Your search keyword '"Information theory"' showing total 6,325 results

1. Access control model in ICS

Author

Muhannad O. Zaid Alkilani and Irina V. Mashkina

Subjects

industrial control system (ics), information subjects, information objects, access control, management of user accounts and rights, hierarchy of user roles, epc-model, object of threat impact, information security, information security threats., Information technology, T58.5-58.64, Information theory, Q350-390

Abstract

The purpose of this article is to develop a model for an access control policy and to formulate a method for creating a model of information security threat scenarios in industrial control system (ICS). The results of developing an access control policy model based on role assignment are presented. This model encompasses the information assets derived from the analysis of technological processes ˗ access objects that are vital for the functioning of the industrial network. In addition to that a specific and refined list of personnel access subjects ˗ responsible for maintaining production technological processes within the ICS context is provided. Furthermore, a hierarchy of user roles has been constructed, wherein the role of a super user, possessing all privileges, has been excluded, and an access differentiation matrix has been developed. The model can be utilized in the development of a customized access differentiation policy within the scope of administrative policies of information security. The article formulates a way for EPC-modelling of scenarios depicting the implementation of information security threats. These scenarios outline the stages of complex multi-component attacks targeting the objects of the ICS. It depicts situations where cybercriminals infiltrate the external subnet ˗ the enterprise network ˗ and subsequently penetrate the internal industrial network, violating access management policies. An example illustrating the construction of a threat scenario targeting an OPC-server based on EPC-model is provided. This example delineates the tactics and techniques employed by cybercriminals, leading to the realization of a security incident from the Threats Data Bank. The method for constructing scenarios enables the visual representation of the sequence of actions undertaken by attacker. This sequence involves the exploitation of vulnerabilities and techniques, as well as the resultant events that influence the progression of the attack. SIEM (Security Information and Event Management) can be constructed to detect sequences of events identified using EPC-modeling. Therefore, the developed scenarios will contribute to timely detection and appropriate response during the early stages of cyberattack implementation.

Published

2024

2. Some aspects of IC radiation hardness evaluation to the effects of high-energy ions

Author

Alexander I. Chumakov, Dmitry V. Bobrovsky, and Armen V. Sogoyan

Subjects

security of information systems, high-energy ions, single event effects, nica nuclotron., Information technology, T58.5-58.64, Information theory, Q350-390

Abstract

The paper analyzes the features of the experimental evaluation of the single event effects (SEE) cross section dependence on linear energy transfer (LET) for ions with energies above 100 MeV/nucleon. Ion energy degraders use in order to change the values of the LET. The paper presents calculations of LET spectrum at different thicknesses of a polycarbonate degrader for iron ions with energies of 100...450 MeV/nucleon as an example. It is proposed to evaluate the LET values in packaged electronic devices with an unknown physical and chemical composition with help of the modified technique used at the ion accelerator at Brookhaven National Laboratory in the USA. An additional technique with preliminary studies on X-ray of packaged electronic is proposed to estimate the mass thickness of the protective layers in integrated circuit. In order to reduce the influence of infamous factors, it is proposed to thin the package based on the results of the analysis of X-ray images. The proposed approach makes it possible to correctly determine the dependence of the SEE cross sections on the LET of both packaged and decapsulated integrated circuits for SEE under high-energy ions. The obtained results are supposed to be used at the specialized ISKRA station, which is part of the NICA nuclotron complex at JINR, Dubna. The presented results make it possible to assess the upset and failure hardness of electronic information systems to the effects of ions of artificial and natural origin.

Published

2024

3. Improving non-compliant information security behavior using algorithms

Author

Kennedy Njenga and Cosmas Ngwenya

Subjects

information security, artificial intelligence, crowdsourcing, behavior, design science research, theory of planned behavior., Information technology, T58.5-58.64, Information theory, Q350-390

Abstract

This study explores the prevalent issue of non-compliance with information security policies (ISPs) within organizations, offering a way by which organizations can monitor non-compliance of ISPs using a practical suggested approach. By crowdsourcing artificial intelligence (AI) driven algorithms from a well-known and popular public site and applying the Design Science Research (DSR) approach, this work offers a way that organizations can monitor non-compliance in real-time with the proposed AI-driven algorithm prompting behavior that fosters better compliance. The research integrates principles embedded in the Theory of Planned Behavior (TPB) into two algorithms, with results showing that algorithm 2, which applies a binary classification model, generates prompts that are more efficient in eliciting desired compliance than algorithm 1. The study's practical significance lies in the crowdsourcing appeal, where readily available and cost-effective resources may reach ordinary organizations. The study contributes to the field by exploring AI-driven algorithms, crowdsourcing and addressing user attitudes, subjective norms, and perceived behavioral control challenges. The study concludes by acknowledging limitations, proposing future research directions, and highlighting its valuable contribution to understanding and addressing non-compliant behavior.

Published

2024

4. On the possibility of improving the procedures for quantifying information protection of critical information infrastructure objects from threats of unauthorized access

Author

Sergey V. Skryl, Anastasiya A. Itskova, and Kirill E. Ushakov

Subjects

unauthorized access, critical information infrastructure, functional modeling, functional components, temporal characteristics of functional components of the threat., Information technology, T58.5-58.64, Information theory, Q350-390

Abstract

The article develops a functional model of unauthorized access (UA) protection mechanisms at information infrastructure objects (IIOs). It defines the content of protection measures, techniques used, and stages of their implementation. It substantiates the order of execution of individual functional components of the structural representation of the objective function "Protection of information of IIOs from UA". The sequence of implementation of these components is illustrated as a change in the states of the Markov process for constructing such a model. A table is provided of the correspondence between the list of procedures performed by an intruder in the process of implementing an UA threat to information of an IIOs and the procedures for protecting information, and it demonstrates the possibility of transition from the description of information protection measures from UA at IIOs in terms of functional modeling to the mathematical representation of the time characteristics of the functional components of the objective function of protection. The corresponding analytical expressions are provided for various options for representing the order of the functional components performed.

Published

2024

5. Recommendations for creating a trust infrastructure in the interests of the digital ruble system

Author

Dmitry A. Melnikov, Dmitry A. Budnikov, Irina G. Konnova, and Alexander V. Kubaev

Subjects

digital ruble, trust, public key infrastructure, cryptographic information protection, authentication, certificate, information security., Information technology, T58.5-58.64, Information theory, Q350-390

Abstract

Problem description. One of the areas of digital transformation of Russian society is the development and implementation of the National Digital Ruble System (DR) in the credit and financial sphere (CFS) of the economy of the Russian Federation. The National DR system should be based on the information technology infrastructure (ITI) for ensuring information security (IS). In fact, the ITI for ensuring IS is a trust infrastructure (ITIT) based on the public key infrastructure (PKI). ITIT should have a number of functional properties, including identification and authenti­cation of objects and subjects of electronic financial transactions, protection of the integrity and confidentiality of data and the electronic financial transactions themselves, implementation of the principle of non-repudiation of the parties to information interaction. At the same time, the absence of ITIT in the National DR System can completely discredit the very idea of digitalization of the CFS, associated with the absence of any guarantees of reliability and trust in the National DR System, based on the implementation of the entire range of methods and means of cryptographic protection of information (electronic financial transactions), including systems for managing cryptographic keys. The absence of comprehensive protection of the National DR System will entail risks and problems in ensuring IS, which can negatively affect individuals, groups, organizations, sectors of the economy and society as a whole. Goals. To propose and analyze a heuristic model of DR and a model of functional and structural ITIT, which solves the main problems of ensuring IS of the National DR System, associated primarily with confirmation of the authenticity and ownership of DR, as well as the protection of electronic payment transactions and the possibility of withdrawing (withdrawing from circulation) DR immediately (on-line) after detection of its compromise. Results. The article presents a heuristic (hypothetical) model of C₽ and describes the DR format (as an information object) that includes cryptographically linked information blocks and public key certificates issued by accredited certification authorities using electronic signatures. A functional and structural model of the ITIT of the National DR System is proposed. The composition, main elements of the ITIT structure, as well as their goals and implemented functions are described. The results of the analysis of trust assurance based on the PKI of the Bank of Russia (BR) are presented. Practical significance. The heuristic (hypothetical) model of DR, the functional and structural model of the ITIT of the National DR System and the results of the analysis of trust assurance based on the PKI of the BR are of great practical significance in the development and implementation of the National DR System in the CFS of the Russian Federation economy. Conclusions. The results obtained will increase the level of security and trust in the National DR System of the citizens, businesses and credit and financial institutions.

Published

2024

6. Stochastic methods of information security

Author

Mikhail A. Ivanov

Subjects

pseudorandom number generator, random number generator, stochastic methods, stochastic computer., Information technology, T58.5-58.64, Information theory, Q350-390

Abstract

Computer systems (CS) security has become a very critical concern that needs the attention of researchers to ensure the information protection and cyber security. This article provides an overview of the state of the art in cyber security, challenges, and global trends of CS security. A promising direction in solving information security problems is the use of stochastic methods based on the use of pseudo-random number generators (PRNG), the result of which is the introduction of unpredictability into the operation of CS and their elements. Examples of using stochastic methods for protection and attack are considered. Examples of information security technologies based on the use of PRNG in the development of software and hardware are given. Attention is drawn to the emergence of new mechanisms for carrying out attacks on CS based on code reuse and, accordingly, new methods of protection against such attacks. The idea of creating a stochastic computer is substantiated, and presented the possible strategies and approaches.

Published

2024

7. Methodology for assessing the accuracy of determining the spatial characteristics of local navigation systems

Author

Timofey Y. Melnikov, Pavel Y. Shamray, Julia A. Lyakhovenko, Sanzhar Mukhamedzhanov, Kirill A. Maximov, and Andrey M. Boyko

Subjects

spatial coordinates, accuracy assessment methods, tests, spatial measurements., Information technology, T58.5-58.64, Information theory, Q350-390

Abstract

In the process of developing and operating navigation systems, it is very important to reliably assess the accuracy of determining spatial characteristics. A methodology has been developed for assessing and confirming the accuracy of determining spatial characteristics by various software and hardware systems, such as coordinates, velocity, and orientation. The basis was taken from the foreign standard ASTM E3064-16, which describes coordinates and orientation accuracy confirmation of optical tracking systems. The developed approach is based on assessing the accuracy of measuring a certain fixed length (rod) in different positions and orientations. The speed accuracy assessment is based on the coordinate accuracy assessment and is based on the use of linear regression to calculate the speed. The error in determining the orientation angle in space is also calculated based on the coordinate measurement error and is given for small angles. The applicability limits of the described methodology are given. The technique makes it possible to assess the accuracy and reliability of navigation and measuring systems.

Published

2024

8. Ensuring the security of objects in the information sphere

Author

Alexandr I. Tolstoy

Subjects

concept, term, definition, information protection, security, resilience, cybersecurity, object, information sphere, asset, process, system., Information technology, T58.5-58.64, Information theory, Q350-390

Abstract

The article identifies the main problems associated with the inconsistency and incoordination of such concepts as “information protection”, “information security”, “security of information”, “cybersecurity” and “cyber resilience”, which has led to the absence of a unified system currently accepted by the professional community concepts of the subject area under consideration. To overcome this flaw, it is proposed to build a basic system of concepts for the “security of objects in the information sphere (ISF)” subject area, based on taking into account the characteristics of objects (which using information technologies and processing information), using the ISF concept (as a collection of space of such objects and the environment of their interaction) and on the asset concept (part of an object that has a certain value), which can be main and auxiliary. Taking into account these initial data, the selected subject area is compared with three separate systems of concepts: “ensuring the security of information of objects in the ISF”, “ensuring the resilience of objects in the ISF” and “ensuring the information and psychological security of a person as an object’s asset in the ISF”. A description of the proposed systems of concepts is given, which can be attributed to the development of a methodological basis for ensuring the objects’ security. These conceptual systems have minimal overlap with each other and correspond to three separate areas of practical and scientific activity that require professionals with unique professional competencies. The results of the work have practical significance for the educational field in the formation of students' modern, methodologically sound conceptual base.

Published

2024

9. EDITOR-IN-CHIEF'S COLUMN

Author

Alexander Yu. Nikiforov

Subjects

Information technology, T58.5-58.64, Information theory, Q350-390

Published

2024

10. TECHNOLOGICAL SAFETY

Author

Leonid N. Kessarinsky

Subjects

Information technology, T58.5-58.64, Information theory, Q350-390

Published

2024

11. Application of machine learning methods for preventive identification of deviant groups of adolescents

Author

Vladimir L. Evseev and Anton S. Burakov

Subjects

school-shooting, columbine, aggressiveness assessment, anxiety assessment, online profiling, profiling of vkontakte social network pages, unsupervised machine learning, cluster analysis, k-means method., Information technology, T58.5-58.64, Information theory, Q350-390

Abstract

The article is devoted to the problem of identifying deviant groups studying in educational institutions. The article substantiates the relevance of this problem. Recent incidents and possible reasons for their occurrence are analysed. The system for preventive detection of deviant groups of teenagers is offered. Categories of deviant groups of adolescents are identified: potential shooters; potential bullies; potential students capable of laying hands on themselves. It is suggested to measure anxiety and aggressiveness in adolescents in order to detect deviation of adolescents. The ways of measuring anxiety and aggressiveness are considered. It is suggested to use profiling as an objective method of assessment. Profiling by school psychologists is rather difficult to implement due to their limited number in educational institutions. To automate the process and exclude the subjective factor, it is suggested to use online profiling. Within the framework of online profiling, the objects of research are the pages of social networks used by students. Criteria for determining anxiety and aggressiveness based on information from social network pages are proposed. A toolkit for partial automation of the process of data collection from the pages of social networks of students of educational institutions is proposed. The use of the method of clustering k-means clustering method to identify deviant groups of students. An example of detection of teenagers with deviations using specially generated synthetic data is given.

Published

2024

12. ON THE TRANSFER OF CRITICAL INFORMATION INFRASTRUCTURE TO TRUSTED SOFTWARE AND HARDWARE COMPLEXES BASED ON EXPERIENCE BUILDING THE ELBRUS HARDWARE AND SOFTWARE PLATFORM

Author

Konstantin A. Trushkin

Subjects

Information technology, T58.5-58.64, Information theory, Q350-390

Published

2024

13. IMPRESSIONS OF THE PARTICIPANTS OF THE X INTERNATIONAL MILITARY-TECHNICAL FORUM 'ARMY-2024'

Author

Alexander Yu. Nikiforov, Nikolai A. Usachev, and Alexander V. Ermakov

Subjects

Information technology, T58.5-58.64, Information theory, Q350-390

Published

2024

14. PASSIVE ELECTRONIC COMPONENTS FOR THE CREATION OF TRUSTED HARDWARE AND SOFTWARE COMPLEXES AND SYSTEMS

Author

Peter A. Wernick

Subjects

Information technology, T58.5-58.64, Information theory, Q350-390

Published

2024

15. The Design Technique for Power Management Unit of the Tag IC for Radio Frequency Identification of Critical Infrastructure Objects

Author

Denis I. Sotskov, Vladislav N. Kotov, Alexey V. Zubakov, Nikolay A. Usachev, Alexander Y. Nikiforov, and Dmitry V. Boychenko

Subjects

design technique, tag, power management unit, cmos, uhf, tagging, radiofrequency identification., Information technology, T58.5-58.64, Information theory, Q350-390

Abstract

The ultra-high frequency (UHF) tag IC’s main part of the power management unit (PMU) design technique is presented. The technique is a step-by-step algorithm for designing a PMU and consists of five interrelated stages. At the first stage, the requirements for the parameters of the PMU (output voltage, output DC power, efficiency, output capacitor capacity) and the Q-factor of the tag analog front-end are determinates. At the second stage, the design of an electrical circuit of a voltage multiplier (VM) is carried out. VM is required to convert the voltage of the input radio frequency (RF) signal into an DC voltage. During the third stage, the design of the electrical circuit of the DC voltage limiter is carried out, which is necessary to reduce the output voltage of VM to a safe level. The result of stage 4 is an electrical circuit of surge protection designed to provide the required level of immunity of the tag IC to the effects of electrostatic discharge and a high-power RF signal. As part of the final stage, the evaluation and alignment with the required Q-factor value of the tag IC analog front-end is carried out. The proposed technique can be used for the development of domestic UHF tag ICs (ISO 18000-6C, GJB 7377.1, etc.) based on CMOS technological processes, including ICs designed for radio frequency identification of critical infrastructure objects. Using the presented technique, the design of a PMU with an estimated efficiency value of 70%, an estimated Q-factor of the analog front-end of less than 15 at an RF input signal power of -12.7 dBm was performed.

Published

2024

16. The methodology of analysis and assessment of the level of security of the software used at the objects of informatization of internal affairs bodies

Author

Arina D. Popova and Irina G. Drovnikova

Subjects

vulnerabilities in software, software security, quantitative indicators of security, analytical models for evaluating indicators in real time, algorithms for analytical calculation of indicators., Information technology, T58.5-58.64, Information theory, Q350-390

Abstract

The purpose of the article is to develop a technique that allows analyzing and quantifying the software protection level used in automated systems of internal affairs agencies in real time. To achieve this goal, the method of system analysis of existing approaches to assessing the protection level of automated systems software, the mathematical apparatus of queuing systems, methods of graph theory, probability theory and mathematical statistics, and the theory of semi-Markov processes were used. Quantitative static and dynamic indicators are proposed that make it possible to adequately assess the software protection in relation to current vulnerabilities in the dynamics of its functioning and taking into account the existing disadvantages of operation at the facilities of informatization of internal affairs bodies. Mathematical models and algorithms for analytical calculation of the proposed indicators in real time have been developed. The prospects for the practical implementation of the considered technique are related to the development of a software package for analyzing and evaluating the software protection in order to select its optimal version for increasing the protection level of official information of limited distribution circulating at specific informatization facilities of internal affairs bodies.

Published

2024

17. Neural network device for recognizing speech commands based on hardware accelerators of the NEUROMATRIX family

Author

Vladislav V. Zholondkovskiy, Yuri I. Bocharov, and Vladimir A. Butuzov

Subjects

speech recognition, artificial neural network, convolutional neural network, microprocessor, k1879vm8ya, k1879vm6ya., Information technology, T58.5-58.64, Information theory, Q350-390

Abstract

Various approaches to solving the problem of speech command recognition in real time using artificial neural networks (ANN) of several types are considered. A brief overview of deep fully-connected, convolutional and recurrent neural networks is given. It is shown that ANNs of convolutional and recurrent types are capable of providing the required level of performance and accuracy when performing inference in real time. A comparison is given of the performance of convolutional and recurrent algorithms when ported to the K1879VM6Ya hardware platform from the NeuroMatrix family of high-performance digital signal processors. When porting, the features of the microprocessor architecture were considered. All basic operations are performed on a vector matrix coprocessor. The advantage of convolutional ANN has been demonstrated. Considering the results of research into a neural network of this type on the K1879VM6Ya platform, it was transferred to a more productive hardware accelerator - the K1879VM8Ya system-on-chip. The prospects for creating a speech recognition system on the K1879VM8Ya platform are considered.

Published

2024

18. A formalized representation of the target function of the impact of malicious software on the operating environment of a special-purpose automated control system

Author

Igor I. Korchagin, Ksenia E. Amelina, Alexander N. Stadnik, Anton O. Karetskiy, and Valeriy S. Antonov

Subjects

automated control systems for special purposes, malicious software, functional modeling, idef0 notation, anti-virus information protection tools, data protection, antivirus mechanisms., Information technology, T58.5-58.64, Information theory, Q350-390

Abstract

The article presents the main provisions of the theory of functional modeling in relation to solving an important and relevant problem for the methodology of information security managing – the development of mathematical models characterizing the dynamic capabilities of malware to implement destructive effects on critical information infrastructure objects. As a result of the analysis of the models that pose a threat to information security through the use of malicious codes, such as the "chain of cyber intrusions", the "unified chain of cyber intrusions", the basic and advanced models of Diamond intrusion analysis, the ATT&CK model, an up-to-date version of the functional model in the IDEF0 notation of the process of malware destructive impact on the operating environment of a special-purpose automated control system was built. The process of malware exposure is decomposed into individual stages, tactics, and techniques. The purpose of the research was to develop a variant of the malware impact on a special-purpose automated control system as a method of violating the state of information security and its processes of the system under consideration. The obtained results are a tool for the formalized presentation of the described processes in terms of the Markov processes and the development of analytical models, appropriate temporal and probabilistic characteristics for quantitative assessment of the intruder's ability to implement threats to the information security state in special-purpose automated control systems, through the malware impact.

Published

2024

19. IMPRESSIONS OF THE PARTICIPANT OF THE TECHNOLOGICAL CONFERENCE 'CIPR-2024'

Author

Elena G. Panarskaya

Subjects

Information technology, T58.5-58.64, Information theory, Q350-390

Published

2024

20. ENSURING SAFETY WHILE ENHANCING PERFORMANCE: ENCOURAGING REINFORCEMENT LEARNING BY ADDRESSING CONSTRAINTS AND UNCERTAINTY

Author

Mohsen Abdollahzadeh Aghbolagh

Subjects

safe reinforcement learning constraint, off-policy, exploration, risk assessment., Information technology, T58.5-58.64, Information theory, Q350-390

Abstract

Striking a balance between safety and performance remains a critical concern, despite advancements in the field. To address this issue, a versatile framework named Safety Goes Along with Performance (SGAWP) is proposed, centered on off-policy algorithms grounded in value function optimization. SGAWP utilizes reinforcement learning to navigate the data space, emphasizing high task performance while addressing risks (such as undesirable states) by incorporating safety costs into the value function. By integrating uncertainty management and task performance constraints, SGAWP aims to achieve improved safety performance alongside respectable task performance. Moreover, SGAWP leverages curiosity-driven exploration to expand the data space and employs task policies to enhance safety policy performance. As a result, SGAWP enhances safety performance with minimal loss in task performance. Beyond its success in reinforcement learning, SGAWP holds promise for applications like autonomous driving, where safety is paramount. Through rigorous experimentation across various off-policy algorithms, SGAWP demonstrates robust generalization and achieves its objectives effectively.

Published

2024

21. Substantiation of the indicator for assessing the manageability of information security in automated control systems of critical applications from the effects of malicious software

Author

Sergey V. Skryl, Pavel A. Fedyunin, Tatyana V. Meshcheryakova, and Ruslan A. Khvorov

Subjects

impact of malware, controllability of information security, model of an information security violator, timeliness of the threat of malware exposure by the violator, prompt response to the impact of malware, timeliness of implementation of information proc, Information technology, T58.5-58.64, Information theory, Q350-390

Abstract

The article substantiates the key role anti-virus protection of automated control systems in ensuring the required protection level of information circulating and processed in these systems. A scientific hypothesis is formulated on ways to solve the problem adaptive control of the process ensure information protection in the automated control system from effects of impact of malware as a problem increasing the efficiency information support for these systems in the process of their functioning. The factors influencing the controllability of information security in the automated control system against threats from malware are formulated. The general form of expressions for characterizing the capabilities of an information protection violator, resident anti-virus protection technology in automated control systems and information processing technology in these systems is substantiated, as well as the general form of expression for the indicator of information protection controllability of in automated control systems from the effects of malware.

Published

2024

22. Algorithm obtaining invariants

Author

Yurii L. Zachesov and Igor M. Yadykin

Subjects

algebraic invariants, factorization algorithm, short exhibitor, comparisons, the chinese residue theorem, dynamic system., Information technology, T58.5-58.64, Information theory, Q350-390

Published

2024

23. Problems of floating vulnerabilities in ensuring mobile application security

Author

Anton S. Cherevan and Alexey P. Lapsar

Subjects

floating vulnerabilities, geisenbugs, mobile apps, android, information security., Information technology, T58.5-58.64, Information theory, Q350-390

Abstract

The article is focused on the development of a method for detecting and eliminating floating vulnerabilities in mobile applications, their nature is described, and existing methods of detecting and neutralizing floating vulnerabilities are investigated, their defects are noted. The developed method is based on analyzing the state of the application at different points in time and comparing it with a reference state. The proposed algorithm includes fixing the initial state, discrete analysis, detection and identification of vulnerabilities, their elimination, and prevention of additional risks. The scope of application of the results includes the developing and securing of mobile applications for Android operating system. The conclusions of the paper confirm the importance of detecting and preventing floating vulnerabilities to ensure a high level of information protection. The developed method allows to effectively detect and eliminate vulnerabilities, which contributes to the creation of secure and protected applications for users of mobile devices.

Published

2024

24. The methodology of functional modeling as a tool for formalizing the process of intercepting computer information through spurious electromagnetic radiation and interference

Author

Aleksey A. Petlevanny, Tatyana V. Meshcheryakova, Aleksandr I. Boronenkov, Vadim. I. Spivak, and Varvara A. Vladychenskaia

Subjects

spurious electromagnetic radiation and interference, interception of informative signals, interception of computer information, technical means of intelligence, threats to information security, st-technology, functional modeling., Information technology, T58.5-58.64, Information theory, Q350-390

Abstract

The article is devoted to the formalization of the process of unauthorized getting of computer information by intercepting informative signals of secondary electromagnetic radiation of the main technical means and systems by technical means of intelligence, as well as the removal informative guidance signals on the conductive lines of the main technical means by technical means of intelligence. Analyzing the completeness problem of the assessing information leakage threats due to the interception of informative signals of side electromagnetic radiation and leads, it must be stated that the procedure for identifying such threats is limited only to their detection by controlling only individual signs of manifestations of these threats. At the same time, the dynamics of the interception implementation process is not taken into account. This determines the need to solve the scientific problem of developing methodological foundations for the synthesis of algorithms for recognizing information leakage threats. The article presents the main stages of the procedure for formalizing the actions of the violator to intercept information. The basis for solving such problems is the procedure for forming the recognition feature space. In order to form such a space, functional modeling methods are used. The article presents a representation of the functional diagram in terms of the Markov process, as well as obtaining a mathematical expression to determine the average value of the time spent by the violator to achieve the target interception function.

Published

2024

25. Configurable ring oscillator with controlled interconnections

Author

Alexander A. Ivaniuk and Vyacheslav N. Yarmolik

Subjects

physical unclonable functions, ring oscillator, interconnections., Information technology, T58.5-58.64, Information theory, Q350-390

Abstract

Circuit solutions for physically unclonable functions (PUF) of a ring oscillator (RO) implementation for the purposes of digital devices identification, cryptographic keys and random numbers generation are considered. The effectiveness using configurable ROs (CROs) in PUF circuits is based not only on reducing of the hardware overhead of traditional RO PUFs, but also on the generation of output signals with unique frequencies, close in value in a case of the FPGA implementation. The proposed modification of the basic scheme of the CRO PUF, based on the XOR2 logic gates as controlled delay elements, allows to use a full set of input challenges instead of the basic scheme. It is shown that the delay value depends not only on the challenge, but also on the interconnect configuration of the structural elements of the CRO circuit. A time model of the modified CRO PUF is proposed, which analytically proves the influence of interconnects on the frequency of the generated signal, which was experimentally confirmed using the Xilinx Zynq-7000 FPGA. Based on this result, a new structure of PUF CRO with controlled interconnections is proposed.

Published

2024

26. Development of recommendations for reducing the energy of the signal emitted by the LVDS interface

Author

Andrey A. Belavin, Daria A. Iutina, Ksenia A. Shalova, and Rodion Ya. Pantsir

Subjects

recommendations for screening, lvds interface, radiation level reduction., Information technology, T58.5-58.64, Information theory, Q350-390

Abstract

This article discusses the development of recommendations for shielding individual parts of a technical means to reduce the energy of the signal emitted by the LVDS (Low Voltage Differential Signaling) interface. The LVDS interface is widely used in various electronic devices for transmitting low-voltage digital signals. In fact, LVDS became an interface for connecting laptops and monitor arrays, for this reason it is used in a large number of standard LCD panels. However, when signals are transmitted through the LVDS interface, side electromagnetic radiation occurs, which can be intercepted by intruders. To solve this problem, it is proposed to use the shielding recommendations described in this article. Shielding is the process of installing a metal shield that serves as a barrier to electromagnetic radiation around the cable, the technical means itself or its separate parts. This allows to reduce the level of signal emission and improve the quality of data transmission. The article describes methods for individual parts of a typical monitor with an LVDS interface shielding. Special attention is paid to evaluating the effectiveness of the proposed recommendation. Experiments are being carried out, during which the radiation level of the signal is measured before and after the refinement of the technical means. The results show a significant decrease in signal energy, which confirms the effectiveness of the proposed approach. Thus, this article is of interest to specialists in the field of electronics and engineers involved in the development and improvement of data transmission interfaces. The proposed recommendations can be used to reduce electromagnetic radiation in various electronic devices with LVDS interface.

Published

2024

27. Fulfilling data access obligations: How could (and should) platforms facilitate data donation studies?

Author

Valerie Hase, Jef Ausloos, Laura Boeschoten, Nico Pfiffner, Heleen Janssen, Theo Araujo, Thijs Carrière, Claes de Vreese, Jörg Haßler, Felicia Loecherbach, Zoltán Kmetty, Judith Möller, Jakob Ohme, Elisabeth Schmidbauer, Bella Struminskaya, Damian Trilling, Kasper Welbers, and Mario Haim

Subjects

Social media platforms, Data donation, Digital trace data, Internet policy, Transparency, Cybernetics, Q300-390, Information theory, Q350-390

Abstract

Research into digital platforms has become increasingly difficult. One way to overcome these difficulties is to build on data access rights in EU data protection law, which requires platforms to offer users a copy of their data. In data donation studies, researchers ask study participants to exercise this right and donate their data to science. However, there is increasing evidence that platforms do not comply with designated laws. We first discuss the obligations of data access from a legal perspective (with accessible, transparent, and complete data as key requirements). Next, we compile experiences from social scientists engaging in data donation projects as well as a study on data request/access. We identify 14 key challenges, most of which are a consequence of non-compliance by platforms. They include platforms’ insufficient adherence to (a) providing data in a concise and easily accessible form (e.g. the lack of information on when and how subjects can access their data); (b) being transparent about the content of their data (e.g. the lack of information on measures); and (c) providing complete data (e.g. the lack of all available information platforms process related to platform users). Finally, we formulate four central recommendations for improving the right to access.

Published

2024

28. Privacy Paradox in Industry 4.0: A review of library information services and data protection

Author

Yumnaa Ocks and Oghenere G. Salubi

Subjects

industry 4.0, f-techethix, privacy, academic libraries, information ethics, popi act, Management information systems, T58.6-58.62, Information theory, Q350-390

Abstract

Background: In the wake of Industry 4.0, libraries are integrating Fourth Industrial Revolution (4IR) technologies to enhance efficiency. However, this shift in practice raises ethical and privacy concerns, particularly regarding the Protection of Personal Information Act (PoPI Act). Objectives: This literature review explores the ethical and privacy challenges posed by 4IR technologies in delivering information services to library patrons including the impact on PoPI Act compliance in addressing data privacy concerns. Method: Adopting a systematic approach, this literature review employs the Preferred Reporting Items for Systematic Reviews and Meta-Analyses flowchart and inclusion criteria focussed on 4IR in libraries and its relation to the PoPI Act. Peer-reviewed articles in English from 2013 to 2023 were sourced from scholarly databases. Results: The review highlights the transformation of academic library services in the 4IR era and the consequent privacy challenges. Concerns arise from advanced library systems and extensive data retention. While libraries operate non-profitably, the adoption of 4IR technologies for data acquisition mirrors commercial practices, raising ethical questions. Patron privacy issues extend beyond traditional data collection to potential misuse and improper data handling as libraries often work with vendors. Conclusion: The integration of 4IR technologies in academic libraries necessitates a delicate balance between improved services and safeguarding user privacy and the PoPI Act serves as a crucial regulatory framework. Librarians must navigate the evolving landscape of data ethics, emphasising transparency, accountability and adherence to privacy legislation. Contribution: The introduction of artificial intelligence and 4IR technologies to library information services has unlimited possibilities including countering misinformation and disinformation, and the expansion of library services to tech-savvy users beyond the physical walls of the library building. However, the deployment of these technologies raises new questions about ethical concerns that the use of these technologies poses to information professionals in the rendition of library services. The results of this study will be useful for policy and professional practice in taking full advantage of 4IR technologies and services.

Published

2024

29. Emerging South African smart cities: Data security and privacy risks and challenges

Author

Francois P. Cornelius and Shandre K. Jansen van Rensburg

Subjects

cyberattacks, data breaches, data security and privacy risks, data security, emerging smart city, information security risks, information security, privacy, smart city, Management information systems, T58.6-58.62, Information theory, Q350-390

Abstract

Background: Smart cities leverage advanced technologies such as the Internet of Things (IoT), fifth generation (5G) networks, and data analytics to enhance citizens’ quality of life, focussing on creating efficient, functional, and eco-friendly urban environments. While these initiatives offer significant benefits, there are ongoing concerns about data security and privacy. Objectives: This article investigates the data security and privacy risks and challenges in emerging South African smart cities. The objectives are to identify these risks, assess the effectiveness of current security measures, and contextualise these vulnerabilities within the South African and global contexts. Method: A qualitative approach was adopted, involving virtual interviews with 20 Subject Matter Experts (SMEs) through purposive and snowball sampling. The raw data were thematically analysed, revealing significant themes. Results: Emerging South African smart cities face several risks and challenges, including poor governance, a shortage of skills, a lack of awareness and training, insufficient funding, and a combination of these factors. Conclusion: The research highlights the importance of safeguarding individuals’ data and privacy in the context of smart cities, advocating the need for proactive measures to address these concerns. Contribution: This article promotes interdisciplinary dialogue, leading to more comprehensive solutions. In addition, exploring data security and privacy in emerging smart cities aids in understanding the implications of information management practices. Although the article focuses on emerging South African smart cities, the challenges discussed have global relevance.

Published

2024

30. Economic empowerment of women domestic workers: Role of digital financial services

Author

Okechukwu E. Amah, Victor Kolo, Charles Aigbona, Ruqayyah Baderinwa, Chinedu Okoro, and Muhammad Akanji

Subjects

digital financial services, women economic empowerment, women domestic workers, financial autonomy, nigeria., Management information systems, T58.6-58.62, Information theory, Q350-390

Abstract

Background: The impact of Digital Financial Services (DFS) on women’s economic empowerment (WEE) has aroused the attention of practitioners and scholars over the past decade. However, its influence on the WEE of women domestic workers has largely been overlooked, particularly in marginalised and vulnerable communities. Objectives: This study investigated the DFS that women domestic workers use and how they enhance the economic empowerment of women domestic workers. Method: The study utilised qualitative data from in-depth interviews with women domestic workers (n = 40) in Nigeria. Thematic analysis of qualitative data identified three themes, namely, financial security, privacy and agency, that constitute pathways to women domestic workers’ economic empowerment. Results: The findings indicate that the availability and user-friendliness of DFS play a significant role in promoting the extracted themes among women domestic workers, thereby enhancing their reputation, relevance in the affairs of the family and overall growth and development. The study indicated that ownership of a mobile phone is a foundational element that drives DFS, which powers WEE. Conclusion: Policymakers, employers and relevant stakeholders should acknowledge this importance and strive to establish mechanisms that enhance and safeguard the financial rights of domestic workers. Contribution: This study contributes to the ongoing endeavours of policymakers, governments and researchers in comprehending the expanding realm of women’s empowerment by exploring the potential of DFS as a viable means to empower all women and girls.

Published

2024

31. Exploring the influences of virtual brand community members’ interaction on brand loyalty

Author

Lihong Deng, Fei Liu, Jing He, Wenwen Yin, and Xiangyin Kong

Subjects

virtual brand community, community interaction, brand loyalty, community identification, media richness, Management information systems, T58.6-58.62, Information theory, Q350-390

Abstract

Background: With the rapid development of Internet technology and social media, a growing number of companies now not only transfer their traditional offline business interactions to online but also engage in online customer relationship management, market share expansion and brand building. Consumer interaction in the virtual brand community has become progressively more important in consumers’ purchase decision. Objectives: The purpose of establishing virtual brand community is to obtain brand loyalty, but the existing research rarely discusses the impact of member interaction on brand loyalty. To address this research gap, we explore the influence mechanism between virtual brand community member interaction and brand loyalty. Method: To verify the research hypothesis, we distributed and collected 393 valid questionnaires on wenjuan.com, one of the largest online questionnaire service companies in China. Results: Our results reveal that virtual brand community members’ interaction has a positive impact on brand loyalty. In addition, community identification also has a partial mediating effect. Moreover, media richness regulates the relationship between member interaction and community identification. Conclusion: This article mainly investigates the virtual brand community member interaction behaviours. We also explore the influences of different dimensions of virtual brand community interaction on community identification and member brand loyalty. Contribution: This article deepens our understanding of online platform members’ participance behaviours.

Published

2024

32. Infrastructure as a service adoption model for South African universities using thematic analysis

Author

Michael N. Moeti

Subjects

infrastructure as a service, cloud computing, institution of higher learning, thematic analysis, client server model, Management information systems, T58.6-58.62, Information theory, Q350-390

Abstract

Background: South African universities are dealing with concerning socio-economic issues and budgetary limits that affect university operations negatively. It is no longer viable for most universities to purchase and maintain information technology (IT) infrastructure systems while also keeping up with the ever-changing technology across the world. Objectives: The aim of this article is to explore the benefits that come with infrastructure as a service (IaaS), as compared to the on-premises model that is currently used by most South African universities. Method: This article adopts both transaction cost theory (TCT) and diffusion of innovation theory (DOI) as the underpinning theories. The interpretivist paradigm was applied to gain a comprehensive understanding of how university management perceives IaaS adoption. Results: The results introduce three new and critical factors that need to be considered by university managers whenever they want to move their on-premises IT model to cloud IaaS: trust, security and attitude. Conclusion: The research finds that IaaS offers advantages in scalability, flexibility, accessibility and on-demand deployment. These findings underscore the importance of addressing barriers to IaaS adoption within the specific context of South African universities. Contribution: The findings of this article add to the cloud computing literature, by presenting a new model that IT decision-makers can utilise when considering moving their on-premises IT infrastructure to IaaS in South African universities. The article recommends that future research could expand the number of universities from which data are collected.

Published

2024

33. A model on workarounds and information security integrity

Author

Kennedy Njenga, Ntsakisi F. Nyamandi, and Mmatshuene A. Segooa

Subjects

workarounds, information security, integrity, behaviour, non-compliance, Management information systems, T58.6-58.62, Information theory, Q350-390

Abstract

Background: Workarounds are creative human actions that bypass a known problem in a system or a policy. Workarounds serve as temporary ‘fixes’ when effective but will often compromise the integrity of information systems in the long term, mainly when they are ineffective. Objectives: Forming part of behavioural studies in information systems security, the study aimed to investigate how workarounds influence the integrity of information security systems across businesses. Method: A quantitative approach that followed the positivism paradigm was employed. A survey strategy was used, and data were collected using closed-ended questionnaires targeting employees working in the Gauteng province of South Africa. The survey elicited responses from 207 professional participants. Analysis was done using Statistical Package for Social Sciences (SPSS) v29 software. Results: The study suggests that Individuality and Job characteristics are crucial predictors of workarounds, with the most notable findings pointing to a significant positive association between Workaround and Information security integrity. Crucially, highly individualistic employees are more likely to initiate workarounds, and in turn, this influences information security integrity. Conclusion: The work shows that employees with highly individualistic personalities are more likely to initiate workarounds and should be trained and supervised to mitigate this attribute, as this might be detrimental to information security integrity. Contribution: The study contributes theoretically by showing how workaround activities influence information security integrity. This study will assist enterprises in fortifying their information security measures.

Published

2024

34. Factors influencing data quality in routine health information systems in Maridi county, South Sudan

Author

Lubang D. Morris, Margaret W. Nyongesa, and Tobijo D. Sokiri

Subjects

data quality, routine health information system, health facilities, behavioral factors, technical factors, organizational factors., Management information systems, T58.6-58.62, Information theory, Q350-390

Abstract

Background: Health system planning and monitoring rely on routine data collection, analysis and utilisation. However, underdeveloped countries need more data for decision-making. South Sudan’s data management framework only partially functions, with delayed data collection and inaccurate data. The study examined the factors affecting data quality in Maridi County, South Sudan, aiming to improve resource forecasting and equitable health service delivery. Objective: The study sought to identify the obstacles and opportunities for improving data quality in health information systems (HIS) in Maridi County, Western Equatoria State, South Sudan. Methods: A cross-sectional study involving 106 respondents was conducted on 12 healthcare facilities in Maridi County. Statistical Package for the Social Sciences (SPSS) version 25 was used for descriptive, factor and thematic analysis to understand data quality, focussing on behavioural, organisational and technical aspects. Result: The study revealed that insufficient motivation, negative staff attitudes, excessive workloads, a lack of cooperation, personnel insufficiency, inadequate supervision, feedback and training influenced data quality. These factors were interrelated, with over 50% of variables showing weak to strong correlations. Set of standard indicators correlated with the presence of standard data collection tools (r = 0.51). Regular feedback from the County Health Department linked with completeness (r = 0.63) and the training of personnel on health management information systems (HMIS) and completeness resulted in moderate association (r = 0.488). Conclusion: Staff motivation, optimal staffing, training, regular feedback, and continuous supervision are crucial for maintaining the appropriate skill set for data quality. Contribution: Data quality can be achieved when standard tools and human resources are maintained and are evenly distributed.

Published

2024

35. IoT appropriation for crop management and productivity enhancement in South Africa

Author

Zolile Myeko and Patient Rambe

Subjects

agriculture productivity, climate change, food insecurity, crop farming, iot technologies, crop management, south africa, Management information systems, T58.6-58.62, Information theory, Q350-390

Abstract

Background: While the Internet of things (IoT) has been praised for its potential to improve food security and combat climate change, it is unclear how agricultural entrepreneurs (especially farmers) in emerging contexts are harnessing this technology to leverage agricultural productivity. Objectives: Given the lack of documentation of novel-technology-supported farming approaches in relevant extant literature in emerging economies, this study sought to explore how South African farmers are harnessing the strength of IoT to leverage productivity in crop farming. Method: To address this research gap, a systematic literature review was conducted to establish how IoT was implemented in crop farming in resource-constrained contexts of South Africa. These databases, namely Google Scholar, Scopus, MDPI, IEEE Xplore, and Science Direct, were utilised to gather the relevant information. Results: The findings highlighted that IoT technology presented multiple opportunities for improving operational efficiency and connectivity and facilitating remote management of agricultural activities. Conversely, the findings suggested that the utilisation of IoT in crop farming poses serious challenges arising from software complexity, data security, lack of supporting infrastructure and technical skills. Conclusion: This article demonstrates how institutional voids, human capital and technological gaps in the South African farming industry undermine crop farming, food security in the communities and government efforts at promoting the latest technologies for leveraging agricultural productivity and the farming industry in general. Contribution: The study has contributed to filling the gap in the IoT literature in South Africa and worldwide. This study also contributed by aligning the theory to the study.

Published

2024

36. Examining the applicability of the Protection of Personal Information Act in AI-driven environments

Author

Vicent Mbonye, Marlini Moodley, and Farai Nyika

Subjects

artificial intelligence, data privacy, personal information, protection of personal information act (popi act), data protection, Management information systems, T58.6-58.62, Information theory, Q350-390

Abstract

Background: Technological advancements have heightened the importance of safeguarding individual privacy and data. In response to these challenges, South Africa introduced the Protection of Personal Information (POPI) Act. This legislation established robust legal frameworks aimed at protecting confidential information and upholding individuals’ right to anonymity. However, there is a significant research gap regarding the POPI Act’s direct implications and effectiveness in the context of artificial intelligence (AI) adoption and utilisation. Understanding the interplay between the POPI Act and AI technologies is crucial for ensuring regulatory compliance, safeguarding personal data and fostering responsible AI deployment in South Africa. Objectives: This study investigates the POPI Act’s applicability in addressing privacy issues related to AI adoption in various sectors. Method: The research uses a document review methodology to analyse the documents and synthesise the results. This approach offers efficiency, accessibility, cost-effectiveness and non-intrusiveness benefits, making it a valuable tool for qualitative research across various disciplines. Results: Despite the POPI Act’s guiding principles aligning with key concepts of personal information protection, there are several gaps in its applicability to AI advancements across various sectors. Conclusion: The study emphasises the need for a dynamic legal framework that evolves with AI advancements, advocating for the incorporation of more stringent measures to address emerging privacy concerns. Contribution: The research contributes to the ongoing discourse on data protection and AI by highlighting the need for a forward-thinking legal framework that balances innovation and privacy, ensuring that the POPI Act remains effective in the face of evolving technologies.

Published

2024

37. General-purpose AI regulation and the European Union AI Act

Author

Oskar J. Gstrein, Noman Haleem, and Andrej Zwitter

Subjects

Artificial intelligence, General-purpose AI, AI Act, European Union, AI governance, Cybernetics, Q300-390, Information theory, Q350-390

Abstract

This article provides an initial analysis of the EU AI Act's (AIA) approach to regulating general-purpose artificial intelligence (AI) – such as OpenAI's ChatGPT – and argues that it marks a significant shift from reactive to proactive AI governance. While this may alleviate concerns that regulators are constantly lagging behind technological developments, complex questions remain about the enforceability, democratic legitimacy, and future-proofing of the AIA. We present an interdisciplinary analysis of the relevant technological and legislative developments that ultimately led to the hybrid regulation that the AIA has become: a framework largely focused on product safety and standardisation with some elements related to the protection of fundamental rights. We analyse and discuss the legal requirements and obligations for the development and use of general-purpose AI and present the envisaged enforcement and penalty structure for the (un)lawful use of general-purpose AI in the EU. In conclusion, we argue that the AIA has significant potential to become a global benchmark for governance and regulation in this area of strategic global importance. However, its success hinges on effective enforcement, fruitful intra-European and international cooperation, and the EU's ability to adapt to the rapidly evolving AI landscape.

Published

2024

38. Unleashing the power of the 4IR in organisational value chains: A conceptual analysis

Author

Olutoyin O. Olaitan and Arthur Mapanga

Subjects

4ir, vrio, resource-based view, organisational value chains, transformative technologies, Management information systems, T58.6-58.62, Information theory, Q350-390

Abstract

Background: The Fourth Industrial Revolution (4IR) has transformed value chains across various industries. However, there is still a lack of knowledge on how to effectively utilise 4IR technologies in organisational value chains. Research must explore how organisations can use 4IR technologies to optimise their value chain performance. Objectives: The primary aim of this study is to explore the holistic impact of 4IR technologies on the structural transformation of value chains. Method: Applying the principles of the resource-based view and the VRIO (Valuable, Rare, Inimitable and Organisation) framework, a systematic literature review was conducted to map the intersection of 4IR technologies and value chain performance. It utilised resource-based view theory and the VRIO framework to assess the role of 4IR in transforming value chains. This study focused on the VRIO integration of 4IR resources, such as advanced data analytics, Internet of Things (IoT), proprietary technologies and skilled workforces. Results: The research shows that 4IR resources are valuable and rare assets that require meticulous organisational integration, adaptable organisational structures, innovation-driven cultures and cross-functional collaboration. Conclusion: The strategic integration of 4IR resources within value chains can lead to innovation, efficiency and enduring competitive advantage. Contribution: This study provides a strategic roadmap for integrating emerging 4IR technologies into business value chains, cultivating a deeper understanding and maximising the benefits of these technologies to achieve sustained value creation and competitive advantage.

Published

2024

39. The current state of agile methodology utilisation in a South African insurance company

Author

Lindelwa Ngqame, Nkqubela Ruxwana, and Tshinakaho R. Seaba

Subjects

agile software development, south african insurance industry, it project management, information technology, information systems, Management information systems, T58.6-58.62, Information theory, Q350-390

Abstract

Background: South African insurance companies are under pressure to adapt to the constantly changing environment and customer-changing requirements. Agile software development presents itself as a viable solution for swiftly meeting these demands. However, there is a lack of comprehensive understanding regarding the current utilisation of agile methodologies within the South African insurance sector; this article aims to bridge this gap. Objectives: The purpose of this theme is to fully understand the extensive level of the experience for the participants and the nature of projects the participants have been involved in and lastly time frames of the projects and how long have insurance been using agile methodology. Method: For this study, purposive sampling that involves the selection of the units to be observed based on your own judgement about which ones were the most useful or representative will be applied. The criteria were based on the participants having played a role as stakeholder in a project that has used agile methodology within the selected organisation within the past 3 years to remain relevant to this study purpose. Results: The identified pattens from the respondents showed that agile methodology is currently utilised for the following in the selected insurance company: software upgrades new product new function Conclusion: In summary, the current state of agile methodology utilisation in a South African insurance company is associated with application transformation to cloud computing, work transformation, onboarding of new applicants, environment enhancements, schema amendment, introduction of new product such as sales force, automating insurance claims documents, scheme enhancement, fund anniversary and renewal of people’s schemes. Contribution: This comprehensive research significantly contributes to the body of knowledge, shaping the strategic direction of agile methodologies within software development project environments.

Published

2024

40. An investigation of healthcare professionals’ intention to use Smart Card Technology

Author

Lario Malungana and Lovemore Motsi

Subjects

healthcare, technology, smart card technology, patients, adoption, Management information systems, T58.6-58.62, Information theory, Q350-390

Abstract

Background: Patient records are essential to healthcare professionals access to health information, allow them to assess symptoms and signs across a wider temporal range and improve diagnosis and treatment. The study acknowledged the significance of healthcare informatics such as Smart Card Technology (SCT) in today’s dynamic health systems. Objectives: This study aimed to investigate factors that influence healthcare professionals’ intentions to use SCT in public healthcare. Method: The study adopted a quantitative research approach using questionnaire surveys as a means to collect data from a total of 406 healthcare professionals from hospitals in Tshwane. Results: The findings showed that all of the variables based on the diffusion of innovation (DOI) theory, including behavioural intention (BI), social influence (SI), service quality (SQ), user satisfaction (US), compatibility (C), system use (SU) and information quality (IQ), as well as the health unified theory of acceptance of user technology (HUTAUT), DeLone and McLean’s Information Systems Success (DM ISS) model, had a positive impact on the intention to use the SCT. Continued use of SCT was positively correlated with user satisfaction and found a favourable correlation between BI and all of the factors. Conclusion: The healthcare professionals’ intention to utilise SCT was notably impacted by various factors, including SI, SQ, US, C, SU and IQ. These factors collectively influence the intention to utilise the SCT. In addition, these findings show that BI has an impact on the intention to utilise SCT. Contribution: The results offer a more profound understanding of the variables that impact the use of SCT to improve patient outcomes. In developing countries, public hospitals can enhance their technology acceptance by utilising the SCT adoption framework. Furthermore, this study only included healthcare professionals who worked for public hospitals; to provide a more complete picture of both sectors, future research might concentrate on a target group of healthcare professionals who worked for both public and private hospitals. In addition, future studies should examine patient perceptions regarding the use of SCT in healthcare delivery and the characteristics that encourage patients to adopt and use the technology.

Published

2024

41. Determining the digital divide among people with disabilities in KwaZulu-Natal

Author

Simphiwe P. Buthelezi, Nonkululeko M. Zondo, Londeka T.M. Nxumalo, and Mlondi Vilakazi

Subjects

digital divide, people with disabilities, exclusion, equality, marginalisation., Management information systems, T58.6-58.62, Information theory, Q350-390

Abstract

Background: About 1.3 billion people around the world are living with disabilities, facing challenges such as premature death, mental conditions and other diseases. In South Africa, over 3.5 million people live with disabilities, making up about 6.6% of the total population. People with disabilities face numerous challenges of prejudice, and increasingly, digital exclusion is also becoming a concern. Objectives: The objective of this study was to determine the extent and challenges that People with disabilities (PwD) have in accessing digital technology, assess the level of the digital divide, and propose measures to narrow this gap. Data were collected using survey questions, and the target population were people with disabilities located in various districts of KwaZulu-Natal province, South Africa. Method: The study utilised a quantitative approach and analysed the findings using the Statistical Package for the Social Sciences (SPSS). Results: The results indicated that people with disabilities are marginalised and have limited or no access to technology. The research concludes that there needs to be a targeted approach towards assisting people with disabilities, and stakeholders involved need to combat the digital divide for disadvantaged individuals to promote positive social change. Conclusion: More needs to be done to increase society’s sensibilities towards people living with disabilities. Technology penetration seems to be a challenge and individuals with disabilities are left with a significant gap that needs to be addressed. Contribution: This article contributes to bridging the technology inequality for people with disabilities in historically disadvantaged societies.

Published

2024

42. A digital procurement framework for South African public sector: A content analysis approach

Author

Lawrence M. Mojaki, Tite Tuyikeze, and Nkanyiso K. Ndlovu

Subjects

digital procurement, public procurement, internet of things, cloud computing, industry 4.0, technology, public sector, Management information systems, T58.6-58.62, Information theory, Q350-390

Abstract

Background: Public procurement plays a pivotal role in the South African economy and accounts for a significant portion of public expenditure. The effective management of procurement processes is crucial for ensuring that money is spent wisely and there is an efficient service delivery. However, the paper-based procurement systems have been plagued by inefficiencies. Objectives: To address the challenges of paper-based procurement systems, the study developed a digital procurement framework. The development of a digital procurement framework for the South African public sector represents a strategic response to these challenges and aims to leverage cutting-edge digital technologies to revolutionise the way that the government procures goods and services. Method: The study followed a qualitative research methodology in which content analysis was used to identify themes. Subsequently, a thematic analysis was conducted to formulate the components of the proposed framework. The study facilitated an understanding of the Internet of Things (IoT) and cloud computing. Results: The literature revealed that Industry 4.0 technologies are crucial as they present opportunities which are consistent with legislation like scalability, cost efficiency, collaboration, transparency, accountability and process efficiency. Conclusion: Implementing procurement reforms effectively will result in a public sector procurement system that is responsible, offers value for money and ensures high-quality service delivery. Contribution: The study contributed to the body of knowledge by providing a guide for a digital procurement of South Africa’s public sector and impact of technology on public procurement.

Published

2024

43. Nominal ranking technique in information and knowledge management: A methodology to SoTL

Author

Lucian T. De Koker and Tanya Du Plessis

Subjects

scholarship of teaching and learning, sotl, nominal ranking technique, heat maps, information and knowledge management, business case studies, Management information systems, T58.6-58.62, Information theory, Q350-390

Abstract

Background: The scholarship of teaching and learning (SoTL) makes provision for methodology contributions across disciplines. The information and knowledge management (IKM) discipline prepares students to function optimally in the Fourth Industrial Revolution (4IR). To keep abreast with continuous and agile change in the 4IR, a new contribution is made to the SoTL in the form of a nominal ranking technique (NRT) methodology in the IKM discipline. Objectives: To develop the NRT methodology for constructing IKM heat maps of the 4IR elements and criteria relating to strategic information management (SIM) business case studies (BCSs). By sharing the NRT methodology, this paper aims to make a SoTL contribution in IKM. Method: Using the qualitative research approach, content analysis was used to analyse 101 BCSs of SIM students. By employing critical case sampling and the NRT methodology, the top BCSs were identified for inclusion in constructing the IKM heat maps. Results: Four BCS categories, unique, novice, duplicate, and duplicate-novice, were determined by applying the NRT methodology, with 5 elements and 25 criteria in constructing the IKM heat maps. Conclusion: The NRT methodology serves as a guideline for constructing IKM heat maps, a unique contribution to the SoTL in the IKM discipline. Each application of the NRT methodology will be unique and beneficial. Contribution: In this study, the value relates how the IKM discipline prepares SIM students to function optimally in the 4IR, evidenced by the four categories of BCSs.

Published

2024

44. Project leadership competencies influencing success in Information Communication Technology projects

Author

Sinazo Mbebe and Larry E. Jowah

Subjects

competencies, ict organisation, project leadership, project management competencies, project managers, project success., Management information systems, T58.6-58.62, Information theory, Q350-390

Abstract

Background: Information communication technology (ICT) is pivotal in shaping knowledge creation, information management, and project outcomes in the 21st century. The success of ICT projects relies not only on technical proficiency but also on non-technical factors. This underscores the importance of addressing technical and non-technical aspects in ICT project management for optimal project outcomes. Objectives: This study highlights indispensable project leadership competencies for effective ICT project management and their roles in preventing project failures. The ultimate goal is to increase the success rate of ICT projects, by integrating the project leadership competencies in managing ICT projects. Method: The research is carried out utilising a quantitative data processing method, with data quantification and perceptions measured using the Likert scale. The researcher’s data-gathering method contains information acquired from a structured questionnaire. The data collected is analysed with the Statistical Package for the Social Sciences (SPSS version 22.0) analysis tool. Results: The findings suggest that technical proficiencies are important; however, they are not the only attributes that matter. Although practitioners with technical skills are certainly indispensable, project managers (PMs) still require other competencies. As a result, the effectiveness of PMs’ technical expertise should be balanced with soft skills. Conclusion: The study indicates that there is no evidence suggesting that technical skills are less valuable than other competencies; however, it is evident that interpersonal skills are also crucial. Contribution: This research contributes to better understanding how specific leadership competencies influence the success of ICT projects, aiming to enhance project management practices in the ICT sector.

Published

2024

45. Blocking the information war? Testing the effectiveness of the EU’s censorship of Russian state propaganda among the fringe communities of Western Europe

Author

Christiern Santos Okholm, Amir Ebrahimi Fard, and Marijn ten Thij

Subjects

Censorship, Propaganda, Information war, Platforms, Russia, Cybernetics, Q300-390, Information theory, Q350-390

Abstract

In response to Russia’s full-scale invasion of Ukraine in February 2022, the European Union banned or geo-blocked Russian propaganda media fearing the effects of the Kremlin’s information warfare on internal public opinion during the largest security crisis in modern history. We investigate the blocks’ effectiveness in limiting the sharing of Russian propaganda media content among vulnerable Western European fringe communities. By studying posting patterns on Facebook three months before and after the geo-block, we find that the geo-block successfully reduced the sharing of Russian propaganda media content among fringe communities and did not increase the sharing of other non-banned pro-Russian media. Furthermore, we found the geo-block increased sharing of content from alternative platforms, while the share of pro-Russian content doubled among these posts. These findings show the effectiveness of censorship in limiting foreign influence campaigns on major platforms, but they also show how alternative platforms allow for the continued spread of banned content.

Published

2024

46. But did they really? Platforms’ compliance with the Code of Practice on Disinformation in review

Author

Stephan Mündges and Kirsty Park

Subjects

Disinformation, Platform regulation, Code of Practice on Disinformation, EU internet policy, VLOP, Cybernetics, Q300-390, Information theory, Q350-390

Abstract

A key pillar in the EU’s approach to regulating disinformation is the Strengthened Code of Practice on Disinformation. This self-regulatory Code proposes a broad range of measures for different stakeholders. It has been signed by platform companies that thereby agreed to report on compliance with the Code. This study investigates Google’s, Meta’s, Microsoft’s, TikTok’s and Twitter’s (now X) compliance with their reporting obligations for the first time. Analysing the platform baseline reports published in early 2023, we find that, overall, platforms are only partly compliant with the Code. Qualitative information provided by platforms often lack detail and/or relevance. Reported quantitative data is, in several cases, missing, incomplete, or not robust. We point out claims by platforms that are doubtful or have been proven wrong in the past, and highlight avenues for future research and investigations. Additionally, we reflect on the framework in place for monitoring the Code of Practice and ways to improve it. This study is particularly relevant as the EU is transitioning from a self-regulatory to a co-regulatory model when regulating disinformation. The Code of Practice may soon become a code of conduct under the Digital Services Act (DSA) making non-compliance with it sanctionable and increasing the need for systematic monitoring.

Published

2024

47. Estonia’s digital diplomacy: Nordic interoperability and the challenges of cross-border e-governance

Author

Alex Hardy

Subjects

Estonia, E-government, Digital diplomacy, Innovation, Cross-border e-governance, Cybernetics, Q300-390, Information theory, Q350-390

Abstract

Estonia has long been held as a leading example of e-Governance. Estonia’s ubiquitous e-Governance is enabled by the X-Road, an open-source data exchange layer that allows the secure exchange of data. This paper explores the X-Road integration between Estonia, Finland, the Faroe Islands, the Åland Islands, and Iceland. Having been originally pioneered and implemented by Estonia and developed by the Estonian Information System Authority (RIA), X-Road is increasingly attractive to other nations drawn to the digital services it can enable. This paper argues that the cross-border implementation of the X-road, pioneered by Estonia, is a form of digital diplomacy – an opportunity to extend influence and shape e-norms among geopolitically like-minded partners. Prior conceptions of digital diplomacy have focused on citizen engagement – often specifically on the use of Twitter or other social media platforms for public outreach. This study suggests, however, that our understanding of digital diplomacy ought to extend beyond such undoubtedly important interpretations to also encompass the use of technology in developing closer diplomatic relations. The study utilises a series of semi-structured interviews with government officials and private sector actors to support its arguments around the diplomatic and geopolitical implications of e-Governance as a diplomatic tool.

Published

2024

48. The European approach to regulating AI through technical standards

Author

Mélanie Gornet and Winston Maxwell

Subjects

Artificial intelligence, AI Act, Standards, CE mark, Fundamental rights, Cybernetics, Q300-390, Information theory, Q350-390

Abstract

In December 2023, the European institutions reached a political agreement on the AI Act, a new regulation on artificial intelligence. The AI Act will require providers of high-risk AI systems to test their products against harmonised standards (hENs) before affixing a European Conformity (CE) mark to allow AI products to circulate freely on the European market. The CE mark and hENs are long-established European regulatory tools to deal with product safety and already apply to a wide range of products. To date, however, they have never been used to attest to compliance with fundamental rights, something the AI Act aims to achieve. In this article, we examine the role of hENs and CE marking in the AI Act, and how these product safety regulatory techniques have been expanded to cover protection of fundamental rights. We analyse the 5 March 2024 CJEU decision and the respective opinion of the Advocate General in the Public.Resource.Org case which raises questions on democratic processes in standardisation organisations. We show that unlike compliance with product safety norms, compliance with fundamental rights cannot be certified through use of technical standards because violations of rights are too context-specific and require a judicial determination. However, technical standards have an important role to play in encouraging best practices in AI governance.

Published

2024

49. INTERNATIONAL FORUM OF INNOVATIVE TRANSPORT TECHNOLOGIES 'AVTONET-2024'

Author

Leonid N. Kessarinsky

Subjects

Information technology, T58.5-58.64, Information theory, Q350-390

Published

2024

50. BASED ON THE MATERIALS OF THE CIPR 2024

Author

Ivan A. Pokrovsky

Subjects

Information technology, T58.5-58.64, Information theory, Q350-390

Published

2024