Designing secure information systems and software : critical evaluation of the existing approaches and a new paradigm
1University of Oulu, Faculty of Science, Department of Information Processing Science
2University of Oulu, Infotech Oulu
|Online Access:||PDF Full Text (PDF, 0.9 MB)|
|Persistent link:|| http://urn.fi/urn:isbn:9514267907
|Publish Date:|| 2002-08-24
|Thesis type:||Doctoral Dissertation
|Defence Note:||Academic Dissertation to be presented with the assent of the Faculty of Science, University of Oulu, for public discussion in Raahensali (Auditorium L10), Linnanmaa, on August 24th, 2002, at 12 noon.
Associate Professor Gurpreet Dhillon
J. Mack Robinson Distinquished Professor Detmar W. Straub
This dissertation is composed of three contributions. First, it recognizes a set of key security issues for information systems (IS), and examines the extent to which these issues have been studied and resolved by existing research efforts. Second, it analyses and discusses the existing approaches for designing secure information systems (SIS), shedding light on their underlying foundations. Third, based on the findings, a framework is put forth, addressing the fundamental shortcomings of the existing SIS design approaches. A meta-notation for adding security into IS development methods is presented as a framework-based example. An action research intervention is accomplished to test the relevance, suitability and feasibility of the meta-notation in practice. Overall, this dissertation sets forth a novel approach for extending security in IS/software development methods.
Acta Universitatis Ouluensis. A, Scientiae rerum naturalium
© University of Oulu, 2002. This publication is copyrighted. You may download, display and print it for your own personal use. Commercial use is prohibited.