Connected devices, such as smartphones and tablets, are exposed to a large variety of attacks. Their protection is often challenged by their resource constraints in terms of CPU, memory and energy. Security chains, composed of security functions such as firewalls, intrusion detection systems and data leakage prevention mechanisms, offer new perspectives to protect these devices using software-defined networking and network function virtualization. However, the complexity and dynamics of these chains require new automation techniques to orchestrate them. This chapter (...) describes an automated orchestration methodology for security chains in order to secure connected devices and their applications. This methodology exploits process learning to establish behavioral models and infer security constraints represented as logical predicates. It then generates and merges a set of chains of security functions on the basis of these predicates. These chains are finally compiled into low-level configuration rules and deployed into the network, optimizing for the underlying topology. The benefits and limits of such a methodology combining machine learning and verification techniques are evaluated by a set of experimental results. (shrink)

Decisions in security contexts, including armed conflict, law enforcement, and disaster relief, often need to be taken under circumstances of limited information, stress, and time pressure. Since AI systems are capable of providing a certain amount of relief in such contexts, such systems will become increasingly important, be it as decision-support or decision-making systems. However, given that human life may be at stake in such situations, moral responsibility for such decisions should remain with humans. Hence the idea of “meaningful (...) human control” of intelligent systems. In this opinion paper, we outline generic configurations of control of AI and we present an alternative to human control of AI, namely the inverse idea of having AI control humans, and we discuss the normative consequences of this alternative. (shrink)

The Snowden revelations about National Security Agency surveillance, starting in 2013, along with the ambiguous complicity of internet companies and the international controversies that followed provide a perfect segue into contemporary conundrums of surveillance and Big Data. Attention has shifted from late C20th information technologies and networks to a C21st focus on data, currently crystallized in “Big Data.” Big Data intensifies certain surveillance trends associated with information technology and networks, and is thus implicated in fresh but fluid configurations. This (...) is considered in three main ways: One, the capacities of Big Data intensify surveillance by expanding interconnected datasets and analytical tools. Existing dynamics of influence, risk-management, and control increase their speed and scope through new techniques, especially predictive analytics. Two, while Big Data appears to be about size, qualitative change in surveillance practices is also perceptible, accenting consequences. Important trends persist – the control motif, faith in technology, public-private synergies, and user-involvement – but the future-orientation increasingly severs surveillance from history and memory and the quest for pattern-discovery is used to justify unprecedented access to data. Three, the ethical turn becomes more urgent as a mode of critique. Modernity's predilection for certain definitions of privacy betrays the subjects of surveillance who, so far from conforming to the abstract, disembodied image of both computing and legal practices, are engaged and embodied users-in-relation whose activities both fuel and foreclose surveillance. (shrink)

Internet of Things-based environments pose various challenges due to their anytime/anywhere computing, and the efficient cryptographic based key management is one of the major challenges in Internet of Things. The key management life cycle consists of initialization, key generation, key registration, key backup, key update, key recovery, and key revocation. Our contribution in this paper is to summarize the state-of-the-art key management schemes and techniques in different scenarios, such as mobile ad hoc networks, wireless sensor networks, and (...) the Internet of Things environments. Further different issues related specifically to the Internet of Things environment are discussed and the causes and effects pertaining to the security breach for Internet of Things are identified. Furthermore, in this research work, we develop a novel permutation of threshold and identity-based key management schemes for the Internet of Things environment and have proposed future directions to counteract the attacks on confidentiality, integrity, authentication, and availability of security services in the Internet of Things environment and identified the two key management schemes, that is, identity and threshold schemes for Internet of Things, to resolve Internet of Things key management issues and maximum possible security services effective implementation. We evaluate our scheme with the help of mathematical and statistical techniques. (shrink)

ANNOTATION Sardak S.E. Global Regulatory System of Human Resources Development. – Manuscript. Thesis for the Doctor of Economic Science academic degree with major in 08.00.02 – World Economy and international economic relations. – SHEE «Kyiv National Economic University named after Vadym Hetman», Kyiv, 2014. The preconditions and factors of the global economic system with the identified relevant subjects areas and mechanisms of regulation instruments have been investigated. The crucial role of humans in the global economic system as a key factor (...) of production, the main resource, the producer and the consumer of economic and social benefits that are exposed to global threats, problems, challenges, trends and subjects has been confirmed. There have been revealed the causes and consequences of the public institutions transformation under the influence of globalization, which formed a qualitatively new conditions for social and economic development that determine the need for further changes in the areas of conceptual guideline for the management of human resources development, optimization of tasks, state and international institutions activity forms, integration of efforts as for monitoring, planning and forecasting. The modern major instruments and spheres of international cooperation to ensure human development have been determined. The integrated characteristic of human resources and their role in social development both from the standpoint of their use in labour processes and as a medium of civilization and social utility with the help of the categorical classification system organizing and expanding which enables to design and apply the appropriate approaches at all managerial levels have been defined. The necessity and the concept of human resources development in the context of the content of managerial influence identifying (self-development, self-management and external control of development) at different administrative levels that ensures the growth of human capital to the limits of its potential have been analysed. The survey of human activity system aspects in the global world, taking into account the parametrization of the global environment, its structure, management and development have been realized. The formed methodology principles of managerial influence on the development of human resources with scientific schools, hardness degrees, available models, research and providing theoretical and practical implementation peculiarities for groups of countries and territories of the world taken into consideration have been examined. There have been noted civilization and national differences in the forms of managerial influence on the development of human resources, which lead to the formation of human resources development national control systems conditioned by different value public strategic guidelines, especially in relation to social security, education, national management and state migration policy. The current and future requirements for global human resources development which are proposed to be achieved by the development and formalization of global civilizational paradigm of social development due to social coordination interaction have been given. The influence of the institute of state on the human resources development has been evaluated and it has been proved that in the beginning of the XXI century in the global environment the institute of state is the ultimate guarantor of its citizens’ labour ability and vital activity renewal, that makes it the main instrument of managerial influence on human development. The methodology of countries and territories matrix positioning by human development qualitative criteria and population size quantitative parameters which allows to design unified managerial measures as for human resources for similar national economies in the context of global regulatory trends has been proposed. The strategic trends of improvement of human resources development in the national economy, taking into account the differences in the development of human resources in different countries and areas which vary and differ in their focus, content and ways of implementation for such groups. The varying criteria for evaluating the effectiveness of the global impact on human resources development, taking into account the natural, biological, technological, economic, social and management dimensions and the results of human resources development management in social and economic systems at various levels have been revealed. The periodization and the forecast of the global dynamics of human resources development by analyzing and modeling the values of the absolute and relative terms correlation character have been carried out, which enables to make their retrospective and prospective comparison and to find chronological boundaries of qualitatively different periods. The configuration of the human resource development global coordinate system as a set of interrelated principles, components, fields, tools, frameworks, management levels and forms of managerial influence that allows with the help of institutional means to adapt the state of human resources development to a globally varying environment. (shrink)

Forecasting is fraught with difficulty, but the dynamic Asia?Pacific region is unlikely to remain static in its present configuration. This paper offers 7 scenarios for the future of integration of the Asia?Pacific that take into account economic, strategic, and cultural dimensions of change, and the kinds of events that could trigger regional reconfiguration. The scenarios are aligned along a continuum from low to high tension: (1) a formal, multilateral security regime, (2) a concert of Asia, (3) the status (...) quo of integration under Western hegemony, (4) integration without China, (5) a neo?Confucian cultural zone, (6) tripolarization, and (7) a new cold war between the U.S. and China. The most important bilateral relation shaping the Asia?Pacific future is the U.S.?China relation. If this relationship is well managed, and if regional multilateral institutions continue to develop, tensions in the region are likely to remain low. But the potential for serious conflict over Taiwan, Korea, trade issues, and Asian vs. Western values remains very real. (shrink)

In this critical, feminist account of the management of intersex conditions under 2006's controversial “Disorders of Sex Development” (DSD) treatment model, I argue that like the “Optimal Gender of Rearing” (OGR) treatment model it replaced, DSD aims at securing a cisgendered future for the intersex patient, referring to a normalized trajectory of development across the lifespan in which multiple sexed, gendered, and sexual characteristics remain in “coherent” alignment. I argue this by critically analyzing two ways that intersex management (...) has changed between OGR and DSD: 1) regarding sex‐assignment recommendations for three patient populations and, 2) with the prenatal treatment of pregnant individuals at risk of conceiving a fetus with congenital adrenal hyperplasia with the steroid hormone dexamethasone. I conclude that like OGR before it, DSD also unjustifiably presumes that typical genitalia are necessary for cisgendered development. However, unlike OGR, it appeals to the empirically inadequate, theoretically suspect, and biologically determinist model of gender development known as brain‐organization theory. Given this, I conclude that the treatment of intersex people under DSD continues to be driven by problematically heterosexist and transphobic assumptions regarding the value and normalcy of cisgendered life, while practically and discursively constituting it as such. (shrink)

With the spread of Information and Communication Technologies tools and the Internet, Twenty first century technologies have significantly affected human life, and it has been desired to be obtained continuously. It has become challenging to protect information due to the increase in the methods by which malicious people can get information. As a result, it is crucial to determine people’s awareness levels by revealing the risks and threats to information security. In this context, a study was conducted to show (...) the awareness levels of teachers who come after the family in raising conscious individuals in society. For this purpose, a quantitative research method was adopted for the problem and sub-problems that form the basis of the research. The survey model, one of the research designs used within the framework of the quantitative research method, was used. Information Security Awareness Scale was applied to 394 teachers, and according to the results obtained, it was determined that the information security awareness level of the teachers was moderate. According to the attacks and threats sub-dimension, which includes technical issues, it has been determined that the awareness levels of the teachers are at a medium level. The study results show that female teachers’ information security awareness levels are lower than male teachers. In comparison, the awareness levels of those who received information security awareness training and information technology teachers are higher. (shrink)

When organizations face the coexistence of multiple institutional logics for environmental management (e.g., maximizing market profit, protecting the environment), how do firms configure green human resource management (GHRM) practices to achieve sustainability in both environmental and market domains? Leveraging the fuzzy-set qualitative comparative analysis (fsQCA) technique, this study adopts a configurational approach to analyze the complex interdependence of GHRM practices with the underlying institutional logics for achieving firm sustainable performance. Employing a multi-source matched sample of 179 firms, the (...) findings reveal the existence of multiple configurations of institutional logics and GHRM practices that equally result in high environmental performance, market performance, or both. The analysis also identifies that firms vary in their selection between environment protection and market profit logics, and the need to match different control- or commitment-based GHRM practices to achieve high environmental and market performance. (shrink)

The main purpose of the study is to determine the key aspects of the mechanisms of state management of the exchange of information about cyberattacks, cyber incidents, and information security incidents. The methodology includes a set of theoretical methods. Modern government, on the one hand, must take into account the emergence of such a new weapon as cyber, which can break various information systems, can be used in hybrid wars, influence political events, pose a threat to the national (...) security of any state. As a result of the study, key elements of the mechanisms of state management of the exchange of information about cyberattacks, cyber incidents, and information security incidents were identified. (shrink)

Researchers are increasingly expected to deliver “socially robust knowledge” that is not only scientifically reliable but also takes into account demands from societal actors. This article focuses on an empirical example where these additional criteria are explicitly organized into research settings. We investigate how the multiple “accountabilities” are managed in such “responsive research settings.” This article provides an empirical account of such an organizational format: the Dutch Academic Collaborative Centres for Public Health. We present a cross-case analysis of four collaborative (...) research projects conducted within this context. We build on Miller’s notion of “hybrid management.” The article shows that the extended concept of hybrid management is useful to study the different accountabilities encountered in such settings. We analyze how the collaboration developed and which conflicts or dilemmas arose. We then focus on the different hybrid management strategies used in the collaboration. The empirical material shows how the different aspects of hybrid management feature in various configurations in the four projects. We highlight that hybrid management strategies may be used by different groups or at different moments, may reinforce or contradict each other, and may be more or less effective at different points in time. (shrink)

This paper proposes a roadmap for how privacy leakages from outsourced managed security services using intrusion detection systems can be controlled. The paper first analyses the risk of leaking private or confidential information from signature-based intrusion detection systems. It then discusses how the situation can be improved by developing adequate privacy enforcement methods and privacy leakage metrics in order to control and reduce the leakage of private and confidential information over time. Such metrics should allow for quantifying how much (...) information that is leaking, where these information leakages are, as well as showing what these leakages mean. This includes adding enforcement mechanisms ensuring that operation on sensitive information is transparent and auditable. The data controller or external quality assurance organisations can then verify or certify that the security operation operates in a privacy friendly manner. The roadmap furthermore outlines how privacy-enhanced intrusion detection systems should be implemented by initially providing privacy-enhanced alarm handling and then gradually extending support for privacy enhancing operation to other areas like digital forensics, exchange of threat information and big data analytics based attack detection. (shrink)

Faced with the criticism of the biopolitical control exercised in the COVID-19 pandemic, we defend the importance of a re-examination of the foucauldian reflections so that the critical diagnoses of the present is accompanied by a careful analysis of the fields of force and knowledges in which such controls occur. Bearing in mind the correlation between security mechanisms and the management of insecurities, we argue that in the management of the pandemic by the brazilian executive government, the (...) excesses of power took place more due to the lack of imposing restrictive health measures and obstacles to the control of contagion than through restrictive actions of classical individual freedoms. (shrink)

The accelerated rates of scientific and technological progress and the intellectualization of the main factors of production play a leading role in ensuring the economic recovery of national economies, in particular in the conditions of the existence of today's post-pandemic consequences. The technological development of the leading countries of economic development poses difficult tasks for other participants in the world economic space to avoid a significant lag, especially in today's post-pandemic society. For the countries of Eastern Europe, this task is (...) complicated not only by political and social tensions, but also by the lack of effective government regulation instruments that could provide support for the high-tech sector as a locomotive for the modernization of the national economy. Moreover, enterprises of the high-tech sector of the economy, being deprived of state support, must independently ensure their functioning by creating a system of economic security. Ensuring safety in a post-pandemic society of such enterprises is characterized by significant differences, which are most related to the need to create safe conditions for the activities of workers - the most valuable resource. The development of enterprises in the high-tech sector of the economy is impossible without taking into account the safety aspects, it requires the intensification of scientific research in this area. The purpose of the article is to form information support for managing the economic security of enterprises in the high-tech sector of the economy in the context of post-pandemic modernization. (shrink)

Although big-data research has met with multiple controversies in diverse fields, political and security implications of big data in life sciences have received less attention. This paper explores how threats and risks are anticipated and acted on in biobanking, which builds research repositories for biomedical samples and data. Focusing on the biggest harmonisation cluster of biomedical research in Europe, BBMRI-ERIC, the paper analyses different logics of risk in the anticipatory discourse on biobanking. Based on document analysis, interviews with ELSI (...) experts, and field research, three types of framing of risk are reconstructed: data security, privacy, and data misuse. The paper finds that these logics downplay the broader social and political context and reflects on the limits of the practices of anticipatory governance in biobanking. It argues that this regime of governance can make it difficult for biobanks to address possible future challenges, such as access to biomedical data by authorities, pressures for integrating biobank data with other type of personal data, or their use for profiling beyond medical purposes. To address potential controversies and societal implications related to the use of big data in health research and medicine, the paper suggests to expand the vocabulary and practices of anticipatory governance, in the biobanking community and beyond. (shrink)

Promoting Farmer Managed Natural Regeneration (FMNR) aims to increase the productive capacities of farmer households. Under FMNR, farmers select and manage natural regeneration on farmlands and keep them under production. While FMNR contributes to the wealth of farming communities, its contribution to household food security has rarely been researched. We, therefore, used a mixed-methods approach to address the research gap by measuring FMNR’s contribution to food security among farmer households in the Talensi district of Ghana. We adopted the (...) Household Dietary Diversity Score (HDDS) and Food Consumption Score (FCS) to estimate food security status among 243 FMNR farmer households and 243 non-FMNR farmer households. Also, we performed a Chi-square test of independence to compare the frequency of each food group (present vs not present) between FMNR adopters and non-FMNR adopters to establish the relationship between adopting FMNR and consuming the FCS and HDDS food groups. Our results reveal that FMNR farmer households are more food secure than non-FMNR farmer households. The HHDS of the FMNR farmer households was 9.6, which is higher than the target value of 9.1. Conversely, the HHDS of the non-FMNR farmer households was 4.3, which is lower than the target value of 9.1. Up to 86% and 37% of the FMNR farmer households and non-FMNR farmer households fell within acceptable FCS; 15% and 17% of FMNR farmer households and non-FMNR farmer households fell within borderline FCS. While none of the FMNR farmer households fell within poor FCS, 46% of non-FMNR farmer households fell within poor FCS. Adopting FMNR is significantly related to consuming all food groups promoted and benefiting from FMNR practices. The paper recommends enabling farmers in semi-arid environments to practice and invest in FMNR for long-term returns to food security. (shrink)

Foreign security and defense policy is an interdependent component of securitymanagement. According to the neo-classical definition of security management in thefield of external security-defense policy, it includes a series of practices, strategies andprinciples aimed at protecting assets, information and resources from various threatsand risks through the development of civil and military skills. From the perspective ofthe realist theory, the nature of the international structure is defined by its organizingprinciple, that is, the balance and distribution of power (...) between states and internationalinstitutions. Hence, the question arises as to what is the position and role of small statesin the international system in terms of security management, from where the main hypothesisof this paper derives, which highlights the need for appropriate management ofsecurity trends, both at the national level and in wider international context.Through the application of an inductive method of qualitative analysis of primaryand secondary sources, comparative presentation of combined data and identificationof causal influences, the role of the mechanisms that have the most potential to achievean optimal outcome in the positioning of small states with limited political influence anda low security share is highlighted. Thus, through the application of appropriate modelsfor the implementation of security management functions, small states create space forparticipation in security maneuvers. (shrink)

North Sumatra and West Java in Indonesia, the Andes of Bolivia and Peru, Western Province, the Coast and Machakos in Kenya, were Small Ruminant Collaborative Research Support Program (SR-CRSP) sites in which the role of small ruminants was studied and where technological interventions were designed. In all cases the target groups were poor rural households that could maintain sheep, goats, or South American camelids. The objective was to increase the welfare of families through the use of small ruminant technologies. Access (...) to and control of resources, and intrahousehold dynamics were analyzed to understand if, how, and when, technological interventions help achieve this objective. The way in which the studied villages integrate into the market, the specific role that livestock and other productive enterprises play in the household economy, the risks faced by families in rural areas condition the role of livestock and other resource management technologies. As an asset, small and large stock are gendered, but this is qualified by the alternatives that household members have. Small ruminants under the domain of women, either through production or marketing, are shown to contribute to in-kind consumption or, as liquid assets, to household welfare purchases, in the case of Andean agropastoral households and households in Kenya. Women are also managers of the grazing areas, which are often fallow fields. The research experiences show the relationship between gender, resource management, and the ability to build livestock assets and security, in different houehold production systems. (shrink)

Intensification of entrepreneurial activity in a post-pandemic space requires improved management both at the level of economic security and at the level of the entire enterprise. The expediency of the transition from the extensive type of development of the load management system is substantiated. The scientific approaches to the interpretation of the terms "intensification", "management" and "economic behaviour" are generalized. The attention is focused on the need to create a safe development environment for each enterprise. The (...) expediency of interpreting the term “management intensification” as the influence of a managed subsystem on a managed one with the active use of new technologies and techniques, forms of labour organization, rational use, motivation and development to achieve the objectives is substantiated. The essence of the term “economic behaviour” is considered through the process of development and implementation of managerial decisions, which determine the interaction of the managing and managed subsystems with the subsequent change in the current state and development trends of the entire system. The tasks of security subjects regarding the emergence of new challenges, risks and threats in the face of intensified management of the economic behaviour of enterprises in the post-pandemic conditions of the existence of society are determined. (shrink)

Management of different types of partnerships plays a decisive role in company performance. Complex business ventures, such as those created to serve low-income populations, usually include both cross- and same-sector partnerships. However, the initial diversity featured in these alliance portfolios diminishes as companies take their ventures up to scale. This article develops theoretical propositions about the evolution and configuration patterns of portfolios that include both cross- and same-sector partnerships. Two longitudinal case studies serve to illustrate the theoretical framework (...) developed for alliance portfolios that include both types of partnerships. Companies that create such portfolios adopt partnership strategies that follow paths also identified in the evolution of portfolios only made up of partnerships with other private firms: i.e., an evolution from adapting to shaping and exploiting strategies. (shrink)

Purpose This paper aims to identify organizations’ information security issues and to explore dynamic, organizational culture and contingency theories to develop an implementable framework for information security systems in human service organizations based soundly in theory and practice. Design/methodology/approach The paper includes a critical review of global information security management issues for HSOs and relevant multi-disciplinary organizational theories to address them. Findings Effective information security management can be particularly challenging to HSO because of their (...) use of volunteer staff in a borderless electronic environment. Organizations’ lack of recognition of the need for staff awareness of information security threats and for training in secure work practices, particularly in terms of maintaining clients’ privacy and confidentiality, is a major issue. The dynamic theory of organizational knowledge creation, organizational culture theory and contingency theory were identified as the most suitable theoretical perspectives to address this issue and underpin an effective information security management framework for HSOs. Research limitations/implications The theory-based framework presented here has not been tested in practice. Such testing will be carried out in further research. Originality/value Currently, there is no framework for information security systems in HSOs. The framework developed here provides a foundation on which HSO can build information security systems specific to their needs. (shrink)

Firewalls are an important tool in the assurance of network security. Packet filtering firewalls are configured by providing a set of rules that identify how to handle individual data packets that arrive at the firewall. In large firewall configurations, conflicts may arise between these rules. Argumentation provides a way of handling conflicts such that their origin is illuminated, and hence can help a system administrator understand the effects of a given configuration. To show how argumentation might help in (...) this domain we examine the use of a system of metalevel argumentation for firewall configuration, showing how it makes conflicts and their origins clear, and showing how different instantiations of a metalevel argumentation system provide alternative ways to resolve conflicts. (shrink)

In this article, I offer an outline of the papers comprising the special issue. I also provide a brief overview of its topic, namely, the friction between cyber security measures and individual rights. I consider such a friction to be a new and exacerbated version of what Mill called ‘the struggle between liberties and authorities,’ and I claim that the struggle arises because of the involvement of public authorities in the management of the cyber sphere, for technological and (...) state power can put individual rights, such as privacy, anonymity and freedom of speech, under sharp devaluating pressure. Finally, I conclude by stressing the need to reach an ethical balance to fine-tune cyber security measures and individual rights. (shrink)

Firewalls are an important tool in the assurance of network security. Packet filtering firewalls are configured by providing a set of rules that identify how to handle individual data packets that arrive at the firewall. In large firewall configurations, conflicts may arise between these rules. Argumentation provides a way of handling conflicts such that their origin is illuminated, and hence can help a system administrator understand the effects of a given configuration. To show how argumentation might help in (...) this domain we examine the use of a system of metalevel argumentation for firewall configuration, showing how it makes conflicts and their origins clear, and showing how different instantiations of a metalevel argumentation system provide alternative ways to resolve conflicts. (shrink)

Prosocial motivation refers to the employees’ willingness to invest for the sake of helping others. It improves basic and applied research behaviors of employees and the interaction between them. Employees’ innovation behavior depends on prosocial motivation because the motivation to protect the interests of others may promote knowledge sharing and knowledge coupling. However, there is a research gap in solving the optimal solution of prosocial motivations that facilitates different types of innovation behaviors based on the combination of prosocial motivations. We (...) perform a qualitative comparative study on the effect of the motivation configurations on innovation behaviors. We find that highly basic and highly applied research behaviors share in common collectivism-based, principlism-based, contextual, and situational motivations which work in all configurations. But the core conditions between the two are different, which are principlism-based and situational motivations, respectively. In addition, both highly basic-to-applied and highly applied-to-basic transformation behaviors share the same core condition and the same secondary conditions with highly basic and highly applied research behaviors, respectively. Moreover, the behaviors of non-highly basic research and non-highly basic-to-applied transformation share the severe absence of egoism-based motivation as the core condition in common. Non-highly behaviors of applied research and applied-to-basic transformation have a common point of the severe absence of the pressure-based type as the key. Finally, we also analyze active and passive prosocial degrees of all types of high/non-high innovation behaviors. Our study deepens the academics’ thinking on multi-dimensional prosocial motivation and the classification management of coupling innovation behavior and provides implications for practice. (shrink)

Digitalization has become a cornerstone of competitiveness in the industrial arena, especially in the cases of small lot sizes with many variants in the goods produced. Managers of industrial facilities have to handle the complexity that comes along with Industry 4.0 in diverse dimensions to leverage the potentials of digitalization for their sites. This article describes major drivers of this complexity in current industrial automation to outline the environment of today’s challenges for managers of this technical transition—and shows how managed (...) industrial security services can contribute to stabilize the industrial system. An outlook is given to future automation scenarios as well as the major concepts involved in their protection. (shrink)

An intelligent climate and watering agriculture system is presented that is controlled with Android application for smart water consumption considering small and medium ruler agricultural fields. Data privacy and security as a big challenge in current Internet of Things (IoT) applications, as with the increase in number of connecting devices, these devices are now more vulnerable to security threats. An intelligent fuzzy logic and blockchain technology is implemented for timely analysis and securing the network. The proposed design consists (...) of various sensors that collect real-time data from environment and field such as temperature, soil moisture, light intensity, and humidity. The sensed field information is stored in IoT cloud platform, and after the analysis of entries, watering is scheduled by implementing the intelligent fuzzy logic and blockchain. The intelligent fuzzy logic based on different set of rules for making smart decisions to meet the watering requirements of plant and blockchain technology provides necessary security to the IoT-enabled system. The implementation of blockchain technology allows access only to the trusted devices and manages the network. From the experimentation, it is observed that the proposed system is highly scalable and secure. Multiple users at the same time can monitor and interact with the system remotely by using the proposed intelligent agricultural system. The decisions are taken by applying intelligent fuzzy logic based on input variables, and an alert is transmitted about watering requirements of a field to the user. The proposed system is capable of notifying users for turning water motor on and off. The experimental outcomes of the proposed system also reveal that it is an efficient and highly secure application, which is capable of handling the process of watering the plants. (shrink)

Consumer indirect misbehavior in access-based consumption is a significant challenge for enterprises. The literature is in short of a deep understanding of the antecedent conditions of consumer indirect misbehavior in this context and limited by inconsistent findings, calling for developing a holistic and integrative theoretical framework. This study integrates three commonly used theoretical perspectives in the consumer misbehavior literature to present holistic archetypes of consumer indirect misbehavior formation. In accordance with this theoretical objective, we adopted an emerging approach for configurational (...) analysis, i.e., fuzzy-set qualitative comparative analysis, to analyze the complex combinations of six influencing factors. We collected data using a scenario-based field survey of 264 experienced consumers of a popular bike-sharing service in China. The scenarios were developed based on relevant literature and a Delphi study. The fsQCA results reveal multiple configurations for high and low levels of consumer misbehavior intention. Specifically, perceived benefits and moral definition play important roles, while the effect of sanctions is highly dependent on other factors. These results lead us to derive three theoretical propositions for antecedent conditions leading to consumers’ indirect misbehavior intentions in access-based consumption. This study enriches our understanding of the causes of misbehavior and provides novel insights for management practitioners to take appropriate countermeasures. (shrink)

Organizational change surrounding the security of identifiable health information has become imperative. This is a significant challenge for managers who are held responsible for loss of privacy through faulty security procedures. Management cannot completely secure the organization and still provide employees and customers with the information and services they need. Organizations must decide how much and what type of security they need, how to assign priorities, and how to manage security as the organization evolves in (...) a competitive environment. (shrink)

The role of African higher education institutions has been embedded within the socio-economic and historical contexts of the continent. Understanding the nature of African universities, their roles in African societies, and their place in the global knowledge system demands comprehensive reflection of the historical trajectories of the sector itself. In order to re-imagine the future of African higher education, it is important not only to reconstruct the past by uncovering facts but also to deconstruct it by challenging the nature of (...) established truth on which historical evidences are created. This article challenges and deconstructs dominant narratives on the historical trajectories and configurations of progress in African higher education systems. The article provides a thorough analysis of major trends, developments and challenges that the sector has been facing through time with the intention of reimaging and constructing the notion of a new or alternative future that addresses the recurrent challenges of the sector. The notion of creating the new African university carries a fundamental inquiry asking: ‘What it means to be an African university?’ ‘What role do they play in African societies?’ and ‘How do African institutions manage to strike a balance between the individual, social and corporate responsibilities interacting with their stakeholders?’ This article interrogates the intricate pattern of interactions among African societies and higher education institutions, reflecting on historical trends and critical challenges facing the sector that have been negatively impacting the pace of realising the desired future. (shrink)

In Risk Management, security issues arise from complex relations among objects and agents, their capabilities and vulnerabilities, the events they are involved in, and the value and risk they ensue to the stakeholders at hand. Further, there are patterns involving these relations that crosscut many domains, ranging from information security to public safety. Understanding and forming a shared conceptualization and vocabulary about these notions and their relations is fundamental for modeling the corresponding scenarios, so that proper (...) class='Hi'>security countermeasures can be devised. Ontologies are instruments developed to address these conceptual clarification and terminological systematization issues. Over the years, several ontologies have been proposed in Risk Management and Security Engineering. However, as shown in recent literature, they fall short in many respects, including generality and expressivity - the latter impacting on their interoperability with related models. We propose a Reference Ontology for Security Engineering (ROSE) from a Risk Treatment perspective. Our proposal leverages on two existing Reference Ontologies: the Common Ontology of Value and Risk and a Reference Ontology of Prevention, both of which are grounded on the Unified Foundational Ontology (UFO). ROSE is employed for modeling and analysing some cases, in particular providing clarification to the semantically overloaded notion of Security Mechanism. (shrink)

We propose a model that identifies the configurations of relations between environmental practices and other management practices that can improve employee performance, measured as labor productivity. To test our model, we use the qualitative comparative analysis methodology, which allows us to demonstrate empirically how different configurations of management practices, including environmental practices, quality management systems, teamwork, and interorganizational relations, contribute to work systems in ways that increase labor productivity. Our results, based on data from 4,975 employees from (...) 1,866 firms, show that environmental practices are associated with higher labor productivity only when they are combined with other management practices. (shrink)

To understand ethical consumer choice, it should be studied from a holistic, configurational perspective. We use fuzzy-set qualitative comparative analysis (fsQCA) ( N = 715) with a randomized experiment in the context of animal welfare to examine (a) the interdependencies of factors aiding or impeding ethical choice, and (b) whether ethical choices occur differently in a loss frame than in a gain frame. We identify several alternative pathways to ethical choice and non-choice, and within these pathways, we reveal substitution effects, (...) complementarities, and contingencies, reflecting the complexities of consumer choice. Furthermore, we demonstrate how ethical choice results more easily in a loss frame, and non-choice more easily in a gain frame, but how framing can also be irrelevant in certain situations. We contribute theoretically to ethical consumer choice in general and to food choice in particular by showing how it is the interplay of several factors in complex configurations that determines whether the situation favors ethical choice or non-choice. We outline important management and policy implications of our findings. (shrink)

Big data technologies are entering the world of ageing computer systems running critical infrastructures. These innovations promise to afford rapid Internet connectivity, remote operations or predictive maintenance. As legacy critical infrastructures were traditionally disconnected from the Internet, the prospect of their modernisation necessitates an inquiry into cyber security and how it intersects with traditional engineering requirements like safety, reliability or resilience. Looking at how the adoption of big data technologies in critical infrastructures shapes understandings of risk management, we (...) focus on a specific case study from the cyber security governance: the EU Network and Information Systems Security Directive. We argue that the implementation of Network and Information Systems Security Directive is the first step in the integration of safety and security through novel risk management practices. Therefore, it is the move towards legitimising the modernisation of critical infrastructures. But we also show that security risk management practices cannot be directly transplanted from the safety realm, as cyber security is grounded in anticipation of the future adversarial behaviours rather than the history of equipment failure rates. Our analysis offers several postulates for the emerging research agenda on big data in complex engineering systems. Building on the conceptualisations of safety and security grounded in the materialist literature across Science and Technology Studies and Organisational Sociology, we call for a better understanding of the ‘making of’ technologies, standardisation processes and engineering knowledge in a quest to build safe and secure critical infrastructures. (shrink)

Managers often ask why their firm should have an ethics program, especially if no one has complained about unethical behavior. The pursuit of business ethics can cost money, they say. It can lose sales to less scrupulous competitors and can drain management time and energy. But as Harvard business professor Francis Aguilar points out, ethics scandals (such as over Beech-Nut's erzatz "apple juice" or Sears's padded car repair bills) can severely damage a firm, with punishing legal penalties, bad publicity, (...) and irreparably injured customer relations. Equally important if less obvious, unethical behavior can undermine a firm's organizational spirit. On the other hand, Aguilar argues, in a well run firm, ethical programs can actually enhance corporate performance, strengthening the company at every level and supercharging employee risk taking and innovation. In Managing Corporate Ethics, Aguilar shows managers how to create ethical programs within their organizations that not only discourage large-scale wrongdoing, but can contribute substantially to the achievement of corporate excellence. Aguilar's program is down-to-earth and comprehensive, and based on his extensive research on highly successful, ethical companies, both large and small. He recommends action on three fronts: first, get senior management to provide effective ethical leadership; second, set up an ethics program that promotes concern for the interests of people affected by the firm's operations and that provides safeguards against corrupting business pressures; and third, staff the company with ethical people and surround the organization with ethical advisors (including legal, financial, accounting, tax, and marketing consultants). To illuminate this three-step program, Aguilar incorporates the lessons learned in his in-depth study of ten prominent firms with proven successful ethics programs--among them Hewlett-Packard, Johnson & Johnson, Nucor Steel, Cray Research, ServiceMaster, and Texas Instruments. He examines Lincoln Electric's attention to compensation and job security to ensure quality products and to reduce the pressure or temptation to act unethically. He shows how General Mills, while pushing product line managers to compete aggressively, uses corporate staff units to guard against illegal or unacceptable claims (testing cake recipes, for example, to see if a product's quality fails under the less-than-perfect conditions of a normal kitchen). And he details how Armstrong World Industries uses pep talks, inspirational stories, role models, and ready access to management to promote ethical standards among employees. Throughout, Aguilar demonstrates convincingly that an ethical program pays dividends: that employees, suppliers, customers, and the community at large know when they are being treated in a positive and constructive manner, and are likely to respond in kind. Packed with real life examples of successful (and failed) ethical programs, Managing Corporate Ethics is a valuable roadmap to an often overlooked source of business success. (shrink)

La gestión del conocimiento es un proceso relacionado con la producción, transmisión y utilización del conocimiento y su pertinencia para el desempeño organizacional; en la actualidad han aparecido diversidad de modelos que prescriben su configuración. El presente artículo describe el modelo que fundamenta teórica y metodológicamente la aplicación de la gestión del conocimiento en el Centro de Desarrollo de las Ciencias Sociales y Humanísticas en Salud. Esta entidad dedicada a la producción y transmisión del conocimiento científico en estas áreas de (...) conocimiento, no contaba con un modelo que permitiera estructurar el funcionamiento del proceso de su construcción y difusión en su interior y hacia el contexto. El modelo propuesto atiende la especificidad de los procesos de la entidad, y guía teórica y metodológicamente los flujos de información y conocimientos, las redes de actores presentes y los procesos de gestión de conocimiento que se integran en la dinámica de la organización. Knowledge management is a process related to the production, transmission and use of knowledge and its relevance to the organizational performance; nowadays there are several models that prescribe its configuration. This article describes a model that theoretically and methodologically bases the implementation of knowledge management on the Centre for the development of social and humanistic sciences in Health. This entity devoted to the production and transmission of scientific knowledge in these areas of knowledge, did not have a model that allow to structure the operation of its construction and diffusion process from inside and towards the context. The proposed model deals with specificities of the entity´ s processes, and theoretically and methodologically leads flows of information and knowledge, networks of actors and knowledge management processes that are integrated into the dynamics of the organization. (shrink)

Purpose This study aims to ascertain the impact of data collecting awareness on perceived information security concerns and information-sharing behavior on social networking sites. Design/methodology/approach Based on communication privacy management theory, the study forecasted the relationship between information-sharing behavior and awareness of data collecting purposes, data collection tactics and perceived security risk using structural equation modeling analysis and one-way ANOVA. The sample size of 521 young social media users in Vietnam, ages 18 to 34, was made up (...) of 26.7% men and 73.3% women. When constructing the questionnaire survey method with lone source respondents, the individual’s unique awareness and experiences with using online social networks (OSNs) were taken into account. Findings The results of the investigation demonstrate a significant relationship between information-sharing and awareness of data collecting, perceptions of information security threats and behavior. Social media users have used OSN privacy settings and paid attention to the sharing restriction because they are concerned about data harvesting. Research limitations/implications This study was conducted among young Vietnamese social media users, reflecting specific characteristics prevalent in the Vietnamese environment, and hence may be invalid in other nations’ circumstances. Practical implications Social media platform providers should improve user connectivity by implementing transparent privacy policies that allow users to choose how their data are used; have clear privacy statements and specific policies governing the use of social media users’ data that respect users’ consent to use their data; and thoroughly communicate how they collect and use user data while promptly detecting any potential vulnerabilities within their systems. Originality/value The authors ascertain that the material presented in this manuscript will not infringe upon any statutory copyright and that the manuscript will not be submitted elsewhere while under Journal of Information, Communication and Ethics in Society review. (shrink)

Moving away from simple data sharing within the science community towards cross-organizational collaboration scenarios significantly increased challenges related to security and privacy. They need to be addressed in order to make cross-organizational applications such as collaborative working environments a business proposition within communities such as eHealth, construction or manufacturing. Increasingly distributed scenarios where many different types of services need to be combined in order to implement semantically enriched business processes demand new approaches to security within such dynamic Virtual (...) Organizations. The allocation of access rights need to be possible in an easy and controlled way in order to allow inexperienced users to maintain the information and ensure compliance e.g. with legal and privacy related regulations. In this paper the focus is how security concepts originating from the Grid domain have been applied for collaborative working environments. The chosen scenarios are a Virtual Laboratory for Infectious Diseases (ViroLab) and different collaborative environments from the engineering domain as defined within the CoSpaces project. The requirements from these scenarios are analyzed and a security model enabling such dynamic, secure and trustworthy collaborations is presented. (shrink)

Enterprise Risk Management involves the process of identification, evaluation, treatment, and communication regarding risks throughout the enterprise. To support the tasks associated with this process, several frameworks and modeling languages have been proposed, such as the Risk and Security Overlay (RSO) of ArchiMate. An ontological investigation of this artifact would reveal its adequacy, capabilities, and limitations w.r.t. the domain of risk and security. Based on that, a language redesign can be proposed as a refinement. Such analysis and (...) redesign have been executed for the risk elements of the RSO grounded in the Common Ontology of Value and Risk. The next step along this line of research is to address the following research problems: What would be the outcome of an ontological analysis of security-related elements of the RSO? That is, can we identify other semantic deficiencies in the RSO through an ontological analysis? Once such an analysis is provided, can we redesign the security elements of the RSO accordingly, in order to produce an improved artifact? Here, with the aid of the Reference Ontology for Security Engineering (ROSE) and the ontological theory of prevention behind it, we address the remaining gap by proceeding with an ontological analysis of the security-related constructs of the RSO. The outcome of this assessment is an ontology-based redesign of the ArchiMate language regarding security modeling. In a nutshell, we report the following contributions: (1) an ontological analysis of the RSO that identifies six limitations concerning security modeling; (2) because of the key role of the notion of prevention in security modeling, the introduction of the ontological theory of prevention in ArchiMate; (3) a well-founded redesign of security elements of ArchiMate; and (4) ontology-based security modeling patterns that are logical consequences of our proposal of redesign due to its underlying ontology of security. As a form of evaluation, we show that our proposal can describe risk treatment options, according to ISO 31000. Finally, besides presenting multiple examples, we proceed with a real-world illustrative application taken from the cybersecurity domain. (shrink)

We study access control policies based on the says operator by introducing a logical framework called Fibred Security Language (FSL) which is able to deal with features like joint responsibility between sets of principals and to identify them by means of first-order formulas. FSL is based on a multimodal logic methodology. We first discuss the main contributions from the expressiveness point of view, we give semantics for the language both for classical and intuitionistic fragment), we then prove that in (...) order to express well-known properties like ‘speaks-for’ or ‘hand-off’, defined in terms of says, we do not need second-order logic (unlike previous approaches) but a decidable fragment of first-order logic suffices. We propose a model-driven study of the says axiomatization by constraining the Kripke models in order to respect desirable security properties, we study how existing access control logics can be translated into FSL and we give completeness for the logic. (shrink)

Globally, academic integrity and misconduct is a continuing conundrum for education institutions. Whilst the online delivery of education is not new, the onset of Covid-19 with accompanying health and safety limitations and the consequential rapid transition to emergency online delivery of education has, for many, exacerbated the need to focus on emerging potential for new forms of student academic misconduct i.e., e-dishonesty. This paper presents the strategies developed by a higher education institution specializing in university courses for safety and (...) class='Hi'>security professionals in the United Arab Emirates to address academic integrity during Covid-19 and beyond. The fundamental approach draws on lessons learnt from across the education community and focuses on engaging a comprehensive whole of Academy commitment to a high standard of academic integrity. The research investigated the outcomes of the academic integrity interventions in a total student population of 631. The early trending results of the strategies are encouraging, whilst monitoring of the ever-changing academic assessment landscape is pivotal to ensure these early trends are validated and sustained. The strategies developed and deployed by the Academy are replicable and offer a contribution to the demanding and complex challenge of establishing academic integrity within educational institutions across the world. (shrink)

Despite chatbots’ increasing popularity, firms often fail to fully achieve their benefits because of their underutilization. We argue that ethical concerns dealing with chatbot-related privacy and security may prevent firms from developing a culture of embracing chatbot use and fully integrating chatbots into their workflows. Our research draws upon the stimulus-organism-response theory (SOR) and a study by Floridi et al. (Minds and Machines, 28:689–707, 2018 ) on the ethical artificial intelligence framework to investigate how chatbot affordances can foster employees’ (...) positive perceptions of privacy protection and security, which may increase perceived ethics in beneficence and ultimately support recommendation intentions. To validate our proposed research model and provide a robust understanding of chatbot-related ethics, we conducted two studies following a mixed-methods design. We used Study 1 as the quantitative phase to collect survey data from full-time marketing employees, and the results provided strong support for our research model based on the relevant theory and literature. We used Study 2 as the qualitative phase to collect interview data to further validate our research model, and the results confirmed Study 1’s quantitative findings and provided complementary insights into the phenomenon of interest. Our studies contribute to the literature by providing initial insights into chatbot-related ethics through the exploration of chatbot affordances, security, and privacy protection as the antecedents and through depictions of how these variables foster employees’ perceived ethics in beneficence and recommendation intention. Our results can inform practitioners how to develop ethics involving chatbots and promote a chatbot-friendly culture such that firms can fully achieve chatbots’ benefits and can thus increase their competitive advantages in emerging chatbot marketing. (shrink)

Atomic energy developed from 1940 as a subject shrouded in secrecy. Identified successively as a crucial element in military strategy, national status and export aspirations, the research and development of atomic piles (nuclear chain-reactors) were nurtured at isolated installations. Like monastic orders, new national laboratories managed their specialist workers in occupational environments that were simultaneously cosseted and constrained, defining regional variants of a new state-managed discipline: reactor technology. This paper discusses the significance of security in defining the new subject (...) in the USA, UK and Canada – wartime allies with similar political traditions but distinct trajectories in this field during the Cold War. The intellectual borders and content of the subject developed differently in each country, shaped under the umbrella of secrecy by disparate clusters of expertise, industrial traditions, and national goals. The nascent cadre was contained until the mid 1950s by classified publications and state-sponsored specialist courses. The early context of high security filtered its members and capped enduringly both their professional aspirations and public engagement. (shrink)

This paper describes the design of a control and management network (orderwire) for a mobile wireless Asynchronous Transfer Mode (ATM) network. This mobile wireless ATM network is part of the Rapidly Deployable Radio Network (RDRN). The orderwire system consists of a packet radio network which overlays the mobile wireless ATM network, each network element in this network uses Global Positioning System (GPS) information to control a beamforming antenna subsystem which provides for spatial reuse. This paper also proposes a novel (...) Virtual Network Configuration (VNC) algorithm for predictive network configuration. A mobile ATM Private Network-Network Interface (PNNI) based on VNC is also discussed. Finally, as a prelude to the system implementation, results of a Maisie simulation of the orderwire system are discussed. (shrink)