利用行动设计研究为网络安全流程设计基于游戏的学习工件

IF 7.9 3区管理学 Q1 Computer Science

Business & Information Systems Engineering Pub Date : 2024-02-12 DOI:10.1007/s12599-024-00852-z

Dixon Prem Daniel Rajendran, Rangaraja P. Sundarraj

{"title":"利用行动设计研究为网络安全流程设计基于游戏的学习工件","authors":"Dixon Prem Daniel Rajendran, Rangaraja P. Sundarraj","doi":"10.1007/s12599-024-00852-z","DOIUrl":null,"url":null,"abstract":"<p>Cybersecurity threats faced by organizations are growing in volume and sophistication, with human issues being a significant reason underlying these threats. Organizations report the need for skills development to face these challenges. This need is addressed in this study by developing game-based learning (GBL) artefacts for process-related cybersecurity issues. The artefacts are developed using ADR (Action Design Research). These artefacts employ procedures prescribed by NIST (National Institute of Standards and Technology) and CCMP (Cyber Crisis Management Plan) to teach users cybersecurity concepts such as cyber crisis management, malware incident forensics, incident handling and password management. The paper details the artefacts and design process, highlights the implications for practitioners and academicians in GBL, and also describes a nascent theory for Design Science Research (DSR).</p>","PeriodicalId":55296,"journal":{"name":"Business & Information Systems Engineering","volume":"51 1","pages":""},"PeriodicalIF":7.9000,"publicationDate":"2024-02-12","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Designing Game-based Learning Artefacts for Cybersecurity Processes Using Action Design Research\",\"authors\":\"Dixon Prem Daniel Rajendran, Rangaraja P. Sundarraj\",\"doi\":\"10.1007/s12599-024-00852-z\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"<p>Cybersecurity threats faced by organizations are growing in volume and sophistication, with human issues being a significant reason underlying these threats. Organizations report the need for skills development to face these challenges. This need is addressed in this study by developing game-based learning (GBL) artefacts for process-related cybersecurity issues. The artefacts are developed using ADR (Action Design Research). These artefacts employ procedures prescribed by NIST (National Institute of Standards and Technology) and CCMP (Cyber Crisis Management Plan) to teach users cybersecurity concepts such as cyber crisis management, malware incident forensics, incident handling and password management. The paper details the artefacts and design process, highlights the implications for practitioners and academicians in GBL, and also describes a nascent theory for Design Science Research (DSR).</p>\",\"PeriodicalId\":55296,\"journal\":{\"name\":\"Business & Information Systems Engineering\",\"volume\":\"51 1\",\"pages\":\"\"},\"PeriodicalIF\":7.9000,\"publicationDate\":\"2024-02-12\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Business & Information Systems Engineering\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1007/s12599-024-00852-z\",\"RegionNum\":3,\"RegionCategory\":\"管理学\",\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"Q1\",\"JCRName\":\"Computer Science\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Business & Information Systems Engineering","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1007/s12599-024-00852-z","RegionNum":3,"RegionCategory":"管理学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"Computer Science","Score":null,"Total":0}

引用次数: 0

摘要

各组织面临的网络安全威胁在数量和复杂程度上都在不断增加，而人为问题是造成这些威胁的一个重要原因。各组织都表示需要开发技能来应对这些挑战。本研究通过针对与流程相关的网络安全问题开发基于游戏的学习（GBL）工具来满足这一需求。这些人工制品是通过 ADR（行动设计研究）开发的。这些工件采用 NIST（美国国家标准与技术研究院）和 CCMP（网络危机管理计划）规定的程序，向用户传授网络危机管理、恶意软件事件取证、事件处理和密码管理等网络安全概念。论文详细介绍了人工制品和设计过程，强调了对 GBL 从业人员和学术界的影响，还描述了设计科学研究（DSR）的新生理论。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

Designing Game-based Learning Artefacts for Cybersecurity Processes Using Action Design Research

查看原文本刊更多论文

Designing Game-based Learning Artefacts for Cybersecurity Processes Using Action Design Research

Cybersecurity threats faced by organizations are growing in volume and sophistication, with human issues being a significant reason underlying these threats. Organizations report the need for skills development to face these challenges. This need is addressed in this study by developing game-based learning (GBL) artefacts for process-related cybersecurity issues. The artefacts are developed using ADR (Action Design Research). These artefacts employ procedures prescribed by NIST (National Institute of Standards and Technology) and CCMP (Cyber Crisis Management Plan) to teach users cybersecurity concepts such as cyber crisis management, malware incident forensics, incident handling and password management. The paper details the artefacts and design process, highlights the implications for practitioners and academicians in GBL, and also describes a nascent theory for Design Science Research (DSR).

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

Business & Information Systems Engineering 工程技术-计算机：信息系统

CiteScore

11.30

自引率

7.60%

发文量

审稿时长

3.0 months

期刊介绍： BISE (Business & Information Systems Engineering) is an international scholarly journal that undergoes double-blind peer review. It publishes scientific research on the effective and efficient design and utilization of information systems by individuals, groups, enterprises, and society to enhance social welfare. Information systems are viewed as socio-technical systems involving tasks, people, and technology. Research in the journal addresses issues in the analysis, design, implementation, and management of information systems.