Deciding between information security and usability : Developing value based objectives

Bibliographic Details
Main Author: Dhillon, Gurpreet
Publication Date: 2016
Other Authors: Oliveira, Tiago, Susarapu, Santa, Caldeira, Mário
Format: Article
Language: eng
Source: Repositórios Científicos de Acesso Aberto de Portugal (RCAAP)
Download full: http://hdl.handle.net/10400.5/24708
Summary: Deciding between security and usability of systems remains an important topic among managers and academics. One of the fundamental problems is to balance the conflicting requirements of security and usability. We argue that definition of objectives for security and usability allows for deciding about the right balance between security and usability. To this effect we propose two instruments for assessing security and usability of systems, and develop them in three phases. In Phase 1 we identified 16 clusters of means and 8 clusters of fundamental objectives using the value-focused thinking approach and interviews with 35 experts. Based on phase 1, in the second phase we collected a sample of 201 users to purify, and ensure reliability and unidimensionality of the two instruments. In the third phase, based on a sample of 418 users we confirmed and validated the two instruments found in Phase 2. This resulted in 14 means objectives organized into four categories (minimize system interruptions and licensing restrictions, maximize information retrieval, maximize system aesthetics, and maximize data quality), and 10 fundamental objectives grouped into four categories (maximize standardization and integration, maximize ease of use, enhance system related communication, and maximize system capability). The objectives offer a useful basis for assessing the extent to which security and usability has been achieved in systems. The objectives also provide a decision basis for balancing security and usability.
id RCAP_81f706d2587d4d0ac1b9a6a84ad6e67f
oai_identifier_str oai:repositorio.ulisboa.pt:10400.5/24708
network_acronym_str RCAP
network_name_str Repositórios Científicos de Acesso Aberto de Portugal (RCAAP)
repository_id_str https://opendoar.ac.uk/repository/7160
spelling Deciding between information security and usability : Developing value based objectivesSecurity ValuesUsability ValuesValue Focused-ThinkingQualitative MethodsInstrument DevelopmentQuantitative MethodsDeciding between security and usability of systems remains an important topic among managers and academics. One of the fundamental problems is to balance the conflicting requirements of security and usability. We argue that definition of objectives for security and usability allows for deciding about the right balance between security and usability. To this effect we propose two instruments for assessing security and usability of systems, and develop them in three phases. In Phase 1 we identified 16 clusters of means and 8 clusters of fundamental objectives using the value-focused thinking approach and interviews with 35 experts. Based on phase 1, in the second phase we collected a sample of 201 users to purify, and ensure reliability and unidimensionality of the two instruments. In the third phase, based on a sample of 418 users we confirmed and validated the two instruments found in Phase 2. This resulted in 14 means objectives organized into four categories (minimize system interruptions and licensing restrictions, maximize information retrieval, maximize system aesthetics, and maximize data quality), and 10 fundamental objectives grouped into four categories (maximize standardization and integration, maximize ease of use, enhance system related communication, and maximize system capability). The objectives offer a useful basis for assessing the extent to which security and usability has been achieved in systems. The objectives also provide a decision basis for balancing security and usability.ElsevierRepositório da Universidade de LisboaDhillon, GurpreetOliveira, TiagoSusarapu, SantaCaldeira, Mário2022-06-28T17:14:18Z20162016-01-01T00:00:00Zinfo:eu-repo/semantics/publishedVersioninfo:eu-repo/semantics/articleapplication/pdfhttp://hdl.handle.net/10400.5/24708engDhillon, Gurpreet … [et al.]. (2016). "Deciding between information security and usability: Developing value based objectives”. Computers in Human Behavior, Vol. 61 : pp. 656-666.doi.org/10.1016/j.chb.2016.03.068info:eu-repo/semantics/openAccessreponame:Repositórios Científicos de Acesso Aberto de Portugal (RCAAP)instname:FCCN, serviços digitais da FCT – Fundação para a Ciência e a Tecnologiainstacron:RCAAP2025-03-17T16:26:32Zoai:repositorio.ulisboa.pt:10400.5/24708Portal AgregadorONGhttps://www.rcaap.pt/oai/openaireinfo@rcaap.ptopendoar:https://opendoar.ac.uk/repository/71602025-05-29T04:14:58.254443Repositórios Científicos de Acesso Aberto de Portugal (RCAAP) - FCCN, serviços digitais da FCT – Fundação para a Ciência e a Tecnologiafalse
dc.title.none.fl_str_mv Deciding between information security and usability : Developing value based objectives
title Deciding between information security and usability : Developing value based objectives
spellingShingle Deciding between information security and usability : Developing value based objectives
Dhillon, Gurpreet
Security Values
Usability Values
Value Focused-Thinking
Qualitative Methods
Instrument Development
Quantitative Methods
title_short Deciding between information security and usability : Developing value based objectives
title_full Deciding between information security and usability : Developing value based objectives
title_fullStr Deciding between information security and usability : Developing value based objectives
title_full_unstemmed Deciding between information security and usability : Developing value based objectives
title_sort Deciding between information security and usability : Developing value based objectives
author Dhillon, Gurpreet
author_facet Dhillon, Gurpreet
Oliveira, Tiago
Susarapu, Santa
Caldeira, Mário
author_role author
author2 Oliveira, Tiago
Susarapu, Santa
Caldeira, Mário
author2_role author
author
author
dc.contributor.none.fl_str_mv Repositório da Universidade de Lisboa
dc.contributor.author.fl_str_mv Dhillon, Gurpreet
Oliveira, Tiago
Susarapu, Santa
Caldeira, Mário
dc.subject.por.fl_str_mv Security Values
Usability Values
Value Focused-Thinking
Qualitative Methods
Instrument Development
Quantitative Methods
topic Security Values
Usability Values
Value Focused-Thinking
Qualitative Methods
Instrument Development
Quantitative Methods
description Deciding between security and usability of systems remains an important topic among managers and academics. One of the fundamental problems is to balance the conflicting requirements of security and usability. We argue that definition of objectives for security and usability allows for deciding about the right balance between security and usability. To this effect we propose two instruments for assessing security and usability of systems, and develop them in three phases. In Phase 1 we identified 16 clusters of means and 8 clusters of fundamental objectives using the value-focused thinking approach and interviews with 35 experts. Based on phase 1, in the second phase we collected a sample of 201 users to purify, and ensure reliability and unidimensionality of the two instruments. In the third phase, based on a sample of 418 users we confirmed and validated the two instruments found in Phase 2. This resulted in 14 means objectives organized into four categories (minimize system interruptions and licensing restrictions, maximize information retrieval, maximize system aesthetics, and maximize data quality), and 10 fundamental objectives grouped into four categories (maximize standardization and integration, maximize ease of use, enhance system related communication, and maximize system capability). The objectives offer a useful basis for assessing the extent to which security and usability has been achieved in systems. The objectives also provide a decision basis for balancing security and usability.
publishDate 2016
dc.date.none.fl_str_mv 2016
2016-01-01T00:00:00Z
2022-06-28T17:14:18Z
dc.type.status.fl_str_mv info:eu-repo/semantics/publishedVersion
dc.type.driver.fl_str_mv info:eu-repo/semantics/article
format article
status_str publishedVersion
dc.identifier.uri.fl_str_mv http://hdl.handle.net/10400.5/24708
url http://hdl.handle.net/10400.5/24708
dc.language.iso.fl_str_mv eng
language eng
dc.relation.none.fl_str_mv Dhillon, Gurpreet … [et al.]. (2016). "Deciding between information security and usability: Developing value based objectives”. Computers in Human Behavior, Vol. 61 : pp. 656-666.
doi.org/10.1016/j.chb.2016.03.068
dc.rights.driver.fl_str_mv info:eu-repo/semantics/openAccess
eu_rights_str_mv openAccess
dc.format.none.fl_str_mv application/pdf
dc.publisher.none.fl_str_mv Elsevier
publisher.none.fl_str_mv Elsevier
dc.source.none.fl_str_mv reponame:Repositórios Científicos de Acesso Aberto de Portugal (RCAAP)
instname:FCCN, serviços digitais da FCT – Fundação para a Ciência e a Tecnologia
instacron:RCAAP
instname_str FCCN, serviços digitais da FCT – Fundação para a Ciência e a Tecnologia
instacron_str RCAAP
institution RCAAP
reponame_str Repositórios Científicos de Acesso Aberto de Portugal (RCAAP)
collection Repositórios Científicos de Acesso Aberto de Portugal (RCAAP)
repository.name.fl_str_mv Repositórios Científicos de Acesso Aberto de Portugal (RCAAP) - FCCN, serviços digitais da FCT – Fundação para a Ciência e a Tecnologia
repository.mail.fl_str_mv info@rcaap.pt
_version_ 1833601992120860672

Similar Items