CITS

Organizations know that investing in security measures is an important requirement for doing business. But how much should they invest and how should those investments be directed? Many organizations have turned to a risk management approach to identify the largest threats and the control measures that could help mitigate those threats. This research presents the Cost of IT Security (CITS) Framework to support analysis of the costs and benefits of those control measures. This analysis can be performed by using either quantification methods or by using a qualitative approach. Based on a study of five distinct security areas–Identity Management, Network Access Control, Intrusion Detection Systems, Business Continuity Management and Data Loss Prevention–nine cost factors are identified for IT security, and for only five of those nine a quantitative approach is feasible for the cost factor. This study finds that even though quantification methods are useful, organizations that wish to use those should do this together with more qualitative approaches in the decision-making process for security measures.

Download Full-text

What's it Worth? Improving Surface Water Quality

Water Science & Technology ◽

10.2166/wst.1999.0515 ◽

1999 ◽

Vol 40 (10) ◽

pp. 153-159 ◽

Cited By ~ 1

Author(s):

D. H. Newsome ◽

C. D. Stephen

Keyword(s):

Water Quality ◽

Surface Water ◽

Cost Benefit Analysis ◽

Cost Benefit ◽

Surface Water Quality ◽

Control Measures ◽

Benefit Analysis ◽

The Cost

Many countries are investing in measures to improve surface water quality, but the investment programmes for so doing are increasingly becoming subject to cost-benefit analysis. Whilst the cost of control measures can usually be determined for individual improvement schemes, there are currently no established procedures for valuing the benefits attributable to improved surface water quality. The paper describes a methodology that has been derived that now makes this possible.

Download Full-text

A security study in Portuguese Public Hospitals - GDPR perspective (Preprint)

10.2196/preprints.17896 ◽

2020 ◽

Author(s):

Cátia Santos-Pereira

Keyword(s):

Information Systems ◽

Identity Management ◽

Personal Data ◽

Public Hospitals ◽

Hospital Environment ◽

Security Measures ◽

Eu Member States ◽

Security Issues ◽

Management Processes ◽

Authentication Security

BACKGROUND GDPR was scheduled to be formally adopted in 2016 with EU member states being given two years to implement it (May 2018). Given the sensitive nature of the personal data that healthcare organization process on a 24/7 basis, it is critical that the protection of that data in a hospital environment is given the high priority that data protection legislation (GDPR) requires. OBJECTIVE This study addresses the state of Public Portuguese hospitals regarding GDPR compliance in the moment of GDPR preparation period (2016-2018) before the enforcement in 25 May 2018, and what activities have started since then. The study focuses in three GDPR articles namely 5, 25 and 32, concerning authentication security, identity management processes and audit trail themes. METHODS The study was conducted between 2017 and 2019 in five Portuguese Public Hospitals (each different in complexity). In each hospital, six categories of information systems critical to health institutions were included in the study, trying to cover the main health information systems available and common to hospitals (ADT, EPR, PMS, RIS, LIS and DSS). It was conducted interviews in two phases (before and after GDPR enforcement) with the objective to identify the maturity of information systems of each hospital regarding authentication security, identity management processes and traceability and efforts in progress to avoid security issues. RESULTS A total of 5 hospitals were included in this study and the results of this study highlight the hospitals privacy maturity, in general, the hospitals studied where very far from complying with the security measures selected (before May 2018). Session account lock and password history policy were the poorest issues, and, on the other hand, store encrypted passwords was the best issue. With the enforcement of GDPR these hospitals started a set of initiatives to fill this gap, this is made specifically for means of making the whole process as transparent and trustworthy as possible and trying to avoid the huge fines. CONCLUSIONS We are still very far from having GDPR compliant systems and Institutions efforts are being done. The first step to align an organization with GDPR should be an initial audit of all system. This work collaborates with the initial security audit of the hospitals that belong to this study.

Download Full-text

A Lightweight Blockchain-Based IoT Identity Management Approach

Future Internet ◽

10.3390/fi13020024 ◽

2021 ◽

Vol 13 (2) ◽

pp. 24

Author(s):

Mohammed Amine Bouras ◽

Qinghua Lu ◽

Sahraoui Dhelim ◽

Huansheng Ning

Keyword(s):

Identity Management ◽

Single Point ◽

Data Access ◽

Emerging Technology ◽

Management Approach ◽

Proof Of Concept ◽

Data Access Control ◽

And Storage ◽

Privacy Issues ◽

Centralized System

Identity management is a fundamental feature of Internet of Things (IoT) ecosystem, particularly for IoT data access control. However, most of the actual works adopt centralized approaches, which could lead to a single point of failure and privacy issues that are tied to the use of a trusted third parties. A consortium blockchain is an emerging technology that provides a neutral and trustable computation and storage platform that is suitable for building identity management solutions for IoT. This paper proposes a lightweight architecture and the associated protocols for consortium blockchain-based identity management to address privacy, security, and scalability issues in a centralized system for IoT. Besides, we implement a proof-of-concept prototype and evaluate our approach. We evaluate our work by measuring the latency and throughput of the transactions while using different query actions and payload sizes, and we compared it to other similar works. The results show that the approach is suitable for business adoption.

Download Full-text

503. The Misappropriation of COVID-19 Related TV Ad Expenditures

Open Forum Infectious Diseases ◽

10.1093/ofid/ofaa439.696 ◽

2020 ◽

Vol 7 (Supplement_1) ◽

pp. S317-S317

Author(s):

Kartavya J Vyas

Keyword(s):

Cost Effectiveness ◽

Performance Metrics ◽

Control Measures ◽

Mortality Data ◽

Preventive Interventions ◽

Social Distancing ◽

Epidemic Curve ◽

Incidence And Mortality ◽

The Cost ◽

The U.S

Abstract Background With nearly three-fourths of the U.S. population isolated in their homes between early March and the end of May, almost all of whom regularly watch television (TV), it was no surprise that companies began to purchase airtime on major television networks to advertise (ad) their brands and showcase their empathy with the populace. But how would the coronavirus disease 2019 (COVID-19) epidemic curve have changed had these same dollars been allocated to proven preventive interventions? Methods Performance and activity metrics on all COVID-19 related TV ads that have aired in the U.S. between February 26th and June 7th, 2020, were provided by iSpot.tv, Inc., including expenditures. COVID-19 incidence and mortality data were collected from the Centers for Disease Control and Prevention (CDC). Descriptive statistics were performed to calculate total TV ad expenditures and other performance metrics across industry categories. Leveraging a previously published stochastic agent-based model that was used to assess the cost-effectiveness of non-pharmaceutical interventions to control COVID-19, the number of cases that would have been prevented had these same dollars been used for preventive interventions was calculated using cost-effectiveness ratios (CERs), the cost divided by cases prevented. Results A total of 1,513 companies purchased TV airtime during the study period, totaling approximately 1.1 million airings, 215.5 billion impressions, and $2.7 billion in expenditures; most of the expenditures were spent by the restaurant (15.9%), electronics and communications (15.4%), and vehicle (13.7%) industries. The CERs for PPE and social distancing measures were $13,856 and $29,552, respectively; therefore, had all of these TV ad dollars instead been allocated to PPE or social distancing measures, approximately 194,908 and 91,386 cases of COVID-19 may have been prevented by the end of the study period, respectively. Figure 2. COVID-19 cases prevented had TV ad expenditures been reallocated for interventions. Conclusion Americans were inundated with COVID-19 related TV ads during the early months of the pandemic and companies are now showing some signs to relent. In times of disaster, however, it is paramount that the private sector go beyond showcasing their empathy and truly become socially responsible by allocating their funds to proven prevention and control measures. Disclosures All Authors: No reported disclosures

Download Full-text

Automation possibilities in a low rotation warehouse of a Belgian manufacturing plant. A case study

MATEC Web of Conferences ◽

10.1051/matecconf/201929002006 ◽

2019 ◽

Vol 290 ◽

pp. 02006

Author(s):

Anca Mocan ◽

Anca Draghici

Keyword(s):

Management Team ◽

Management Teams ◽

Manufacturing Plant ◽

Health Statistics ◽

Doing Business ◽

Investment Cost ◽

Total Investment ◽

The Cost ◽

Best Fit

Lack of appropriate warehouse ergonomics is one of the leading causes of worker injuries in industry environments. As management teams are trying to reduce the cost of doing business, they look to worker’s health statistics and realize they must improve their way of operating. The paper presents a warehouse analysis done at the request of the management team of a Belgian manufacturing plant. The factory’s warehouse was audited with focus on Kanban bin weight, storage rack height and rack width to assess the ergonomic strain it causes on workers. The paper then presents possible automation options in order to find the best fit to reduce ergonomic impact, while also optimizing the total investment cost.

Download Full-text

A New Design of Sydney’s Frontport Check-in System

Sustainability ◽

10.3390/su13073850 ◽

2021 ◽

Vol 13 (7) ◽

pp. 3850

Author(s):

Ting Liu ◽

Gabriel Lodewijks

Keyword(s):

Swot Analysis ◽

Control Measures ◽

Key Factors ◽

Scheme Design ◽

Different Types ◽

Baggage Handling ◽

Loading And Unloading ◽

The Cost ◽

Main Engine ◽

Process Method

This paper proposed a scheme design for Sydney’s frontport check-in system, which completes check-in and baggage drop-off at Sydney’s Circular Quay, and transports the baggage to Sydney Kingsford Smith Airport by waterway, and provided a strengths, weaknesses, opportunities and threats (SWOT) analysis of Sydney’s frontport check-in system. Using the process method of quality management, the frontport check-in process was divided into three sub-processes: baggage consignment, baggage packing and transportation, and airport baggage handling. The eight key elements of each sub-process such as input, output, resources, and methods, etc. were discussed, the key factors influencing the cost of baggage transportation were analyzed, and the cost control measures such as adopting economic speed, reducing fuel consumption of the main engine, improving the ship loading rate, and raising loading and unloading efficiency were proposed. At the same time, two different types of baggage transportation ships and other parameters that affect the cost such as the number of berths, ships, lifting machineries, and the yard area were analyzed and calculated through calculation cases. This scheme is a beneficial addition to the existing in-town check-in system.

Download Full-text

Preliminary Estimates of Costs of Foodborne Disease in the United States

Journal of Food Protection ◽

10.4315/0362-028x-52.8.595 ◽

1989 ◽

Vol 52 (8) ◽

pp. 595-601 ◽

Cited By ~ 139

Author(s):

EWEN C. D. TODD

Keyword(s):

United States ◽

Food Industry ◽

The United States ◽

Control Measures ◽

Effective Control ◽

Foodborne Diseases ◽

Hemorrhagic Colitis ◽

E Coli ◽

The Cost ◽

Total Impact

Although the full economic impact of foodborne diseases has yet to be measured, preliminary studies show that the cost of illness, death, and business lost is high indeed. This impact is probably greatest in developing countries, but few facts are known. For the United States, preliminary estimates are 12.6 million cases costing $8.4 billion. These may seem excessive but other authors have postulated even higher case and dollar figures. Microbiological diseases (bacterial and viral) represent 84% of the United States' costs, with salmonellosis and staphylococcal intoxication being the most economically important diseases (annually $4.0 billion and $1.5 billion, respectively). Other costly types of illnesses are toxoplasmosis ($445 million), listeriosis ($313 million), campylobacteriosis ($156 million), trichinosis ($144 million), Clostridium perfringens enteritis ($123 million), and E. coli infections including hemorrhagic colitis ($223 million). Botulism has a high cost per case ($322,200), but its total impact is only $87 million because relatively few cases occur (270). This is because the food industry has been able to introduce effective control measures. Salmonellosis, however, is much more widespread (2.9 million cases) and affects all sectors of the food industry.

Download Full-text

Evaluating Counterterrorism Spending

The Journal of Economic Perspectives ◽

10.1257/jep.28.3.237 ◽

2014 ◽

Vol 28 (3) ◽

pp. 237-248 ◽

Cited By ~ 19

Author(s):

John Mueller ◽

Mark G. Stewart

Keyword(s):

Cost Benefit ◽

September 11 ◽

Terrorist Attacks ◽

Security Measures ◽

Successful Attack ◽

Security Measure ◽

Reduce Risk ◽

The Cost

In this article, we present a simple back-of-the-envelope approach for evaluating whether counterterrorism security measures reduce risk sufficiently to justify their costs. The approach uses only four variables: the consequences of a successful attack, the likelihood of a successful attack, the degree to which the security measure reduces risk, and the cost of the security measure. After measuring the cost of a counterterrorism measure, we explore a range of outcomes for the costs of terrorist attacks and a range of possible estimates for how much risk might be reduced by the measure. Then working from this mix of information and assumptions, we can calculate how many terrorist attacks (and of what size) would need to be averted to justify the cost of the counterterrorism measure in narrow cost–benefit terms. To illustrate this approach, we first apply it to the overall increases in domestic counterterrorism expenditures that have taken place since the terrorist attacks of September 11, 2001, and alternatively we apply it to just the FBI's counterterrorism efforts. We then evaluate evidence on the number and size of terrorist attacks that have actually been averted or might have been averted since 9/11.

Download Full-text

How to Control the Microfluidic Flow and Separate the Magnetic and Non-Magnetic Particles in the Runner of a Disc

Micromachines ◽

10.3390/mi12111335 ◽

2021 ◽

Vol 12 (11) ◽

pp. 1335

Author(s):

Yao-Tsung Lin ◽

Chien-Sheng Huang ◽

Shi-Chang Tseng

Keyword(s):

Magnetic Particles ◽

Reaction Chamber ◽

Pattern Design ◽

Safety Testing ◽

Detection Systems ◽

Flow Mixing ◽

Operation Process ◽

Microfluidic Flow ◽

Sample Chamber ◽

The Cost

Biochips play an important role in both medical and food industry safety testing. Moreover, magnetic activated cell sorting is a well-established technology for biochip development. However, biochips need to be manufactured by precision instruments, resulting in the high cost of biochips. Therefore, this study used magnetic-activation and mechanics theories to create a novel disc that could manipulate the microfluidic flow, mixing, reaction, and separation on the runner of the disc. The goal of the research was to apply in the field of biomedical detection systems to reduce the cost of biochips and simplify the operation process. The simulation and experimental investigation showed that the pattern of the reaction chamber was stomach-shaped and the reservoir chamber was rectangular-shaped on the disc. The microfluid could be controlled to flow to the reaction chamber from the buffer and sample chamber when the disc spun at 175~200 rpm within three minutes. This was defined as the first setting mode. The microfluid could then be controlled to flow to the reservoir chamber from the reaction chamber when the disc spun at 225 rpm within five to ten minutes. This was defined as the second setting mode. This verified that the pattern design of the disc was optimized for control of the microfluid flow, mixing, reaction, and separation in the runner of the disc by different setting modes.

Download Full-text

Low-cost air traffic as a determinant of tourism development

Ekonomski izazovi ◽

10.5937/ekoizazov2119043b ◽

2021 ◽

Vol 10 (19) ◽

pp. 43-57

Author(s):

Filip Bugarčić ◽

Marijana Bugarčić

Keyword(s):

Information Technologies ◽

Low Cost ◽

Air Traffic ◽

Air Transport ◽

Passenger Transport ◽

Economic Activities ◽

Doing Business ◽

Global Trend ◽

The Cost ◽

Further Development

Air transport as an organized form of service provision, especially in passenger transport, can be important for increasing the number of foreign tourists. Globalization and the development of information technologies have contributed to the development of the business model of airlines, which has enabled a significant reduction in the cost of air travel and the accelerated development of this industry. Therefore, the emphasis is placed on the global trend of development of low-cost airlines, their way of doing business and the effects they have on the development of tourism. The increase in the number of low-budget airlines has multiple effects on the development of international tourism and passenger transport due to cheaper transport, which is made possible by improving the competitiveness of air transport after its deregulation. In addition, lower prices and a better logistical position can contribute to an increase in the number of foreign tourists and a higher income for this industry, as well as other related economic activities. The aim of this paper is to examine through theoretical and empirical insight whether there is an impact of low-cost airlines on the volume of air traffic and the intensity of passenger transport, with an emphasis on existing literature, as well as empirical confirmation on the example of Serbia. The conducted research has important implications, since in pandemic conditions, further development of low-budget airlines is expected to contribute to the recovery of air traffic and tourism.

Download Full-text