Deciding between information security and usability : Developing value based objectives
Autor(a) principal: | |
---|---|
Data de Publicação: | 2016 |
Outros Autores: | , , |
Tipo de documento: | Artigo |
Idioma: | eng |
Título da fonte: | Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) |
Texto Completo: | http://hdl.handle.net/10400.5/24708 |
Resumo: | Deciding between security and usability of systems remains an important topic among managers and academics. One of the fundamental problems is to balance the conflicting requirements of security and usability. We argue that definition of objectives for security and usability allows for deciding about the right balance between security and usability. To this effect we propose two instruments for assessing security and usability of systems, and develop them in three phases. In Phase 1 we identified 16 clusters of means and 8 clusters of fundamental objectives using the value-focused thinking approach and interviews with 35 experts. Based on phase 1, in the second phase we collected a sample of 201 users to purify, and ensure reliability and unidimensionality of the two instruments. In the third phase, based on a sample of 418 users we confirmed and validated the two instruments found in Phase 2. This resulted in 14 means objectives organized into four categories (minimize system interruptions and licensing restrictions, maximize information retrieval, maximize system aesthetics, and maximize data quality), and 10 fundamental objectives grouped into four categories (maximize standardization and integration, maximize ease of use, enhance system related communication, and maximize system capability). The objectives offer a useful basis for assessing the extent to which security and usability has been achieved in systems. The objectives also provide a decision basis for balancing security and usability. |
id |
RCAP_6f325cc9b5c8587f2d279cd07020e458 |
---|---|
oai_identifier_str |
oai:repositorio.ul.pt:10400.5/24708 |
network_acronym_str |
RCAP |
network_name_str |
Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) |
repository_id_str |
7160 |
spelling |
Deciding between information security and usability : Developing value based objectivesSecurity ValuesUsability ValuesValue Focused-ThinkingQualitative MethodsInstrument DevelopmentQuantitative MethodsDeciding between security and usability of systems remains an important topic among managers and academics. One of the fundamental problems is to balance the conflicting requirements of security and usability. We argue that definition of objectives for security and usability allows for deciding about the right balance between security and usability. To this effect we propose two instruments for assessing security and usability of systems, and develop them in three phases. In Phase 1 we identified 16 clusters of means and 8 clusters of fundamental objectives using the value-focused thinking approach and interviews with 35 experts. Based on phase 1, in the second phase we collected a sample of 201 users to purify, and ensure reliability and unidimensionality of the two instruments. In the third phase, based on a sample of 418 users we confirmed and validated the two instruments found in Phase 2. This resulted in 14 means objectives organized into four categories (minimize system interruptions and licensing restrictions, maximize information retrieval, maximize system aesthetics, and maximize data quality), and 10 fundamental objectives grouped into four categories (maximize standardization and integration, maximize ease of use, enhance system related communication, and maximize system capability). The objectives offer a useful basis for assessing the extent to which security and usability has been achieved in systems. The objectives also provide a decision basis for balancing security and usability.ElsevierRepositório da Universidade de LisboaDhillon, GurpreetOliveira, TiagoSusarapu, SantaCaldeira, Mário2022-06-28T17:14:18Z20162016-01-01T00:00:00Zinfo:eu-repo/semantics/publishedVersioninfo:eu-repo/semantics/articleapplication/pdfhttp://hdl.handle.net/10400.5/24708engDhillon, Gurpreet … [et al.]. (2016). "Deciding between information security and usability: Developing value based objectives”. Computers in Human Behavior, Vol. 61 : pp. 656-666.doi.org/10.1016/j.chb.2016.03.068info:eu-repo/semantics/openAccessreponame:Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)instname:Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informaçãoinstacron:RCAAP2024-11-20T19:30:46Zoai:repositorio.ul.pt:10400.5/24708Portal AgregadorONGhttps://www.rcaap.pt/oai/openairemluisa.alvim@gmail.comopendoar:71602024-11-20T19:30:46Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) - Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informaçãofalse |
dc.title.none.fl_str_mv |
Deciding between information security and usability : Developing value based objectives |
title |
Deciding between information security and usability : Developing value based objectives |
spellingShingle |
Deciding between information security and usability : Developing value based objectives Dhillon, Gurpreet Security Values Usability Values Value Focused-Thinking Qualitative Methods Instrument Development Quantitative Methods |
title_short |
Deciding between information security and usability : Developing value based objectives |
title_full |
Deciding between information security and usability : Developing value based objectives |
title_fullStr |
Deciding between information security and usability : Developing value based objectives |
title_full_unstemmed |
Deciding between information security and usability : Developing value based objectives |
title_sort |
Deciding between information security and usability : Developing value based objectives |
author |
Dhillon, Gurpreet |
author_facet |
Dhillon, Gurpreet Oliveira, Tiago Susarapu, Santa Caldeira, Mário |
author_role |
author |
author2 |
Oliveira, Tiago Susarapu, Santa Caldeira, Mário |
author2_role |
author author author |
dc.contributor.none.fl_str_mv |
Repositório da Universidade de Lisboa |
dc.contributor.author.fl_str_mv |
Dhillon, Gurpreet Oliveira, Tiago Susarapu, Santa Caldeira, Mário |
dc.subject.por.fl_str_mv |
Security Values Usability Values Value Focused-Thinking Qualitative Methods Instrument Development Quantitative Methods |
topic |
Security Values Usability Values Value Focused-Thinking Qualitative Methods Instrument Development Quantitative Methods |
description |
Deciding between security and usability of systems remains an important topic among managers and academics. One of the fundamental problems is to balance the conflicting requirements of security and usability. We argue that definition of objectives for security and usability allows for deciding about the right balance between security and usability. To this effect we propose two instruments for assessing security and usability of systems, and develop them in three phases. In Phase 1 we identified 16 clusters of means and 8 clusters of fundamental objectives using the value-focused thinking approach and interviews with 35 experts. Based on phase 1, in the second phase we collected a sample of 201 users to purify, and ensure reliability and unidimensionality of the two instruments. In the third phase, based on a sample of 418 users we confirmed and validated the two instruments found in Phase 2. This resulted in 14 means objectives organized into four categories (minimize system interruptions and licensing restrictions, maximize information retrieval, maximize system aesthetics, and maximize data quality), and 10 fundamental objectives grouped into four categories (maximize standardization and integration, maximize ease of use, enhance system related communication, and maximize system capability). The objectives offer a useful basis for assessing the extent to which security and usability has been achieved in systems. The objectives also provide a decision basis for balancing security and usability. |
publishDate |
2016 |
dc.date.none.fl_str_mv |
2016 2016-01-01T00:00:00Z 2022-06-28T17:14:18Z |
dc.type.status.fl_str_mv |
info:eu-repo/semantics/publishedVersion |
dc.type.driver.fl_str_mv |
info:eu-repo/semantics/article |
format |
article |
status_str |
publishedVersion |
dc.identifier.uri.fl_str_mv |
http://hdl.handle.net/10400.5/24708 |
url |
http://hdl.handle.net/10400.5/24708 |
dc.language.iso.fl_str_mv |
eng |
language |
eng |
dc.relation.none.fl_str_mv |
Dhillon, Gurpreet … [et al.]. (2016). "Deciding between information security and usability: Developing value based objectives”. Computers in Human Behavior, Vol. 61 : pp. 656-666. doi.org/10.1016/j.chb.2016.03.068 |
dc.rights.driver.fl_str_mv |
info:eu-repo/semantics/openAccess |
eu_rights_str_mv |
openAccess |
dc.format.none.fl_str_mv |
application/pdf |
dc.publisher.none.fl_str_mv |
Elsevier |
publisher.none.fl_str_mv |
Elsevier |
dc.source.none.fl_str_mv |
reponame:Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) instname:Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação instacron:RCAAP |
instname_str |
Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação |
instacron_str |
RCAAP |
institution |
RCAAP |
reponame_str |
Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) |
collection |
Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) |
repository.name.fl_str_mv |
Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) - Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação |
repository.mail.fl_str_mv |
mluisa.alvim@gmail.com |
_version_ |
1817549533949722624 |