake shops with Internet sales, phishing, fundraising for charity, dating sites, viral content. The paper shows that the considered methods of Internet fraud are connected not so much with the Internet as directly with the user. Internet users should not only be aware of possible types and schemes of fraud, but also take care of software protection methods such as antivirus and timely updating all applications, browsers and systems. Only being up to date, constantly learning and being interested in both new threats and methods of their protection users can protect themselves and their loved ones from losses.

Download Full-text