Home > Research > Publications & Outputs > Human and Organizational Issues for Resilient C...
View graph of relations

Human and Organizational Issues for Resilient Communications

Research output: Contribution in Book/Report/Proceedings - With ISBN/ISSNChapter (peer-reviewed)peer-review

Published

Standard

Human and Organizational Issues for Resilient Communications. / Anderson, Tom; Busby, Jerry; Gouglidis, Antonios; Hough, Karen; Hutchison, David; Rouncefield, Mark.

Guide to Disaster-Resilient Communication Networks. ed. / Jacek Rak; David Hutchison. Cham : Springer, 2020. p. 791-807 (Computer Communications and Networks).

Research output: Contribution in Book/Report/Proceedings - With ISBN/ISSNChapter (peer-reviewed)peer-review

Harvard

Anderson, T, Busby, J, Gouglidis, A, Hough, K, Hutchison, D & Rouncefield, M 2020, Human and Organizational Issues for Resilient Communications. in J Rak & D Hutchison (eds), Guide to Disaster-Resilient Communication Networks. Computer Communications and Networks, Springer, Cham, pp. 791-807. <https://www.springer.com/gp/book/9783030446840>

APA

Anderson, T., Busby, J., Gouglidis, A., Hough, K., Hutchison, D., & Rouncefield, M. (2020). Human and Organizational Issues for Resilient Communications. In J. Rak, & D. Hutchison (Eds.), Guide to Disaster-Resilient Communication Networks (pp. 791-807). (Computer Communications and Networks). Springer. https://www.springer.com/gp/book/9783030446840

Vancouver

Anderson T, Busby J, Gouglidis A, Hough K, Hutchison D, Rouncefield M. Human and Organizational Issues for Resilient Communications. In Rak J, Hutchison D, editors, Guide to Disaster-Resilient Communication Networks. Cham: Springer. 2020. p. 791-807. (Computer Communications and Networks).

Author

Anderson, Tom ; Busby, Jerry ; Gouglidis, Antonios ; Hough, Karen ; Hutchison, David ; Rouncefield, Mark. / Human and Organizational Issues for Resilient Communications. Guide to Disaster-Resilient Communication Networks. editor / Jacek Rak ; David Hutchison. Cham : Springer, 2020. pp. 791-807 (Computer Communications and Networks).

Bibtex

@inbook{5cc30ee8533e464fa24d5b8439582339,
title = "Human and Organizational Issues for Resilient Communications",
abstract = "Human and organizational issues are able to create both vulnerabilities and resilience to threats. In this chapter, we investigate human and organizational factors, conducted through ethnographic studies of operators and sets of interviews with staff responsible for security, reliability and quality in two different organizations, which own and operate utility networks. Ethnography is a qualitative orientation to research that emphasizes the detailed observation and interview of people in naturally occurring settings. Our findings indicate that 'human error' forms the biggest threat to cyber-security and that there is a need for Security Operational Centres to document all cyber-security accidents. Also, we conclude that it will always be insufficient to assess mental security models in terms of their technical correctness, as it is sometimes more important to know how well they represent prevailing social issues and requirements. As a practical recommendation from this work, we suggest that utility organizations engage in penetration testing and perhaps other forms of vulnerability analysis, not only to discover specific vulnerabilities but also to learn more about the mental models they use.",
author = "Tom Anderson and Jerry Busby and Antonios Gouglidis and Karen Hough and David Hutchison and Mark Rouncefield",
year = "2020",
language = "English",
isbn = "9783030446840",
series = "Computer Communications and Networks",
publisher = "Springer",
pages = "791--807",
editor = "Rak, {Jacek } and Hutchison, {David }",
booktitle = "Guide to Disaster-Resilient Communication Networks",

}

RIS

TY - CHAP

T1 - Human and Organizational Issues for Resilient Communications

AU - Anderson, Tom

AU - Busby, Jerry

AU - Gouglidis, Antonios

AU - Hough, Karen

AU - Hutchison, David

AU - Rouncefield, Mark

PY - 2020

Y1 - 2020

N2 - Human and organizational issues are able to create both vulnerabilities and resilience to threats. In this chapter, we investigate human and organizational factors, conducted through ethnographic studies of operators and sets of interviews with staff responsible for security, reliability and quality in two different organizations, which own and operate utility networks. Ethnography is a qualitative orientation to research that emphasizes the detailed observation and interview of people in naturally occurring settings. Our findings indicate that 'human error' forms the biggest threat to cyber-security and that there is a need for Security Operational Centres to document all cyber-security accidents. Also, we conclude that it will always be insufficient to assess mental security models in terms of their technical correctness, as it is sometimes more important to know how well they represent prevailing social issues and requirements. As a practical recommendation from this work, we suggest that utility organizations engage in penetration testing and perhaps other forms of vulnerability analysis, not only to discover specific vulnerabilities but also to learn more about the mental models they use.

AB - Human and organizational issues are able to create both vulnerabilities and resilience to threats. In this chapter, we investigate human and organizational factors, conducted through ethnographic studies of operators and sets of interviews with staff responsible for security, reliability and quality in two different organizations, which own and operate utility networks. Ethnography is a qualitative orientation to research that emphasizes the detailed observation and interview of people in naturally occurring settings. Our findings indicate that 'human error' forms the biggest threat to cyber-security and that there is a need for Security Operational Centres to document all cyber-security accidents. Also, we conclude that it will always be insufficient to assess mental security models in terms of their technical correctness, as it is sometimes more important to know how well they represent prevailing social issues and requirements. As a practical recommendation from this work, we suggest that utility organizations engage in penetration testing and perhaps other forms of vulnerability analysis, not only to discover specific vulnerabilities but also to learn more about the mental models they use.

M3 - Chapter (peer-reviewed)

SN - 9783030446840

T3 - Computer Communications and Networks

SP - 791

EP - 807

BT - Guide to Disaster-Resilient Communication Networks

A2 - Rak, Jacek

A2 - Hutchison, David

PB - Springer

CY - Cham

ER -