Author:
Bertrand Yoann,Boudaoud Karima,Riveill Michel
Abstract
Data leakage can lead to severe issues for a company, including financial loss, damage of goodwill, reputation, lawsuits and loss of future sales. To prevent these problems, a company can use other mechanisms on top of traditional Access Control. These mechanisms include for instance Data Leak Prevention or Information Rights Management and can be referred as Transmission Control. However, such solutions can lack usability and can be intrusive for end-users employees. To have a better understanding of the perception and usage of such mechanisms within business infrastructures, we have conducted in this article an online survey on 150 employees. These employees come from different companies of different sizes and sectors of activity. The results show that whatever the size of the company or its sector of activity, security mechanisms such as access control and transmission control can be considered as quite intrusive and blocking for employees. Moreover, our survey also shows interesting results regarding more acceptable and user-friendly anti-data leakage mechanisms that could be used within companies.
Funder
Fonds Unique Interministériel
Reference45 articles.
1. Preventing information leakage between collaborating organisations;Alawneh,2008
2. Information security policies: a review of challenges and influencing factors;Alotaibi,2016
3. An inconvenient trust: user attitudes toward security and usability tradeoffs for key-directory encryption systems;Bai,2016
4. History-based access control and secure information flow;Banerjee,2004
5. Productive security: a scalable methodology for analysing employee security behaviours;Beautement,2016
Cited by
5 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献