A Research Framework for Information Systems Security

UNCG Author/Contributor (non-UNCG co-authors, if there are any, appear on document)
Prashant Palvia, Joe Rosenthal Excellence Professor and Director of the McDowell Research Center for Global IT Management (Creator)
Institution
The University of North Carolina at Greensboro (UNCG )
Web Site: http://library.uncg.edu/

Abstract: Securing the IT infrastructure and the data it contains is one of the most critical components of IT that management faces today. Technologies such as the Internet and the wide-spread dissemination of computers to more users has increased the vulnerabilities of IT infrastructures as well as the likelihood of internal and external threats to companies. Managers are able to prevent or mitigate some of the damage caused by these attacks by aligning security policies with IT infrastructures to protect the organization’s information capital. The purpose of this study was to examine security articles in top-tier IS journals from 1996 to 2005 to determine what types of security research has been performed, to find out if a comprehensive framework for security in IS exists, and; if not, to develop a framework based upon the current literature and theory. Through the analysis of hypotheses, frameworks, and variables, security research appears to be very narrow and highly fragmented, suggesting security research remains fertile, yet immature. Additionally, no comprehensive framework was present in the analyzed literature; thus a comprehensive research framework is proposed for IS security.

Additional Information

Publication
Journal of Information Privacy & Security
Language: English
Date: 2006
Keywords
security, meta-analysis, framework, privacy

Email this document to