Volume : 9, Issue : 8, AUG 2023
STATISTICAL ANALYSIS OF CYBER SECURITY IN BUSINESS ORGANIZATIONS
DR. ABDULBASIT BANGA
Abstract
Many more corporate entities today are utilizing ICTs to identify opportunities for innovative and customer-centric, value-added products and services. Indeed, information systems have been key characteristics of any growing and successful business, as they utilize ICTs for business value creation. The key motivation for the huge investment in IT infrastructure is to ensure an upsurge in revenue and retention of a sizable market share. Computer usage policy is a document that provides guidelines that regulate the acceptable usage of these systems by end users. The provision of these guidelines also serves as benchmark metrics in assessing the abuse or misuse of corporate information systems. This misuse and/ or abuse are referred to as violations of computer usage in this study. 10 users selected randomly from within each unit of a multi-lateral company, were observed for violations. Live computer forensics techniques utilizing EnCase, Microsoft reporting tools, WinHex, etc. This paper further analyzes and addresses the causes and effects and offers measures to mitigate computer usage violations.
Keywords
LIVE COMPUTER FORENSICS, COMPUTER USAGE POLICY, CORPORATE POLICY VIOLATIONS, LIVE DIGITAL FORENSICS, DATA SHARING, AND USE.
Article : Download PDF
Cite This Article
-
Article No : 3
Number of Downloads : 543
References
1. Ezer Osei Yeboah-Boateng,” Cyber-Security Challenges with SMEs in Developing Economies: Issues of Confidentiality, Integrity & Availability”, Ph.D. Thesis, Institute for Elektroniske Systemer, Aalborg Universitet, vol.1, ed.1, ISBN: 978-87-7152-038-5, 2013.
2. David M Smith,” The Cost of Lost Data-The importance of investing in that ’ounce of prevention”, Graziadio Business Review, Pepperdine University, vol.6, no.3, 2003
3. ” An Information Resource for Data Breach Prevention and Response”, Data Breach Statistics, IBM Security Services, 2014
4. ” Report Cyber Risks”, Cybersecurity and Communications External Affairs, Homeland Security, December 2013. [Accessed 01st Feb 2015] www.dhs.gov/report-cyber-risks
5. B Ruppert,” Protecting Against Insider Attacks” - White Paper, SANS Institute, 2009
6. Deb Shinder,” Protecting Against Insider Attacks in Todays Network Environments” - White Paper, WindowsSecurity.com, March 2011
7. Garo Doudian,” Generic Accounts and Non-repudiation,” SANS/ GIAC Practical Assignment for Glssal Information Assurance Certification, Version: 1.4b, June 2004.
8. ” Active Directory Domain Services Overview,” Microsoft Corporation, February 2012 [Accessed 01st Feb 2015] www.technet.microsoft.com/en-us/library/hh831484.aspx
9. ” USB Device Registry Entries,” Microsoft Development Center - Hardware, Microsoft Corporation, [Accessed 01st Feb 2015] www.msdn.microsoft.com/en-us/library/windows/hardware/jj649944(v=vs.85)
10. John J Barbara,” Windows 7 Registry Forensics: Part 6,” Forensic Magazine-On the Scene and In the Lab, October 2012 [Accessed 01st Feb 2015] www.forensicmag.com/articles/2012/windows-7-registry-firebsucs-part-6
11. S Yadav,” Analysis of Digital Forensics and Investigation,” International Journal of Computer Science and Information Technology, vol.01, no.03, 2011
12. Rayan Jones,” Safer Live Forensics Acquisition” - A Research Report, Computer Science Laboratory, University of Kent at Canterbury, United Kingdom, 2006
13. Bill Nelson, Amelia Phillips, and Christopher Steuart,” Guide to Computer Forensics and Investigations,” edition. 04, Course Technology, Cengage Learning, 2010.
14. Roux and Falgoust,” Ethical Issues Raised by Data Acquisition Methods in Digital Forensics Research,” Journal of Information Ethics, vol.21, no.1, pp.40-60, 2012.
15. A Kumar,” Discovering Passwords in the Memory,” Paladion Networks, 2003
16. B Schneider,” The Home Computers Security Center,” Feb 2009 [Accessed 01 Feb 2015] www.lockdown.co.uk
17. V V Riabov,” SMTP - Simple Mail Transfer Protocol,” River College, 2005
