Enrico Nardelli – författare

Certification and Security in Inter-Organizational E-Services presents the proceedings of CSES 2004 - the 2nd International Workshop on Certification and Security in Inter-Organizational E-Services held within IFIP WCC in August 2004 in Toulouse, France.  Certification and security share a common technological basis in the reliable and efficient monitoring of executed and running processes; they likewise depend on the same fundamental organizational and economic principles.  As the range of services managed and accessed through communication networks grows throughout society, and given the legal value that is often attached to data treated or exchanged, it is critical to be able to certify the network transactions and ensure that the integrity of the involved computer-based systems is maintained.This collection of papers documents several important developments, and offers real-life application experiences, research results and methodological proposals of direct interest to systems experts and users in governmental, industrial and academic communities.

The field of services managed and accessed through communication networks is growing in magnitude throughout society. A crucial aspect of this process is the capability of certifying what has occurred in the interaction over the networks, and ensuring that the integrity of the involved computer-based systems was maintained. Certifying the execution of an e-service provided on the network as the result of the interaction among independent organizations is a critical area for the underlying IT-infrastructure. In fact, given the legal value that is often attached to data managed and exchanged during the execution of such an inter-organizational e-service, being able to document what was actually carried out is of the utmost importance. This is made more complex in cases where e-services are based on legacy systems managed by autonomous and independent organizations, as often happens in the public administration sector.Additionally, the whole area of security issues, from the basic (availability, authentication, integrity, confidentiality) to the more complex (for example, authorization, non-repudiation) involves the equally critical ability to track down responsibilities ("who did what"). This capability is mandatory to increase the presence and use of e-service IT-infrastructures. The two areas of certification and security have a common technological intersection, since both are based on the reliable and efficient monitoring of executed and running processes. Certification and security are as well fundamental processes in organizational and economic terms. This volume contains the edited proceedings of the International Workshop on Certification and Security in E-Services and the Workshop on E-Government and Security, which were sponsored by the International Federation for Information Processing (IFIP) and held in conjunction with the 17th World Computer Congress in Montreal, Quebec, Canada in August 2002.The result of in-depth debates among leading actors from government, industry and academia, this work discusses the technical and organizational aspects of these two areas and their interrelations, presenting both real-life application experiences and methodological proposals. It should be a useful reference book for specialists from both academia and industry involved in the growing field of IT services provided over the Internet.

Certification and Security in Inter-Organizational E-Services presents the proceedings of CSES 2004 - the 2nd International Workshop on Certification and Security in Inter-Organizational E-Services held within IFIP WCC in August 2004 in Toulouse, France.  Certification and security share a common technological basis in the reliable and efficient monitoring of executed and running processes; they likewise depend on the same fundamental organizational and economic principles.  As the range of services managed and accessed through communication networks grows throughout society, and given the legal value that is often attached to data treated or exchanged, it is critical to be able to certify the network transactions and ensure that the integrity of the involved computer-based systems is maintained.This collection of papers documents several important developments, and offers real-life application experiences, research results and methodological proposals of direct interest to systems experts and users in governmental, industrial and academic communities.

This volume contains the final proceedings of the special stream on security in E-government and E-business. This stream has been an integral part of the IFIP World Computer Congress 2002, that has taken place from 26-29 August 2002 in Montreal, Canada. The stream consisted of three events: one tutorial and two workshops. The tutorial was devoted to the theme "An Architecture for Information Se­ curity Management", and was presented by Prof. Dr. Basie von Solms (Past chairman of IFIP TC 11) and Prof. Dr. Jan Eloff (Past chairman of IFIP TC 11 WG 11.2). Both are from Rand Afrikaans University -Standard Bank Academy for Information Technology, Johannesburg, South Africa. The main purpose of the tutorial was to present and discuss an Architecture for Informa­ tion Security Management and was specifically of value for people involved in, or who wanted to find out more about the management of information secu­ rity in a company. It provided a reference framework covering all three of the relevant levels or dimensions of Information Security Management. The theme of the first workshop was "E-Government and Security" and was chaired by Leon Strous, CISA (De Nederlandsche Bank NY, The Netherlands and chairman of IFIP TC 11) and by Sabina Posadziejewski, I.S.P., MBA (Al­ berta Innovation and Science, Edmonton, Canada).

This book reports on the latest research and developments in the field of human factors in cybersecurity. It analyzes how the human vulnerabilities can be exploited by cybercriminals and proposes methods and tools to increase cybersecurity awareness. The chapters cover the social, economic and behavioral aspects of the cyberspace, providing a comprehensive perspective to manage cybersecurity risks.By gathering the proceedings of the AHFE Virtual Conference on Human Factors Cybersecurity, held on July 16–20, 2020, this book offers a timely perspective of key psychological and organizational factors influencing cybersecurity, reporting on technical tools, training methods and personnel management strategies that should enable achieving a holistic cyber protection for both individuals and organizations. By combining concepts and methods of engineering, education, computer science and psychology, it offers an inspiring guide for researchers and professionals, aswell as decision-makers, working at the interfaces of those fields.