Cryptography and computer communications security : extending the human security perimeter through a web of trust

Adeka, Muhammad I.

January 2015

This work modifies Shamir’s algorithm by sharing a random key that is used to lock up the secret data; as against sharing the data itself. This is significant in cloud computing, especially with homomorphic encryption. Using web design, the resultant scheme practically globalises secret sharing with authentications and inherent secondary applications. The work aims at improving cybersecurity via a joint exploitation of human factors and technology; a human-centred cybersecurity design as opposed to technology-centred. The completed functional scheme is tagged CDRSAS. The literature on secret sharing schemes is reviewed together with the concepts of human factors, trust, cyberspace/cryptology and an analysis on a 3-factor security assessment process. This is followed by the relevance of passwords within the context of human factors. The main research design/implementation and system performance are analysed, together with a proposal for a new antidote against 419 fraudsters. Two twin equations were invented in the investigation process; a pair each for secret sharing and a risk-centred security assessment technique. The building blocks/software used for the CDRSAS include Shamir’s algorithm, MD5, HTML5, PHP, Java, Servlets, JSP, Javascript, MySQL, JQuery, CSS, MATLAB, MS Excel, MS Visio, and Photoshop. The codes are developed in Eclipse IDE, and the Java-based system runs on Tomcat and Apache, using XAMPP Server. Its code units have passed JUnit tests. The system compares favourably with SSSS. Defeating socio-cryptanalysis in cyberspace requires strategies that are centred on human trust, trust-related human attributes, and technology. The PhD research is completed but there is scope for future work.

005.8

Employees' Role in Improving Information Systems Security

Aliti, Admirim, Akkaya, Deniz

January 2011

Information security is one of the most essential concerns in today’s organizations. IT departments in larger organizations are tasked to implement security, by both ensuring to have pertinent hardware and software, and likewise enlighten, teach and educate organization’s employees about security issues. The aim of this research is to focus on the human factor of the organization, which impacts the security of the information, since technological solutions of technical problems become incomprehensible without human recognition about security. If the security is not addressed in firms, this might lead to essential data of the organization to be compromised. This study explores ways to enhance information security and improve the human factor by integrating the crucial information security elements in organizations. Social constructivist worldview is adopted throughout the study, and an inductive based - qualitative approach, a single case study design and hermeneutical analysis for analyzing the observations and interviews are utilized. The research setting for this study is Växjö Municipality in Sweden. The empirical investigation suggests that human factor plays an essential role in maintaining information security, and organizations can improve employees’ role by keeping their security policies up to date and find the best ways to disseminate that information. As a result, this research comes up with “information security human management model” for organizations.

Information security

information security policy

human factor in organizations

employees' role

Information Systems

Prise en compte du facteur humain pour pallier les limites des démarches Lean : proposition d'un modèle de performance et d'une méthodologie d'accompagnement / Taking into account the human factor to overcome the limitations of the Lean approaches : proposal for a performance model and an accompanying methodology

Badets, Patrick

10 November 2016

Le Lean est une démarche qui consiste à éliminer les opérations à non-valeur ajoutée, utiliséepar les entreprises pour améliorer la performance des activités de production. Les entreprisesappliquant cette démarche observent des gains rapides sur le plan opérationnel mais,progressivement, certaines observent une chute des résultats opérationnels voire une dégradation dela santé des opérateurs. Nous cherchons à pallier ces limites et nous nous interrogeons sur la capacitédes acteurs de l’entreprise à les anticiper et à prendre des actions correctives. Pour cela, nous posonsla question du modèle de performance et de la prise de décision adoptés par les acteurs pour déployerle Lean. Nous proposons que les acteurs évaluent l’efficience des activités de production, transforméespar la démarche Lean, en prenant en compte non seulement la dimension opérationnelle de laperformance, mais aussi la dimension humaine intégrant l’activité de travail. Nous définissons unmodèle de performance qui supporte cette vision de l’Homme au travail « acteur ». Pour aider lesacteurs des entreprises à faire évoluer leur modèle de performance Lean existant, nous proposons uneméthodologie d’accompagnement basée sur une démarche de réingénierie intégrant unaccompagnement qui favorise l’évolution des représentations des acteurs au moyen d’unapprentissage sociocognitif. Cette méthodologie s’appuie sur un cadre et des outils de modélisationqui permettent de représenter les impacts de ce nouveau modèle de performance sur la prise dedécision et sur la pérennisation des bénéfices du lean. / Lean is an approach aiming at eliminating non-value added operations, used by companies to improve the performance of their production activities. Companies applying this approach are observing rapid gains in operational terms but gradually some observe a fall in operating results or a degradation of the health of work force. We seek to overcome these limits and we ask about the ability of those of the company to anticipate and to take corrective actions. For this, we question about the performance model and the decision adopted by corporate actors to deploy Lean. We propose thatcorporate actors evaluate the efficiency of production, processed by the Lean approach, taking into account not only the operational level of performance, but also the human dimension integrating realwork activity. We define a performance model that supports a kind of “actor” vision of man at work.To help corporate actors to change their existing model of Lean performance, we offer a support methodology based on a reengineering approach integrating coaching aimed at changing there presentations of the actors by a sociocognitive learning. This methodology is based on a framework and modeling tools to represent the impacts of this new performance model on the decision and on the sustainability of the lean benefits.

Lean

Organisation du travail

Management,

Modèle de performance

Prise de décision

Facteur Humain

Lean,

Work organization

Management,

Performance model

Decision making

Human Factor

Vliv lidského činitele na bezpečnost průmyslových pecí / Impact of Human Factor on Industrial Furnace Safety

Mukhametzianova, Leisan

January 2019

The presented doctoral thesis is focused on assessment of human factor impact on safety of industrial furnaces. Industrial furnaces are classified as machinery and belong to a group of industrial thermal equipment. The operation of industrial furnaces is burdened with the risks which the manufacturers and the furnace operators realize. The first part of the thesis presents an analysis of the current situation of legislation and scientific knowledges in the field of assessment of human factor impact on safety of industrial furnaces. In this part of the thesis the issue of human factor in other industrial branches: chemical industry, aviation and nuclear industry is also described. On the basis of conducted research the main aim of the thesis was established: preparation of a methodology for assessment of human factor impact on safety of industrial furnaces. Secondary targets were also listed. The second part deals with the assessment of risks connected with the operation of industrial furnaces and the assessment of human factor impact on safety of industrial furnaces. The furnace safety requirements, the process of furnaces risk assessment, the methods used for risk assessment and problems connected with the risk assessment are described. This part of the thesis explains the concept of human factor, presents a classification and description of the methods used for human reliability assessment, as well as the factors influencing the reliability of the operator. The third part of the thesis contains a proposed methodology for assessment of human factor impact on safety of industrial furnaces. Within the methodology performance shaping factors are stated, qualitative and quantitative assessment of human factor impact on safety of industrial furnaces is made and the system integration of the knowledges into the developed methodology is proposed – qualitative model for improvement of system state. The methodology is further verified on a real equipment – a hardening furnace.

Zvládání rizik při implementaci změn / Managing Risk when Implementing Changes

Anca, Marek

January 2020

This diploma thesis put its focus on dealing with risk management issues during the implementation of changes in a particular company with a focus on the human factor. The literature research is devoted to a professional description of topics related to the research issues of this diploma thesis. The following part describes the methods that were used to achieve the goal of the thesis. The next part distinguish the analysis of the current situation of the company, the design of measures that would minimize most of the risk factors and processes of the company. The last part presents a project for which risks are identified and possible measures are proposed in order to increase the probability of success.

Prevence selhání lidského činitele při rizikových činnostech / Prevention of Human Factor Failure in Hazardous Activities

Jíra, Aleš

January 2021

The diploma thesis deals with the topic of human failures during the risk activities. The aim of the work is to apply risk analysis to the operation of a selected unnamed company that processes vegetables. The thesis is divided into three parts. In the first part, the theoretical basis is discussed and serves as a basis for a better understanding of the topic and subsequent elaboration of the analytical part. The analytical part focuses on the characteristics of the selected company, organizational structure, working positions and the operation itself and analyses these issues with the focus on human factor. The last part of the diploma thesis is dealing with suggestions leading to the prevention of human failure in risk activities. The aim of these suggestions is to improve the situation of the company.

Tvorba systému pro hodnocení a řízení výkonnosti pracovníků v zákaznickém servisu / Creation of the System for Management and Evaluation of Employee in Customer's Support Center

Kiss, Jan

January 2011

The diploma thesis deals with question of evaluation and with evaluation connected managing, of employees in Customer's Support Center. The opening part of this work is devoted to theoretical source materials connected to human resource management and dealing mainly with evaluation and management of employee’s performance. The analytical part of the work describes and rates the current system of evaluation and management of employee in a described work team. The aim of the analytical part is to find and identify shortcomings of the current system in force. The final part is devoted to author's proposed solutions. The output is a set of recommendations and solutions on how to relieve the shortages identified by the analytical part.

Vícečlenné posádky dopravních letadel / Multipilot Airliner's Crew

Munk, Tomáš

January 2010

The aim of this master„s thesis is detailed study of multipilot airliner?s crew in sence of optimalization of its actions, which is known as Crew Resource Management (CRM). This paper shows what is the main purpose of CRM through the air crash investigations and human factor analysis. According to this findings, the last chapter presents problems of flight crew planning and personnel selection.

Vliv preventivních bezpečnostních opatření na nehodovost v leteckém provozu ČR / Effect of preventive security measures for air traffic accidents in the Czech Republic

Jonáš, Jiří

January 2012

The thesis objective is considerations of effect safety campaigns, which are issued by CAA CZ, on safety of air traffic in Czech Republic. In thesis are considered categories of aircrafts from 0 to 5700 kg except for Ultralight Aircrafts in period 1993 to 2011. Recognition involves describe given campaigns, assurance of information, processing and final assessment of efficiency published safety campaigns.

Analýza a vyhodnocení rizik dopravně spediční firmy / Risk Analysis and Evaluation in a Transporting and Haulage Firm

Čegan, Tomáš

January 2016

This diploma thesis deals with an analysis and evaluation of risk in the freight transport company – Doprava Vícha s. r. o. The thesis describes the current situation in a freight transport industry, an applicable legislation, and risk analysis methods FMEA and WHAT-IF. Further the thesis analyses risks of a freight transportation and describes the company Doprava Vícha s. r. o. in detail. The thesis proposes a set of actions in order to minimize identified risks. The handbook with most important actions and advices for drivers is attached.