Architecture of Combined E-Learning Environment and Investigation of Secure Access and Privacy Protection

2019 ◽  
pp. 1347-1365
Author(s):  
Radi Petrov Romansky ◽  
Irina Stancheva Noninska
Keyword(s):  
Information Security ◽  
Learning Environment ◽  
Privacy Protection ◽  
Personal Information ◽  
Personal Data ◽  
Security And Privacy ◽  
Digital World ◽  
Secure Access ◽  
E Learning ◽  
Network Communications

The contemporary digital world based on network communications, globalization and information sharing outlines new important targets in the area of privacy and personal data protection which reflect to applied principles of secure access to proposed information structures. In this reason the aim of secure access to all resources of an e-learning environment is very important and adequate technological and organizational measures for authentication, authorization and protection of personal data must be applied. Strong security procedures should be proposed to protect user's profiles, designed after successful registration and all personal information collected by educational processes. The goal of this article is to present an idea to combine traditional e-learning technologies with new opportunities that give mobile applications, cloud services and social computing. These technologies can endanger data security since they make possible remote access to resources, sharing information between participants by network communications. In order to avoid data vulnerabilities users must be identified and authenticated before, i.e. to be allowed to access information resources otherwise integrity and confidentiality of e-learning system could be destroyed. In order to propose solution basic principles of information security and privacy protection in e-learning processes are discussed in this article. As a result, an organizational scheme of a system for information security and privacy is proposed. Based on these principles a graph formalization of access to the system resources is made and architecture for combined (heterogenic) e-learning architecture with secure access to the resources is designed. Analytical investigation based on designed Markov chain has been carried out and several statistical assessments delivered by Develve software are discussed.

Architecture of Combined e-Learning Environment and Investigation of Secure Access and Privacy Protection

2016 ◽  
Vol 7 (3) ◽  
pp. 89-106 ◽  
Author(s):  
Radi Romansky ◽  
Irina Noninska
Keyword(s):  
Information Security ◽  
Learning Environment ◽  
Privacy Protection ◽  
Personal Data ◽  
Cloud Services ◽  
Learning System ◽  
Security And Privacy ◽  
Secure Access ◽  
E Learning ◽  
Network Communications

The contemporary digital world based on network communications, globalization and information sharing outlines new important targets in the area of privacy and personal data protection which reflect to applied principles of secure access to proposed information structures. In this reason the aim of secure access to all resources of an e-learning environment is very important and adequate technological and organizational measures for authentication, authorization and protection of personal data must be applied. Strong security procedures should be proposed to protect user's profiles, designed after successful registration and all personal information collected by educational processes. The goal of this article is to present an idea to combine traditional e-learning technologies with new opportunities that give mobile applications, cloud services and social computing. These technologies can endanger data security since they make possible remote access to resources, sharing information between participants by network communications. In order to avoid data vulnerabilities users must be identified and authenticated before, i.e. to be allowed to access information resources otherwise integrity and confidentiality of e-learning system could be destroyed. In order to propose solution basic principles of information security and privacy protection in e-learning processes are discussed in this article. As a result, an organizational scheme of a system for information security and privacy is proposed. Based on these principles a graph formalization of access to the system resources is made and architecture for combined (heterogenic) e-learning architecture with secure access to the resources is designed. Analytical investigation based on designed Markov chain has been carried out and several statistical assessments delivered by Develve software are discussed.

Principles of Secure Access and Privacy in Combined E-Learning Environment

2018 ◽  
pp. 152-178 ◽  
Author(s):  
Radi Petrov Romansky ◽  
Irina Stancheva Noninska
Keyword(s):  
Learning Environment ◽  
Data Protection ◽  
Personal Information ◽  
Distributed Processing ◽  
Personal Data ◽  
Cloud Services ◽  
Remote Access ◽  
Personal Data Protection ◽  
E Learning ◽  
Network Technologies

Globalization in the contemporary information society outlines new important challenges in privacy and personal data protection that apply to user security in cyberspace. This is also the case e-learning environments, which use new network technologies, such as remote access, distributed processing, information sharing, cloud services, social computing, etc. Strong security procedures based on authentication, authorization, and data protection should be proposed to protect system resources, user profiles, personal information, educational materials, and other specific information. The chapter presents the opportunities and challenges of some digital technologies that could increase the effectiveness of e-learning processes by developing a combined e-learning environment. A functional architecture with two sub-systems (front office and back office) and different information resources (public, internal, external) is discussed. Investigation by using formalization and modelling is made and assessments are presented.

scholarly journals Factorial invariance of an information security culture assessment instrument for multinational organisations with operations across data protection jurisdictions

2015 ◽  
Vol 4 (4) ◽  
pp. 47-58 ◽  
Author(s):  
Nico Martins ◽  
Adéle da Veiga
Keyword(s):  
Information Security ◽  
Data Protection ◽  
Personal Information ◽  
Theoretical Perspective ◽  
Factorial Invariance ◽  
Assessment Instrument ◽  
Security And Privacy ◽  
Security Culture ◽  
The Uk ◽  
Information Security Culture

An information security culture is influenced by various factors, one being regulatory requirements. The United Kingdom (UK) has been regulated through the UK Data Protection Act since 1995, whereas South Africa (SA) only promulgated the Protection of Personal Information Act (PoPI) in 2013. Both laws stipulate requirements from an information security perspective with regard to the processing of personal information, however in the UK this has been regulated for a longer period. Consequently, it is to be expected that the information security culture for organisations in the UK will be significantly different from that of SA. This raises the question as to whether the same information security culture assessment (ISCA) instrument could be used in an organisation with offices in both jurisdictions, and whether it might be necessary to customise it according the particular country’s enforcement of information security and privacy-related conditions. This is reviewed, firstly from a theoretical perspective, and secondly a factorial invariance analysis was conducted in a multinational organisation with offices in both the UK and SA, using data from an ISCA questionnaire, to determine possible factorial invariances in terms of the ISCA.

A Survey and a Case-Study Regarding Social Media Security and Privacy on Greek Future IT Professionals

2019 ◽  
Vol 10 (1) ◽  
pp. 22-37 ◽  
Author(s):  
Venetis Kanakaris ◽  
Georgios Lampropoulos ◽  
Kerstin Siakas
Keyword(s):  
Social Media ◽  
Negative Impact ◽  
Personal Information ◽  
Personal Data ◽  
Security And Privacy ◽  
It Professionals ◽  
Online Questionnaire ◽  
Social Media Platforms ◽  
Use Of Social Media

Nowadays, social media and social networks are increasingly used in business as they have drastically changed the way the community works, communicates, collaborates, socialises, creates content and shares knowledge and ideas. However, in particular, IT professionals and practitioners need to be aware of online security and privacy issues and the potential negative impact that they may cause on different aspects of business, such as online breaches or information theft. The use of social media inevitably leads to disclosure of personal information, with the use of open-source intelligence (OSINT) and other similar techniques. Hence, the aim of this article is twofold, namely first to show results of a survey towards future Greek IT practitioners regarding awareness and viewpoints of social media users concerning security and privacy on social media. More specifically the study was based on responses and viewpoints of 178 Greek electrical engineering and IT students to an online questionnaire. Secondly, the aim is also to show how easily a potential malicious user can anonymously track and retrieve sensitive personal information in an automated and undetectable way from popular social media platforms by using publicly available information, resources, and tools. The results of the survey show that most of the respondents are aware of the privacy settings of the social media platforms they use. However, they consider that they should be more careful concerning personal data and whom they add as friends or followers and they do not feel comfortable with the fact that a stranger might be able to access their personal information through their publications on social media platforms.The case study indicates that it is possible for malicious users to acquire sensitive personal data (e.g. user's location via tweets and instas from smartphones). In addition, the ability to map activity could allow malicious users to track the activities of unsuspected users and predict their future locations.

scholarly journals Legal Recognition of the Digital Trade in Personal Data

2019 ◽  
Vol 12 (2) ◽  
pp. 87
Author(s):  
Itzayana Tlacuilo Fuentes
Keyword(s):  
Personal Information ◽  
Personal Data ◽  
Digital Economy ◽  
Legal Recognition ◽  
Internet Technologies ◽  
Legal Standards ◽  
Technology Industry ◽  
Digital World ◽  
Data Flows

In the digital world, millions of consumers transfer their personal data to access and use new Internet technologies every day. The technology industry is making immense profits from this data. It is a social and economic fact that peoples’ personal data is used as an asset in the digital economy. Should consumers be compensated for the value of their personal data? This article argues that it is time to legally recognize the trade in personal data. As a response to increasing crossborder flows, governments protect personal data with privacy frameworks. However, it remains the decision of the consumer to give consent for the transfer of their data. This article proposes that an international framework that recognizes the trade of personal data could generate proper protection for the digital trade, while incentivizing free crossborder data flows and allowing the market to determine the value of the personal data. Moreover, consumers could share in the profits made from their personal information and will personally control their information and privacy. The use of personal data as an asset is a reality that can no longer be avoided. It is necessary to create legal standards to make trade of personal data more transparent, efficient and fair. This article aims to explore the idea of trading in one’s personal data is not a surrealistic scenario, rather, in practice this trade already exists.

scholarly journals Deterministic Model Investigation of Processes in a Heterogeneous e-Learning Environment

2022 ◽  
Vol 13 (1) ◽  
pp. 0-0
Keyword(s):  
Deterministic Model ◽  
Personal Data ◽  
Model Investigation ◽  
Cloud Data ◽  
Use Of Resources ◽  
Secure Access ◽  
E Learning ◽  
Basic Parameters ◽  
General Architecture ◽  
Data Centres

The investigation of characteristics of access and use of resources in different distributed environments in the network space is aimed at determining optimal levels for the basic parameters of the supported processes. On the other hand, with the development of the possibilities of the digital space and the significant change in the level of informatization of the society, it is necessary to take the necessary measures to ensure secure access to information resources and in particular to the profiles of personal data. In this respect, the purpose of the article is to propose an organization of heterogeneous environment with resources stored in different places (own memories and cloud data centres). A general architecture and functionality of the main sub-systems are presented. Deterministic model investigation by using Petri Net apparatus based on preliminary formalization is provided to analyse the effectiveness of the processes for regulated and secure access to resources.

Pseudonym Technology for E-Services

2011 ◽  
pp. 141-171 ◽  
Author(s):  
Ronggong Song ◽  
Larry Korba ◽  
George Yee
Keyword(s):  
Data Mining ◽  
Data Collection ◽  
System Architecture ◽  
Privacy Protection ◽  
Personal Information ◽  
Personal Data ◽  
Service Systems

Pseudonym technology is attracting more and more attention and, together with privacy violations, is becoming a major issue in various e-services. Current e-service systems make personal data collection very easy and efficient through integration, interconnection, and data mining technologies since they use the user’s real identity. Pseudonym technology with unlinkability, anonymity, and accountability can give the user the ability to control the collection, retention, and distribution of his or her personal information. This chapter explores the challenges, issues, and solutions associated with pseudonym technology for privacy protection in e-services. To have a better understanding of how the pseudonym technology provides privacy protection in e-services, we describe a general pseudonym system architecture, discuss its relationships with other privacy technologies, and summarize its requirements. Based on the requirements, we review, analyze, and compare a number of existing pseudonym technologies. We then give an example of a pseudonym practice — e-wallet for e-services and discuss current issues.

Sign in / Sign up

Export Citation Format

Share Document