oru.sePublications
Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Practice-Based Discourse Analysis of InfoSec Policies
Örebro University, Örebro University School of Business. (CERIS)ORCID iD: 0000-0002-3265-7627
Department of Management and Engineering, Linköping University, Linköping, Sweden.
Örebro University, Swedish Business School at Örebro University. (Informatik)ORCID iD: 0000-0003-2304-7170
2015 (English)In: ICT systems security and privacy protection: 30th IFIP TC 11 International Conference, SEC 2015, Hamburg, Germany, May 26-28, 2015, Proceedings / [ed] Hannes Federrath, Dieter Gollmann, Boston: Springer International Publishing , 2015, p. 297-310Conference paper, Published paper (Refereed)
Abstract [en]

Employees' poor compliance with information security policies is a perennial problem for many organizations. Existing research shows that about half of all breaches caused by insiders are accidental, which means that one can question the usefulness of information security policies. In order to support the formulation of practical, from the employees' perspective, information security policies, we propose eight tentative quality criteria. These criteria were developed using practice-based discourse analysis on three information security policy documents from a health care organisation.

Place, publisher, year, edition, pages
Boston: Springer International Publishing , 2015. p. 297-310
Series
IFIP Advances in Information and Communication Technology, ISSN 1868-4238 ; 455
Keywords [en]
Information security policy; Discourse analysis; Communicative analysis; Quality criteria
National Category
Information Systems, Social aspects
Research subject
Informatics
Identifiers
URN: urn:nbn:se:oru:diva-43332DOI: 10.1007/978-3-319-18467-8_20ISI: 000364779100020Scopus ID: 2-s2.0-84942589859ISBN: 978-3-319-18466-1 (print)ISBN: 978-3-319-18467-8 (print)OAI: oai:DiVA.org:oru-43332DiVA, id: diva2:792801
Conference
IFIP SEC 2015 International Conference on ICT Systems Security and Privacy Protection, Hamburg, Germany, May 26–28, 2015
Available from: 2015-03-05 Created: 2015-03-05 Last updated: 2017-10-17Bibliographically approved

Open Access in DiVA

No full text in DiVA

Other links

Publisher's full textScopus

Authority records BETA

Karlsson, FredrikHedström, Karin

Search in DiVA

By author/editor
Karlsson, FredrikHedström, Karin
By organisation
Örebro University School of BusinessSwedish Business School at Örebro University
Information Systems, Social aspects

Search outside of DiVA

GoogleGoogle Scholar

doi
isbn
urn-nbn

Altmetric score

doi
isbn
urn-nbn
Total: 380 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf