Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard1
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Defining Information Security
Philosophy and History, KTH, School of Architecture and the Built Environment (ABE), Philosophy and History of Technology, Philosophy.ORCID iD: 0000-0001-5830-3432
Philosophy and History, KTH, School of Architecture and the Built Environment (ABE), Philosophy and History of Technology, Philosophy.
2017 (English)In: Science and Engineering Ethics, ISSN 1353-3452, E-ISSN 1471-5546Article in journal (Refereed) Published
Abstract [en]

This article proposes a new definition of information security, the ‘Appropriate Access’ definition. Apart from providing the basic criteria for a definition—correct demarcation and meaning concerning the state of security—it also aims at being a definition suitable for any information security perspective. As such, it bridges the conceptual divide between so-called ‘soft issues’ of information security (those including, e.g., humans, organizations, culture, ethics, policies, and law) and more technical issues. Because of this it is also suitable for various analytical purposes, such as analysing possible security breaches, or for studying conflicting attitudes on security in an organization. The need for a new definition is demonstrated by pointing to a number of problems for the standard definition type of information security—the so-called CIA definition. Besides being too broad as well as too narrow, it cannot properly handle the soft issues of information security, nor recognize the contextual and normative nature of security.

Place, publisher, year, edition, pages
Springer, 2017.
Keywords [en]
Appropriate access; CIA definition; Defining information security; Ethical aspects on information security; Human aspects on information security; Information security
National Category
Philosophy
Identifiers
URN: urn:nbn:se:kth:diva-198672DOI: 10.1007/s11948-017-9992-1ISI: 000463790600005Scopus ID: 2-s2.0-85034044188OAI: oai:DiVA.org:kth-198672DiVA, id: diva2:1058255
Funder
Swedish Civil Contingencies Agency
Note

QC 20161220

Available from: 2017-01-17 Created: 2016-12-20 Last updated: 2019-05-09Bibliographically approved
In thesis
1. Semantic Information and Information Security: Definitional Issues
Open this publication in new window or tab >>Semantic Information and Information Security: Definitional Issues
2016 (English)Licentiate thesis, comprehensive summary (Other academic)
Abstract [en]

This licentiate thesis consist of two separate research papers which concern two tangential topics – that of semantic information and that of information security. Both topics are approached by similar methods, i.e. with a concern about conceptual and definitional issues. In Paper I – concerning the concept of information, and a semantic conception thereof – the conceptual, and definitional, issues focus on one property, that of truthfulness. It is argued – against the veridicality thesis – that semantic information need not be truthful. In Paper II – concerning information security – it is argued that the current leading definitions (so-called ‘CIA’ definitions, which define information as secure if, and only if, the properties of confidentiality, integrity, and availability are retained) suffer from both actual and possible counter-examples, and lack an appropriate conceptual sense. On the basis of this criticism a new kind of definitions is proposed and argued for.

Place, publisher, year, edition, pages
Stockholm: KTH Royal Institute of Technology, 2016. p. 50
Series
Theses in philosophy from the Royal Institute of Technology, ISSN 1650-8831 ; 57
Keywords
definitions, distinctions, philosophy of information, philosophy of risk, security, information, information security, semantics, semantic information, veridicality thesis, informativity, RIGHT, CIA
National Category
Philosophy
Research subject
Philosophy
Identifiers
urn:nbn:se:kth:diva-198630 (URN)978-91-7729-244-9 (ISBN)
Presentation
2017-02-07, 1515, Teknikringen 74D, Stockholm, 13:00 (Swedish)
Opponent
Supervisors
Projects
SECURIT
Funder
Swedish Civil Contingencies Agency, H5392
Note

QC 20161220

Available from: 2017-01-17 Created: 2016-12-19 Last updated: 2017-01-25Bibliographically approved
2. Information, Security, Privacy, and Anonymity: Definitional and Conceptual Issues
Open this publication in new window or tab >>Information, Security, Privacy, and Anonymity: Definitional and Conceptual Issues
2018 (English)Doctoral thesis, comprehensive summary (Other academic)
Abstract [en]

This doctoral thesis consists of five research papers that address four tangential topics, all of which are relevant for the challenges we are facing in our socio-technical society: information, security, privacy, and anonymity. All topics are approached by similar methods, i.e. with a concern about conceptual and definitional issues. In Paper I—concerning the concept of information and a semantic conception thereof—it is argued that the veridicality thesis (i.e. that information must be true or truthful) is false. In Paper II—concerning information security—it is argued that the current leading definitions suffer from counter-examples, and lack an appropriate conceptual sense. Based on this criticism a new kind of definition is proposed and defended.  In Paper III—concerning control definitions of privacy—it is argued that any sensible control-definition of privacy must properly recognize the context as part of the defining criteria. In Paper IV—concerning the concept of privacy—it is argued that privacy is a normative concept and that it is constituted by our social relations. Final, in Paper V—concerning anonymity—it is argued that the threat from deanonymization technology goes beyond harm to anonymity. It is argued that a person who never is deanonymized can still be harmed and what is at stake is an ability to be anonymous.

Place, publisher, year, edition, pages
Stockholm: KTH Royal Institute of Technology, 2018. p. 70
Series
TRITA-ABE-DLT ; 1811
Keywords
definitions, distinctions, conceptual analysis, philosophy of information, philosophy of risk, security, information, information security, semantics, semantic information, veridicality thesis, informativity, appropriate access, CIA, privacy, control, context, pro tanto good, social relations, anonymity, deanonymization, ability to be anonymous
National Category
Philosophy
Research subject
Philosophy
Identifiers
urn:nbn:se:kth:diva-226651 (URN)978-91-7729-759-8 (ISBN)
Public defence
2018-06-04, Kollegiesalen, Brinellvägen 8, Stockholm, 13:00 (English)
Opponent
Supervisors
Projects
SECURIT
Funder
Swedish Civil Contingencies Agency, H5300
Note

QC 20180425

Available from: 2018-04-25 Created: 2018-04-24 Last updated: 2018-04-25Bibliographically approved

Open Access in DiVA

No full text in DiVA

Other links

Publisher's full textScopus

Authority records BETA

Lundgren, BjörnMöller, Niklas

Search in DiVA

By author/editor
Lundgren, BjörnMöller, Niklas
By organisation
Philosophy
In the same journal
Science and Engineering Ethics
Philosophy

Search outside of DiVA

GoogleGoogle Scholar

doi
urn-nbn

Altmetric score

doi
urn-nbn
Total: 126 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard1
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf