| Article ID | Journal | Published Year | Pages | File Type |
|---|---|---|---|---|
| 455979 | Computers & Security | 2013 | 9 Pages |
Abstract
This paper analyzes power relationships and the resulting failure in complying with information security rules. It argues that an inability to understand the intricate power relationships in the design and implementation of information security rules leads to a lack of compliance with the intended policy. The argument is conducted through an empirical, qualitative case study set in a Swedish Social Services organization. Our findings indicate that various dimensions of power and how these relate to information security rules ensure adequate compliance. This also helps to improve configuration of security rules through proactive information security management.
Related Topics
Physical Sciences and Engineering
Computer Science
Computer Networks and Communications
Authors
Ella Kolkowska, Gurpreet Dhillon,