Deciding between information security and usability : Developing value based objectives

Detalhes bibliográficos
Autor(a) principal: Dhillon, Gurpreet
Data de Publicação: 2016
Outros Autores: Oliveira, Tiago, Susarapu, Santa, Caldeira, Mário
Tipo de documento: Artigo
Idioma: eng
Título da fonte: Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
Texto Completo: http://hdl.handle.net/10400.5/24708
Resumo: Deciding between security and usability of systems remains an important topic among managers and academics. One of the fundamental problems is to balance the conflicting requirements of security and usability. We argue that definition of objectives for security and usability allows for deciding about the right balance between security and usability. To this effect we propose two instruments for assessing security and usability of systems, and develop them in three phases. In Phase 1 we identified 16 clusters of means and 8 clusters of fundamental objectives using the value-focused thinking approach and interviews with 35 experts. Based on phase 1, in the second phase we collected a sample of 201 users to purify, and ensure reliability and unidimensionality of the two instruments. In the third phase, based on a sample of 418 users we confirmed and validated the two instruments found in Phase 2. This resulted in 14 means objectives organized into four categories (minimize system interruptions and licensing restrictions, maximize information retrieval, maximize system aesthetics, and maximize data quality), and 10 fundamental objectives grouped into four categories (maximize standardization and integration, maximize ease of use, enhance system related communication, and maximize system capability). The objectives offer a useful basis for assessing the extent to which security and usability has been achieved in systems. The objectives also provide a decision basis for balancing security and usability.
id RCAP_6f325cc9b5c8587f2d279cd07020e458
oai_identifier_str oai:repositorio.ul.pt:10400.5/24708
network_acronym_str RCAP
network_name_str Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
repository_id_str 7160
spelling Deciding between information security and usability : Developing value based objectivesSecurity ValuesUsability ValuesValue Focused-ThinkingQualitative MethodsInstrument DevelopmentQuantitative MethodsDeciding between security and usability of systems remains an important topic among managers and academics. One of the fundamental problems is to balance the conflicting requirements of security and usability. We argue that definition of objectives for security and usability allows for deciding about the right balance between security and usability. To this effect we propose two instruments for assessing security and usability of systems, and develop them in three phases. In Phase 1 we identified 16 clusters of means and 8 clusters of fundamental objectives using the value-focused thinking approach and interviews with 35 experts. Based on phase 1, in the second phase we collected a sample of 201 users to purify, and ensure reliability and unidimensionality of the two instruments. In the third phase, based on a sample of 418 users we confirmed and validated the two instruments found in Phase 2. This resulted in 14 means objectives organized into four categories (minimize system interruptions and licensing restrictions, maximize information retrieval, maximize system aesthetics, and maximize data quality), and 10 fundamental objectives grouped into four categories (maximize standardization and integration, maximize ease of use, enhance system related communication, and maximize system capability). The objectives offer a useful basis for assessing the extent to which security and usability has been achieved in systems. The objectives also provide a decision basis for balancing security and usability.ElsevierRepositório da Universidade de LisboaDhillon, GurpreetOliveira, TiagoSusarapu, SantaCaldeira, Mário2022-06-28T17:14:18Z20162016-01-01T00:00:00Zinfo:eu-repo/semantics/publishedVersioninfo:eu-repo/semantics/articleapplication/pdfhttp://hdl.handle.net/10400.5/24708engDhillon, Gurpreet … [et al.]. (2016). "Deciding between information security and usability: Developing value based objectives”. Computers in Human Behavior, Vol. 61 : pp. 656-666.doi.org/10.1016/j.chb.2016.03.068info:eu-repo/semantics/openAccessreponame:Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)instname:Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informaçãoinstacron:RCAAP2024-11-20T19:30:46Zoai:repositorio.ul.pt:10400.5/24708Portal AgregadorONGhttps://www.rcaap.pt/oai/openairemluisa.alvim@gmail.comopendoar:71602024-11-20T19:30:46Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) - Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informaçãofalse
dc.title.none.fl_str_mv Deciding between information security and usability : Developing value based objectives
title Deciding between information security and usability : Developing value based objectives
spellingShingle Deciding between information security and usability : Developing value based objectives
Dhillon, Gurpreet
Security Values
Usability Values
Value Focused-Thinking
Qualitative Methods
Instrument Development
Quantitative Methods
title_short Deciding between information security and usability : Developing value based objectives
title_full Deciding between information security and usability : Developing value based objectives
title_fullStr Deciding between information security and usability : Developing value based objectives
title_full_unstemmed Deciding between information security and usability : Developing value based objectives
title_sort Deciding between information security and usability : Developing value based objectives
author Dhillon, Gurpreet
author_facet Dhillon, Gurpreet
Oliveira, Tiago
Susarapu, Santa
Caldeira, Mário
author_role author
author2 Oliveira, Tiago
Susarapu, Santa
Caldeira, Mário
author2_role author
author
author
dc.contributor.none.fl_str_mv Repositório da Universidade de Lisboa
dc.contributor.author.fl_str_mv Dhillon, Gurpreet
Oliveira, Tiago
Susarapu, Santa
Caldeira, Mário
dc.subject.por.fl_str_mv Security Values
Usability Values
Value Focused-Thinking
Qualitative Methods
Instrument Development
Quantitative Methods
topic Security Values
Usability Values
Value Focused-Thinking
Qualitative Methods
Instrument Development
Quantitative Methods
description Deciding between security and usability of systems remains an important topic among managers and academics. One of the fundamental problems is to balance the conflicting requirements of security and usability. We argue that definition of objectives for security and usability allows for deciding about the right balance between security and usability. To this effect we propose two instruments for assessing security and usability of systems, and develop them in three phases. In Phase 1 we identified 16 clusters of means and 8 clusters of fundamental objectives using the value-focused thinking approach and interviews with 35 experts. Based on phase 1, in the second phase we collected a sample of 201 users to purify, and ensure reliability and unidimensionality of the two instruments. In the third phase, based on a sample of 418 users we confirmed and validated the two instruments found in Phase 2. This resulted in 14 means objectives organized into four categories (minimize system interruptions and licensing restrictions, maximize information retrieval, maximize system aesthetics, and maximize data quality), and 10 fundamental objectives grouped into four categories (maximize standardization and integration, maximize ease of use, enhance system related communication, and maximize system capability). The objectives offer a useful basis for assessing the extent to which security and usability has been achieved in systems. The objectives also provide a decision basis for balancing security and usability.
publishDate 2016
dc.date.none.fl_str_mv 2016
2016-01-01T00:00:00Z
2022-06-28T17:14:18Z
dc.type.status.fl_str_mv info:eu-repo/semantics/publishedVersion
dc.type.driver.fl_str_mv info:eu-repo/semantics/article
format article
status_str publishedVersion
dc.identifier.uri.fl_str_mv http://hdl.handle.net/10400.5/24708
url http://hdl.handle.net/10400.5/24708
dc.language.iso.fl_str_mv eng
language eng
dc.relation.none.fl_str_mv Dhillon, Gurpreet … [et al.]. (2016). "Deciding between information security and usability: Developing value based objectives”. Computers in Human Behavior, Vol. 61 : pp. 656-666.
doi.org/10.1016/j.chb.2016.03.068
dc.rights.driver.fl_str_mv info:eu-repo/semantics/openAccess
eu_rights_str_mv openAccess
dc.format.none.fl_str_mv application/pdf
dc.publisher.none.fl_str_mv Elsevier
publisher.none.fl_str_mv Elsevier
dc.source.none.fl_str_mv reponame:Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
instname:Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação
instacron:RCAAP
instname_str Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação
instacron_str RCAAP
institution RCAAP
reponame_str Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
collection Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
repository.name.fl_str_mv Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) - Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação
repository.mail.fl_str_mv mluisa.alvim@gmail.com
_version_ 1817549533949722624