Institutional Repository

Towards a framework for securing a business against electronic identity theft

Show simple item record

dc.contributor.advisor Van der Merwe, Alta en
dc.contributor.author Bechan, Upasna en
dc.date.accessioned 2009-08-25T10:51:36Z
dc.date.available 2009-08-25T10:51:36Z
dc.date.issued 2009-08-25T10:51:36Z
dc.date.submitted 2008-11-30 en
dc.identifier.citation Bechan, Upasna (2009) Towards a framework for securing a business against electronic identity theft, University of South Africa, Pretoria, <http://hdl.handle.net/10500/1304> en
dc.identifier.uri http://hdl.handle.net/10500/1304
dc.description.abstract The continuing financial losses incurred by individuals and companies due to identity information being phished are necessitating more innovative approaches to solving the problem of phishing attacks at the company level. Security standards are developed by respected experts in the profession and are widely accepted in the industry. The purpose of this study was to investigate whether a standard can be adapted to develop a framework that may guide companies in determining how to protect themselves against phishing attacks. A qualitative approach using design research as the methodology was used during the research. The data collection took place by means of a literature survey and semi-structured interviews. The artefact developed was a phishing-prevention framework based on the ISO/IEC 17799 standard, and the evaluation thereof took place through test cases. The findings communicated to the managerial audience was a set of recommendations as a further investment in their security protection against phishing attacks; the findings communicated to the technical audience was the successful adaptation of an existing security standard to produce a usable framework. Further research initiatives should extend the types of test cases that the phishing-prevention framework was evaluated against, and explore the use of tools for determining compliance with the framework. en
dc.format.extent 1 online resource (x, 148 p. :|bill.)
dc.language.iso en en
dc.subject Phishing en
dc.subject Identity theft en
dc.subject Standards en
dc.subject Qualitative en
dc.subject Design science en
dc.subject ISO/IEC 17799 en
dc.subject Interviews en
dc.subject Framework en
dc.subject Security en
dc.subject.ddc 005.8
dc.subject.lcsh Phishing
dc.subject.lcsh Identity theft
dc.subject.lcsh Identity theft -- Prevention
dc.subject.lcsh Identity theft -- Prevention
dc.subject.lcsh Computer -- Access control
dc.title Towards a framework for securing a business against electronic identity theft en
dc.type Dissertation en
dc.contributor.email djagegjj@unisa.ac.za en
dc.description.department Theoretical Computing en
dc.description.degree M. Sc. (Information Systems) en


Files in this item

This item appears in the following Collection(s)

Show simple item record

Search UnisaIR


Browse

My Account

Statistics