6533b824fe1ef96bd1280ba1

RESEARCH PRODUCT

A Design Theory for Secure Information Systems Design Methods

Mikko T. SiponenJuhani HeikkaRichard L. Baskerville

subject

Iterative designComputer scienceDistributed computingAxiomatic designComputer Science ApplicationsHardware_GENERALSystems engineeringDesigntheorySystems designProbabilistic designIDEF4Design methodsInformation SystemsDesign technologyHardware_LOGICDESIGN

description

Many alternative methods for designing secure information systems (SIS) have been proposed to ensure system security. However, within all the literature on SIS methods, there exists little theoretically grounded work that addresses the fundamental requirements and goals of SIS design. This paper first uses design theory to develop a SIS design theory framework that defines six requirements for SIS design methods, and second, shows how known SIS design methods fail to satisfy these requirements. Third, the paper describes a SIS design method that does address these requirements and reports two empirical studies that demonstrate the validity of the proposed framework. peerReviewed

yearjournalcountryeditionlanguage
2006-11-01
http://urn.fi/URN:NBN:fi:jyu-202003202481