n South African Computer Journal - Evaluating usage control deterrents
|Article Title||Evaluating usage control deterrents|
|© Publisher:||South African Computer Society (SAICSIT)|
|Journal||South African Computer Journal|
|Affiliations||1 University of South Africa and 2 University of Pretoria|
|Publication Date||Jun 2012|
|Pages||1 - 8|
|Keyword(s)||Access control, D.4.6S [Security and Protection], Deterrent control and Usage control|
This paper explores the effectiveness of usage control deterrents. Usage control enables finer-grained control over the usage of objects than do traditional access control models. Deterrent controls are intended to discourage individuals from intentionally violating information security policies or procedures. In this context, an adaptation of usage control is assessed as a proactive means of deterrence control to protect information that cannot be adequately or reasonably protected by access control. These deterrents are evaluated using the design science methodology. Parallel prototypes were developed with the aim of producing multiple alternatives, thereby shifting the focus from purely usability testing to model testing.
Article metrics loading...