Controls Mitigating the Risk of Confidential Information Disclosure by Facebook: Essential Concern in Auditing Information Security
Journal: TEM JOURNAL - Technology, Education, Management, Informatics (Vol.3, No. 2)Publication Date: 2014-05-23
Authors : Ivan Ognyanov Kuyumdzhiev;
Page : 113-119
Keywords : Facebook; audit; information security; security policy.;
Abstract
Facebook allows people to easily share information about themselves which in some cases could be classified as confidential or sensitive in the organisation they’re working for. In this paper we discuss the type of data stored by Facebook and the scope of the terms “confidential” and “sensitive data”. The intersection of these areas shows that there is high possibility for confidential data disclosure in organisations with none or ineffective security policy. This paper proposes a strategy for managing the risks of information leakage. We define five levels of controls against posting non-public data on Facebook - security policy, applications installed on employees’ workstations, specific router software or firmware, software in the cloud, Facebook itself. Advantages and disadvantages of every level are evaluated. As a result we propose developing of new control integrated in the social media.
Other Latest Articles
- Interdisciplinary Study of Numerical Methods and Power Plants Engineering
- On Instantaneous Power Dissipation in Class B Amplifier
- Repositioning the Women ‘August Meeting’ in South East Nigeria for Sustainable Development
- Antioxidant Activity of Heterocyclic Compounds Derived from 4-(4-Acetamidophenyl)-4-oxobut-2-enoic Acid
- Energy Saving Strategy based on Adaptive Transmission Power Scheme and Adaptive Network Configuration for WSN
Last modified: 2014-07-03 01:35:50