In 2014, we launched our open-access repository which offers full text access to conference proceedings from many of our events including the INC and HAISA series. These papers are free to access and distribute (subject to citing the source).
Twelfth International Symposium on Human Aspects of Information Security & Assurance (HAISA 2018)
Title: Analysis of Published Public Sector Information Security Incidents and Breaches to establish the Proportions of Human Error
Author(s): Mark Evans, Ying He, Iryana Yevseyeva, Helge Janicke
Keywords: Information security, incidents, breaches, human error, HEART, GISAT
Abstract: The information security field experiences a continuous stream of information security incidents and breaches, which are publicised by the media, public bodies and regulators. Despite the need for information security practices being recognised and in existence for some time the underlying general information security affecting tasks and causes of these incidents and breaches are not consistently understood, particularly with regard to human error. This paper analyses recent published incidents and breaches to establish the proportions of human error, and where possible subsequently utilises the HEART human reliability analysis technique, which is established within the safety field. This analysis provides an understanding of the proportions of incidents and breaches that relate to human error as well as the common types of tasks that result in these incidents and breaches through adoption of methods applied within the safety field.
Download count: 523
How to get this paper:
PDF copy of this paper is free to download. You may distribute this copy providing you cite this page as the source.