Open Access. Powered by Scholars. Published by Universities.®
- Discipline
- File Type
Articles 1 - 11 of 11
Full-Text Articles in Entire DC Network
Assessing Relative Weights Of Authentication Components: An Expert Panel Approach, Herbert J. Mattord, Yair Levy, Steven Furnell
Assessing Relative Weights Of Authentication Components: An Expert Panel Approach, Herbert J. Mattord, Yair Levy, Steven Furnell
Herbert J. Mattord
Organizations rely on password-based authentication methods to control access to many Web-based systems. In a recent study, we developed a benchmarking instrument to assess the authentication methods used in these contexts. Our instrument developed included extensive literature foundation and an expert panel assessment. This paper reports on the development of the instrument and the expert panel assessment. The initial draft of the instrument was derived from literature to assess 1) password strength requirements, 2) password usage methods, and 3) password reset requirements. Following, the criteria within the index were evaluated by an expert panel and the same panel provided opinions …
Making Users Mindful Of It Security, Michael Whitman, Herbert Mattord
Making Users Mindful Of It Security, Michael Whitman, Herbert Mattord
Herbert J. Mattord
The article discusses ways to make users mindful of Information Technology (IT) security. Security awareness programs ensure that employees understand the importance of security and the adverse consequences of its failure; they also remind users of the procedures to be followed. Awareness training is vital to keeping the idea of IT security uppermost in employees' minds. While federal agencies in the U.S. are required to train employees in computer security awareness, such training is voluntary in the private sector. It is, however, no less vital. Every company should integrate a security awareness program into the IT training program.
Infosec Policy - The Basis For Effective Security Programs, Herbert Mattord, Michael Whitman
Infosec Policy - The Basis For Effective Security Programs, Herbert Mattord, Michael Whitman
Herbert J. Mattord
The success of any information security program lies in policy development. The lack of success in any particular program can often be attributed to this unmet need to build the foundation for success. In 1989, the National Institute of Standards and Technology addressed this point in Special Publication SP 500-169: Executive Guide to the Protection of Information Resources (1989): The success of an information resources protection program depends on the policy generated, and on the attitude of management toward securing information on automated systems. You, the policy maker, set the tone and the emphasis on how important a role information …
Information Security Governance For The Non-Security Business Executive, Michael E. Whitman, Herbert J. Mattord
Information Security Governance For The Non-Security Business Executive, Michael E. Whitman, Herbert J. Mattord
Herbert J. Mattord
Information security is a critical aspect of information systems usage in current organizations. Often relegated to the IT staff, it is in fact the responsibility of senior management to assure the secure use and operation of information assets. Most managers recognize that governance is the responsibility of executive management. The primary objective of governance can be achieved when the members of an organization know what to do, how it should be done, as well as who should do it. The focus on governance has expanded to include information systems and information security. This article offers value to the executive by …
It Project Managers' Perceptions And Use Of Virtual Team Technologies, Catherine Beise, Fred Niederman, Herbert Mattord
It Project Managers' Perceptions And Use Of Virtual Team Technologies, Catherine Beise, Fred Niederman, Herbert Mattord
Herbert J. Mattord
This paper presents the results of a case study pertaining to the use of information and communication media to support a range of project management tasks. A variety of electronic communication tools have evolved to support collaborative work and virtual teams. Few of these tools have focused specifically on the needs of project managers. In an effort to learn how practicing IT project managers employ these tools, data were collected at a North American Fortune 500 industrial company via interviews with IT project managers regarding their use and perceptions of electronic media within the context of their work on project …
Factors Of Password-Based Authentication, Herbert J. Mattord, Yair Levy, Steven Furnell
Factors Of Password-Based Authentication, Herbert J. Mattord, Yair Levy, Steven Furnell
Herbert J. Mattord
Organizations continue to rely on password-based authentication methods to control access to many Web-based systems. This research study developed a benchmarking instrument intended to assess authentication methods used in Web-based information systems (IS. This approach explored how authentication practices can be measured in three component areas: 1) password strength requirements, 2) password usage methods, and 3) password reset requirements. This report explores the criteria that are required to define these component areas.
The Impact Of Operating System Obsolescence On The Life Cycle Of Distributed Teams, Herbert J. Mattord, Tridib Bandyopadhyay
The Impact Of Operating System Obsolescence On The Life Cycle Of Distributed Teams, Herbert J. Mattord, Tridib Bandyopadhyay
Herbert J. Mattord
Operating System obsolescence is widely considered an important factor when architectural choices are made during the planning phase of systems development and maintenance. In this work, we seek to understand the importance that planners actually ascribe to this attribute in practice, and ask probing questions to the managers, developers, and analysts of systems in industry in the form of a survey. Initial results suggest that obsolescence is neither perceived as a critical factor during planning for systems development, nor is it viewed as a major contributor to the total cost of operation of client/server systems. However, the survey does identify …
An Identification And Evaluation Of Information Security And Assurance Research Outlets, M. Whitman, H. Zafar, Herbert Mattord
An Identification And Evaluation Of Information Security And Assurance Research Outlets, M. Whitman, H. Zafar, Herbert Mattord
Herbert J. Mattord
No abstract provided.
Evaluating Authentication Components: An Expert Panel Approach, Herbert Mattord, Y. Levy, S. Furnell
Evaluating Authentication Components: An Expert Panel Approach, Herbert Mattord, Y. Levy, S. Furnell
Herbert J. Mattord
No abstract provided.
Threats To Information Security Revisited, Herbert Mattord, M. Whitman
Threats To Information Security Revisited, Herbert Mattord, M. Whitman
Herbert J. Mattord
No abstract provided.
Assurance For The Internet, Herbert Mattord, M. Whitman
Assurance For The Internet, Herbert Mattord, M. Whitman
Herbert J. Mattord
No abstract provided.