A systematic approach to investigating how information security and privacy can be achieved in BYOD environments-Reference-Cited by-同舟云学术

A systematic approach to investigating how information security and privacy can be achieved in BYOD environments

Published:2017-10-09 Issue:4 Volume:25 Page:475-492
ISSN:2056-4961
Container-title:Information & Computer Security
language:en
Short-container-title:ICS

Author:

Bello Abubakar Garba,Murray David,Armarego Jocelyn

Abstract

Purpose This paper’s purpose is to provide a current best practice approach that can be used to identify and manage bring your own device (BYOD) security and privacy risks faced by organisations that use mobile devices as part of their business strategy. While BYOD deployment can provide work flexibility, boost employees’ productivity and be cost cutting for organisations, there are also many information security and privacy issues, with some widely recognised, and others less understood. This paper focuses on BYOD adoption, and its associated risks and mitigation strategies, investigating how both information security and privacy can be effectively achieved in BYOD environments. Design/methodology/approach This research paper used a qualitative research methodology, applying the case study approach to understand both organisational and employee views, thoughts, opinions and actions in BYOD environments. Findings This paper identifies and understands BYOD risks, threats and influences, and determines effective controls and procedures for managing organisational and personal information resources in BYOD. Research limitations/implications The scope of this paper is limited to the inquiry and findings from organisations operating in Australia. This paper also suggests key implications that lie within the ability of organisations to adequately develop and deploy successful BYOD management and practices. Originality/value This paper expands previous research investigating BYOD practices, and also provides a current best practice approach that can be used by organisations to systematically investigate and understand how to manage security and privacy risks in BYOD environments.

Publisher

Emerald

Subject

Management of Technology and Innovation,Information Systems and Management,Computer Networks and Communications,Information Systems,Software,Management Information Systems

Reference56 articles.

1. Absalom, R. (2012), International Data Privacy Legislation Review: A Guide for BYOD Policies, Ovum Consulting, IT006, 234, pp. 3-5.

2. Alcatel-Lucent (2013), Kindsight Security Labs: Malware Report – Q4 2013, availbale at: www.alcatel-lucent.com/solutions/kindsight-security (accessed 26 July 2014).

3. Andrew, T.Y. and Yang, A.T. (2013), “Risk management in the Era of BYOD”, Paper presented at the Symposium on Usable Privacy and Security (SOUPS).

4. Ashford, W. (2012), “Nearly half of firms supporting BYOD report data breaches”, available at: www.computerweekly.com/news/2240161202/Nearly-half-of-firms-supporting-BYOD-report-data-breaches (accessed 27 July 2014).

Cited by 18 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Legal and Privacy Concerns of BYOD Adoption;Journal of Computer Information Systems;2023-10-02

2. Systematic Literature Review on Security Access Control Policies and Techniques Based on Privacy Requirements in a BYOD Environment: State of the Art and Future Directions;Applied Sciences;2023-07-10

3. Sector-wise Investigation of BYOD Security Policies in Pakistan;2022 IEEE 19th International Conference on Smart Communities: Improving Quality of Life Using ICT, IoT and AI (HONET);2022-12-19

4. Synthesis of Evidence on Existing and Emerging Social Engineering Ransomware Attack Vectors;Cybersecurity Issues, Challenges, and Solutions in the Business World;2022-10-14

5. Bring Your Own Device Information Security Policy Compliance Framework: A Systematic Literature Review and Bibliometric Analysis (2017–2022);2022 International Conference on Cyber Resilience (ICCR);2022-10-06