IDEAS home Printed from https://ideas.repec.org/a/gam/jsusta/v12y2020i24p10639-d465096.html
   My bibliography  Save this article

The Development of a Security Evaluation Model Focused on Information Leakage Protection for Sustainable Growth

Author

Listed:
  • Jawon Kim

    (Department of Convergence Security, Chung-Ang University, Seoul 06974, Korea)

  • Chanwoo Lee

    (Information Security & International Business Division, Douzone Forensic Center, Seoul 04523, Korea)

  • Hangbae Chang

    (Department of Industrial Security, Chung-Ang University, Seoul 06974, Korea)

Abstract

This research establishes a security evaluation model from the insider leakage perspective and suggests an objective evaluation measurement. Organizational security risks are fused and compounded both inside and outside the organization. Although multiple security controls are implemented to minimize an organization’s security risk, effective security control requires management to preemptively check the organization’s security level. Existing criteria for evaluating security level are limited to external security risks and have improper limit points for dealing with security risks that are fused and compounded within an organization. The focus of this study is the prevention of technical information leakage. Furthermore, we propose a method for measuring the level at which the objectivity of certain items is secured. We compiled 26 detailed evaluation items, considering the security requirements to prevent technical information leakage. We not only performed suitability, reliability, and factor analyses and statistical validation, but also established a method to measure the security level. This measurement method ensures the effectiveness and objectivity of the evaluation of security level, mitigating the risks of security incidents caused by insiders. The results serve as a reference for organizations when designing security evaluation criteria and automated tools based on our evaluation model for future research.

Suggested Citation

  • Jawon Kim & Chanwoo Lee & Hangbae Chang, 2020. "The Development of a Security Evaluation Model Focused on Information Leakage Protection for Sustainable Growth," Sustainability, MDPI, vol. 12(24), pages 1-20, December.
  • Handle: RePEc:gam:jsusta:v:12:y:2020:i:24:p:10639-:d:465096
    as

    Download full text from publisher

    File URL: https://www.mdpi.com/2071-1050/12/24/10639/pdf
    Download Restriction: no

    File URL: https://www.mdpi.com/2071-1050/12/24/10639/
    Download Restriction: no
    ---><---

    Citations

    Citations are extracted by the CitEc Project, subscribe to its RSS feed for this item.
    as


    Cited by:

    1. Hyunae Park & Youngcheon Yoo & Hwansoo Lee, 2021. "7S Model for Technology Protection of Organizations," Sustainability, MDPI, vol. 13(13), pages 1-25, June.
    2. Abdullah Baz & Riaz Ahmed & Suhel Ahmad Khan & Sudesh Kumar, 2023. "Security Risk Assessment Framework for the Healthcare Industry 5.0," Sustainability, MDPI, vol. 15(23), pages 1-27, December.
    3. Min Zeng & Chuanzhou Dian & Yaoyao Wei, 2022. "Risk Assessment of Insider Threats Based on IHFACS-BN," Sustainability, MDPI, vol. 15(1), pages 1-18, December.

    Corrections

    All material on this site has been provided by the respective publishers and authors. You can help correct errors and omissions. When requesting a correction, please mention this item's handle: RePEc:gam:jsusta:v:12:y:2020:i:24:p:10639-:d:465096. See general information about how to correct material in RePEc.

    If you have authored this item and are not yet registered with RePEc, we encourage you to do it here. This allows to link your profile to this item. It also allows you to accept potential citations to this item that we are uncertain about.

    We have no bibliographic references for this item. You can help adding them by using this form .

    If you know of missing items citing this one, you can help us creating those links by adding the relevant references in the same way as above, for each refering item. If you are a registered author of this item, you may also want to check the "citations" tab in your RePEc Author Service profile, as there may be some citations waiting for confirmation.

    For technical questions regarding this item, or to correct its authors, title, abstract, bibliographic or download information, contact: MDPI Indexing Manager (email available below). General contact details of provider: https://www.mdpi.com .

    Please note that corrections may take a couple of weeks to filter through the various RePEc services.

    IDEAS is a RePEc service. RePEc uses bibliographic data supplied by the respective publishers.