Loughborough University
Leicestershire, UK
LE11 3TU
+44 (0)1509 263171
Loughborough University

Loughborough University Institutional Repository

Please use this identifier to cite or link to this item: https://dspace.lboro.ac.uk/2134/36539

Title: Human and organisational factors in cybersecurity: applying STAMP to explore vulnerabilities
Authors: Wright, Andrew
Jun, Gyuchan Thomas
Keywords: Information security
Cyber security
STAMP
Issue Date: 2019
Publisher: © Chartered Institute of Ergonomics & Human Factors
Citation: WRIGHT, A. and JUN, G.T., 2019. Human and organisational factors in cybersecurity: applying STAMP to explore vulnerabilities. IN: Ergonomics & Human Factors 2019: Proceedings of the Annual Conference of the Chartered Institute of Ergonomics & Human Factors, Stratford-upon-Avon, UK, 29 April-1 May 2019.
Abstract: The human and organisational factors contributing to information security are still poorly understood, primarily due to a lack of research and absence of suitable techniques to assess complex digital systems. This paper presents the application of the System-Theoretic Accident Models and Process (STAMP) technique to the 2013/2014 Target Corporation data breach. The aims of the study are to investigate the causal factors using a systemic approach, and to demonstrate the benefits of the technique to information security applications. A number of critical control flaws were identified through the STAMP analysis include: i) poor external and internal communication/co-ordination of new threats and vulnerabilities; ii) inadequate learning from past events, internally and externally; iii) a lack of proactive security management to understand and learn from system successes and good practices as well as system failures; iv) ineffective management and co-ordination with the supply chain and their security systems.
Description: This paper is closed access until after the conference has taken place.
Version: Accepted for publication
URI: https://dspace.lboro.ac.uk/2134/36539
Publisher Link: https://publications.ergonomics.org.uk/
Appears in Collections:Closed Access (Design School)

Files associated with this item:

File Description SizeFormat
STAMP research paper-submitted.pdfAccepted version416.25 kBAdobe PDFView/Open

 

SFX Query

Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.