| 1. |
- Iqbal, Sarfraz, et al.
(författare)
-
Conceptual Model of Online Pedagogical Information Security Laboratory : Toward an Ensemble Artifact
- 2015
-
Ingår i: 2015 48th Hawaii International Conference on System Sciences (HICSS 2015). - Piscataway, NJ : IEEE Communications Society. - 9781479973675 ; , s. 43-52
-
Konferensbidrag (refereegranskat)abstract
- Distance education in information security has unique requirements in comparison to on-campus education. For instance, an online InfoSec lab is required to provide hands-on education to distance students while development and operation of a lab is a non-trivial problem. There is a need to understand the nature of the online InfoSec labs as ensemble artifacts, and just a black-box tool’s view is not enough. This article suggests a conceptual model to explain the ensemble view of the online InfoSec lab. In doing so, the paper makes two specific contributions: First, it conceptualizes the online Information Security (InfoSec) lab as an ensemble artifact so that we can unfold the black-box view of an InfoSec lab and understand the important building blocks (entities of the lab) and their interrelationships. Second, it suggests design principles to implement the conceptual model of an InfoSec lab.
|
|
| 2. |
- Thapa, Devinder, et al.
(författare)
-
Rethinking the Information Security Risk Practices: A Critical Social Theory Perspective
- 2014
-
Ingår i: Proceedings of the Annual Hawaii International Conference on System Sciences. - 1530-1605. ; , s. 3207-3214
-
Tidskriftsartikel (refereegranskat)abstract
- There is a lack of theoretical understanding of information security risk practices. For example, the information security risks related literatures are dominated by instrumental approach to protect the information assets. This approach, however, often fails to acknowledge the ideologies and consequences of risks practices. In this paper, through critical analysis, we suggest various perspectives to advance the understanding in this regard. In doing so, we present our argument by reviewing the security risk literature using Habermas’s concept of four orientations: instrumental, strategic, communicative and discursive. The contribution of this paper is to develop conceptual clarity of the risk related ideologies and its consequences on emancipation.
|
|
| 3. |
- Harnesk, Dan, 1959-, et al.
(författare)
-
Equipment-as-experience : A Heidegger-based position of information security
- 2016
-
Ingår i: Proceedings of the Thirty Seventh International Conference on Information Systems. - 9780996683135
-
Konferensbidrag (refereegranskat)abstract
- Information security (InfoSec) has ontologically been characterised as an order machine. The order machine connects with other machines through interrupting mechanisms. This way of portraying InfoSec focuses on the correct placement of machine entities to protect information assets. However, what is missing in this view is that for the InfoSec we experience in everyday practice, we are not just observers of the InfoSec phenomena but also active agents of it. To contribute to the quest, we draw on Heidegger's (1962) notion of equipment and propose the concept of equipment-as-experience to understand the ontological position of InfoSec in everyday practice. In this paper we show how equipment-as-experience provides a richer picture of InfoSec as being a fundamental sociotechnical phenomena. We further contend using an example case to illustrate that InfoSec equipment should not be understood merely by its properties (present-at-hand mode), but rather in ready-to-hand mode when put into practice.
|
|
| 4. |
- Iqbal, Sarfraz, et al.
(författare)
-
Design Principles for online Information Security laboratory
- 2014
-
Ingår i: Selected Papers of the Information Systems Research Seminar in Scandinavia. ; , s. 65-79
-
Konferensbidrag (refereegranskat)abstract
- In this paper, we reported an online InfoSec Lab based on initial design principles derived from kernel theories such as Conversational Framework (CF), Constructive Alignment (CA), and Personalized System of Instruction (PSI). The overall research was conducted using the action design research approach. In doing so, the iterative cycles and critical reflections during the process helped to refine a set of existing design principles. The study contributes to the IS community by providing design principles for an online InfoSec Lab that utilizes state-of-the art technology for mixed classrooms.
|
|
| 5. |
- Iqbal, Sarfraz, et al.
(författare)
-
Initial design principles for an educational, on-line information security laboratory
- 2013
-
Ingår i: Advances in web-based learning ICWL 2013. - Heidelberg : Encyclopedia of Global Archaeology/Springer Verlag. - 9783642411748 - 9783642411755 ; , s. 89-100
-
Konferensbidrag (refereegranskat)abstract
- E-Learning systems should be based on systematic pedagogical approaches and well-designed procedures and techniques. However, current literature on several areas of technology-enhanced learning environments, such as online information security (InfoSec) laboratories, may still lack well-specified pedagogical approaches and concrete design principles. In information security education, hands-on lab exercises play a major role in learning. Distance education brings in new challenges as the hands-on exercises require now virtual labs, which need to be accessible anywhere and often also anytime. This creates technological and pedagogical challenges, which are not fully understood in terms of explicit design principles that would enhance implementation and use of on-line educational labs. To contribute to this knowledge gap the paper based on the interviews, observations, and literature review formulates and describes five initial design principles: contextualization, collaboration, flexibility, cost-effectiveness, and scalability. The initial concretization of the principles adopts the pedagogical approach of Personalized System of Instruction (PSI), which is deemed to represent a good fit to the contextual goals for developing on-line security labs in the context of the target university. Further research for actual design of virtual InfoSec labs, adopting the action design-based research tradition to develop learning environments, is needed in order to concretize, to test and to elaborate these design principles.
|
|
