Global ETD Search

1	Information security issues facing internet café users. Kgopa, Alfred Thaga. January 2013 (has links) M. Tech. Business Information Systems / Although owners of Internet cafés extend the freedom to have Internet access to the community, they fail to tighten their computer security to safeguard the private information of their customers. This dissertation provides a conceptual framework for improving information security in the Internet Café, to help and ensure data privacy, data integrity, risk management and information security (IS) behaviour. The study investigated the information security issues that are faced by users of Internet cafés and explored the effects of these issues. The framework shows how users can improve their physical security to reach higher standards of information privacy over the Internet. Data protection -- South Africa. Computer security -- South Africa.
2	Analysis of cybercrime activity: perceptions from a South African financial bank Obeng-Adjei, Akwasi January 2017 (has links) Research report submitted to the School of Economic and Business Sciences, University of the Witwatersrand in partial fulfilment of the requirements for the degree of Master of Commerce (Information Systems) by coursework and research. Johannesburg, 28 February 2017. / This study is informed by very little empirical research in the field of cybercrime and specifically in the context of South African banks. The study bridges this gap in knowledge by analyzing the cybercrime phenomenon from the perspective of a South African bank. It also provides a sound basis for conducting future studies using a different perspective. In order to achieve this, an interpretive research approach was adopted using a case study in one of the biggest banks in South Africa where cybercrime is currently a topical issue and one that is receiving attention from senior management. Cohen and Felson (1979) Routine Activity Theory was used as a theoretical lens to formulate a conceptual framework which informed the data collection, analysis and synthesis of cybercrime in the selected bank. Primary data was obtained via semistructured interviews. Secondary data was also obtained which allowed for data triangulation. From the perspective of a South African bank, the study concluded that weak security and access controls, poor awareness and user education, prevalent use of the internet, low conviction rates and perceived material gain are the major factors that lead to cybercriminal activity. In order to curb the ever increasing rate of cybercrime, South African banking institutions should consider implementing stronger security and access controls to safeguard customer information, increase user awareness and education, implement effective systems and processes and actively participate in industry wide focus groups. The transnational nature of cybercrime places an onus on all banks in South Africa and other countries to collaborate and define a joint effort to combat the increasing exposure to cybercriminal activity. The use of the Routine Activity Theory provided an avenue to study the cybercrime phenomenon through a different theoretical lens and aided a holistic understanding of the trends and the behavioral attributes contributing to cybercriminal activity that can help South African banks model practical solutions to proactively combat the splurge of cybercrime. Keywords: Cybercrime, internet, crime, computer networks, Routine Activity Theory, South African banks. / GR2018 Computer crimes--South Africa Internet--Security measures Computer security--South Africa Banks and banking--South Africa
3	An investigation of the information security implementation strategies in further education and training colleges in South Africa Mohlabeng, Moyahabo Rossett January 2014 (has links) M. Tech. Information Networks / The increasing sophistication of information security threats and the ever-growing body of regulation has made information security a critical function in higher education institutions. Research was undertaken to investigate the implementation of information security strategies in higher education institutions in South Africa. This thesis investigates the following: How will the formulation of an information security strategy improve information security in higher education institutions; in what way should higher education institutions employ information security policies in order to improve information security; and how may the adoption of information security framework create information security awareness among employees in higher education institutions? Computer security -- South Africa. Data protection -- South Africa.
4	Information security metrics for an academic institution : a case study of universities of technology. Moeti, Michael Nthabiseng. January 2013 (has links) M. Tech. Business Information Systems / In today's Information Society, organizations have to ensure clean and secure data in order to make informed decisions. However, maintaining secure data need systematic Information Security Management. It is important to note that much as Information Security Management is considered the pillar of Enterprise Information Systems, its challenges are numerous. These challenges may include; loss of cooperate information, compromise of sensitive data and continuous cracking into the organization network systems. Academic institutions like many other information based organizations go through a wave of these challenges. Such challenges if not effectively handled could lead to serious security breaches. This study sought to identify metrics needed for Information Security Management in Universities of Technology.
5	A model for legal compliance in the South African banking sector : an information security perspective Maphakela, Madidimalo Rabbie January 2008 (has links) In the past, many organisations used to keep their information on paper, which resulted in the loss of important information. In today’s knowledge era the information super-highway facilitates highly connected electronic environments where business applications can communicate on an intra- as well as inter-organizational level. As business expanded more into the cyber-world, so did the need to protect the information they have. Technology advances did not only bring benefits, it also increased the vulnerability of companies’ information. Information, the lifeblood of an organization, must be protected from threats such as hackers and fraud, amongst others. In the highly regulated financial sector, the protection of information is not only a best practice, but a legal obligation carrying penalties for non-compliance. From a positive aspect, organisations can identify security controls that can help them to secure their information, with the aid of legal sources. But organisations find themselves burdened by a burgeoning number of legal sources and requirements, which require vast resources and often become unmanageable. This research focuses on finding a solution for South African banks to comply with multiple legal sources, as seen from an information security perspective. Database security -- South Africa Computer security -- South Africa
6	A national strategy towards cultivating a cybersecurity culture in South Africa Gcaza, Noluxolo January 2017 (has links) In modern society, cyberspace is interwoven into the daily lives of many. Cyberspace is increasingly redefining how people communicate as well as gain access to and share information. Technology has transformed the way the business world operates by introducing new ways of trading goods and services whilst bolstering traditional business methods. It has also altered the way nations govern. Thus individuals, organisations and nations are relying on this technology to perform significant functions. Alongside the positive innovations afforded by cyberspace, however, those who use it are exposed to a variety of risks. Cyberspace is beset by criminal activities such as cybercrime, fraud, identity theft to name but a few. Nonetheless, the negative impact of these cyber threats does not outweigh the advantages of cyberspace. In light of such threats, there is a call for all entities that reap the benefits of online services to institute cybersecurity. As such, cybersecurity is a necessity for individuals, organisations and nations alike. In practice, cybersecurity focuses on preventing and mitigating certain security risks that might compromise the security of relevant assets. For a long time, technology-centred measures have been deemed the most significant solution for mitigating such risks. However, after a legacy of unsuccessful technological efforts, it became clear that such solutions in isolation are insufficient to mitigate all cyber-related risks. This is mainly due to the role that humans play in the security process, that is, the human factor. In isolation, technology-centred measures tend to fail to counter the human factor because of the perception among many users that security measures are an obstacle and consequently a waste of time. This user perception can be credited to the perceived difficulty of the security measure, as well as apparent mistrust and misinterpretation of the measure. Hence, cybersecurity necessitates the development of a solution that encourages acceptable user behaviour in the reality of cyberspace. The cultivation of a cybersecurity culture is thus regarded as the best approach for addressing the human factors that weaken the cybersecurity chain. While the role of culture in pursuing cybersecurity is well appreciated, research focusing on defining and measuring cybersecurity culture is still in its infancy. Furthermore, studies have shown that there are no widely accepted key concepts that delimit a cybersecurity culture. However, the notion that such a culture is not well-delineated has not prevented national governments from pursuing a culture in which all citizens behave in a way that promotes cybersecurity. As a result, many countries now offer national cybersecurity campaigns to foster a culture of cybersecurity at a national level. South Africa is among the nations that have identified cultivating a culture of cybersecurity as a strategic priority. However, there is an apparent lack of a practical plan to cultivate such a cybersecurity culture in South Africa. Thus, this study sought firstly to confirm from the existing body of knowledge that cybersecurity culture is indeed ill-defined and, secondly, to delineate what constitutes a national cybersecurity culture. Finally, and primarily, it sought to devise a national strategy that would assist SA in fulfilling its objective of cultivating a culture of cybersecurity on a national level. Computer networks -- Security measures Cyberspace -- Security measures Computer security -- South Africa Subculture -- South Africa
7	MOSS : a model for open system security Van Zyl, Pieter Willem Jordaan 12 September 2012 (has links) Ph.D / This thesis looks at current security problems within open system environments, that is security problems within heterogeneous computer system environments that are interconnected via computer networks. Thereafter two security models, Kerberos and the Path Context Model, are considered together with their respective ability to address these security problems. Using concepts of the Path Context Model, a new security model, called MOSS (Model for Open System Security), is developed and it is shown how MOSS can address all the security problems identified. Two possible implementations of MOSS are then considered: the one is based on the concept of Static Security Agents (SSAs) for contemporary open system environments, and the other is based on the concept of Roaming Security Agents (RSAs) for object orientated open system environments. The research is concluded with a summary of possible future research considerations Computer security - South Africa Computer networks - Security measures Security systems - Models. Computers - Access control
8	Perceptions and expectations of IT service delivery post migration to a Microsoft platform at a university of technology in South Africa Reddy, Nerina 15 January 2015 (has links) Submitted in fulfillment of the requirements of the Master of Technology Degree in Information Technology, Durban University of Technology, Durban, South Africa, 2014. / The implementation of Microsoft (MS) technologies and solutions as organisational infrastructure within the higher education arena has become a popular choice both internationally and within South Africa. With benefits such as reduced costs, improved productivity and improved service delivery to both staff and students, MS technologies and solutions seem to be the preferred choice for many institutions worldwide. The Durban University of Technology (DUT) was the first university of technology in South Africa to implement all nine MS technologies simultaneously. Since migration to the MS platform in 2009, DUT staff have raised concerns regarding the new solutions, particularly with reference to aspects such as security, accessibility, and reluctance to use self-help tools to improve their IT experience. Migrating from a non-integrated system to an integrated MS platform thus resulted in IT service delivery becoming a contentious issue. . This study discussed: the quality of IT service delivery regarding the MS infrastructure within the DUT; the types of MS technologies and solutions implemented; the resulting impact that these have had on the full time administrative and academic staff at the DUT; and their perceptions and expectations of IT service delivery. Using a mixed methods research approach and underpinned by the modified SERVQUAL framework viz. RATER, the quality of this service was investigated. This study yielded both positive and negative findings regarding expectations and perceptions of the quality of IT services. Results indicated that although staff were generally positive about the migration and satisfied with the resulting IT service delivery, there was room for improvement in terms of the quality of IT services offered by DUT’s Information Technology Support Services Department. Based on the findings, recommendations for improved IT service delivery (ITSD) and IT service management (ITSM) were proposed. It was also recommended that the framework deemed most suitable in the MS dominant IT infrastructure, is the MS Operations framework. Microsoft Network (Online service) Education, Higher--South Africa Customer services--Quality control Microsoft software
9	A framework to integrate information and communication technology security awareness into the South African education system Walaza, Mvelo January 2017 (has links) Text in English / There is general consensus about the importance of Information and Communication Technology (ICT) security in South Africa. This consensus is evident from initiatives related to the formulation of legislation and policies like the Electronic Communications and Transactions (ECT) Act and the National Cyber Security Policy. A number of South African academic institutions have also come on board with initiatives aimed at enhancing ICT security awareness all over the country. In fact, ICT security awareness has been classified as an important component of South Africa’s national security. Many countries use ICT to improve and enhance the standard of their education systems. A number of scholars in South Africa have conducted studies with the aim of proving that ICT can play a major role in improving the quality of education in the country. The research in hand investigates the lack of integration of ICT security awareness into the South African education system. The literature review that was conducted reveals that there is a huge problem especially when it comes to the integration of ICT security awareness into the South African schooling system. The advancement of technology has come with a number of advantages and disadvantages. The easy access to information via the internet, coupled by unsupervised access to instant messaging applications (Skype, MXiT) and social media platforms (Facebook, Twitter and many more), hugely increases the vulnerability of school learners to ICT security attacks and ICT-related crime. The current research therefore investigates the vulnerability caused by the lack of ICT security awareness among school learners as one of the main disadvantages of the advancement of information technology. An analysis of existing models and frameworks in the two spheres of ICT, namely education and ICT security was conducted. The aim was to determine any similarities or overlap between these spheres and to determine whether the existing ICT models and frameworks are relevant to South Africa. The analysis showed a significant disparity and inconsistency between the two spheres and proved that there is a definite need for a framework (relevant to South Africa) that can be used for the integration of ICT security awareness into South African education. Hence, the researcher proposed a more integrated approach in the form of a framework that is directed at South African school learners, based on an in-depth literature review of past scholarly work, models and frameworks. Having reviewed a number of existing models and frameworks, and identifying the potential gaps, the researcher proposed a framework to address the lack of integration of ICT security awareness into the South African education system. The proposed framework, called the South African ICT Security Awareness Framework for Education (SAISAFE), was reviewed for its potential applicability in the South African context, and the results of the literature review analysis are reported to support the analysis of models and frameworks. / School of Computing / M. A. (Computing) ICT ICT Security Education Models Frameworks Security Awareness School learners 005.80968 Computer security -- South Africa Information technology -- South Africa Education -- South Africa
10	An investigation of information security in small and medium enterprises (SME's) in the Eastern Cape Upfold, Christopher Tennant January 2005 (has links) Small and Medium Enterprises (SME’s) embrace a wide range of information systems and technology that range from basic bookkeeping and general purpose office packages, through to advanced E-Business Web portals and Electronic Data Interchange (EDI). A survey, based on SABS ISO/IEC 17799 was administered to a select number of SME’s in the services sector, in the Eastern Cape. The results of the survey revealed that the level of information security awareness amongst SME leadership is as diverse as the state of practice of their information systems and technology. Although a minority of SME’s do embrace security frameworks such as SABS ISO/IEC 17799 or the International equivalent, BS7799, most SME leaders have not heard of security standards, and see information security as a technical intervention designed to address virus threats and data backups. Furthermore, there are several “stripped-down” standards and guidelines for SME’s, based mostly on SABS ISO/IEC 17799, but designed as streamlined, more easily implemented options. Again, these “lighter” frameworks are scarcely used and largely unknown by SME’s. Far from blaming SME leadership for not understanding the critical issues surrounding information security, the research concludes that SME leadership need to engage, understand and implement formal information security processes, failing which their organisations may be severely impacted by inadvertent threats / deliberate attacks on their information systems which could ultimately lead to business failure. Computer security -- South Africa

Search results