A secure portable execution environment to support teleworking

Autor: Peter James, Don Griffiths
Rok vydání: 2014
Předmět:
Zdroj: Information Management & Computer Security. 22:309-330
ISSN: 0968-5227
DOI: 10.1108/imcs-07-2013-0052
Popis: Purpose – This paper presents the design, development and trialling of the mobile execution environment (MEE), a secure portable execution environment designed to support secure teleworking. Teleworking is an established work practice, yet often the information security controls in the teleworking location are weaker than those in a corporate office. Security concerns also prevent organisations allowing personnel to telework. Design/methodology/approach – The design science research methodology was applied to develop the MEE, and this paper is structured using the process elements of the methodology. Findings – In this paper, the problem addressed and the design objectives are defined. The design and implementation is discussed, and the testing and trialling approach adopted to demonstrate the MEE is summarised. An evaluation of the demonstration results against the design objectives is presented. Research limitations/implications – The MEE is part of an ongoing research project using open source software; the structure and functionality of the software can limit or influence the direction of the research. Practical implications – The MEE provides a secure portable execution environment suitable for transaction-oriented work performed remotely; e.g. teleworkers performing customer support work. Social implications – The paper contributes to encouraging the implementation of teleworking. Originality/value – The MEE builds on the concept of a portable executable operating system that uploads onto a PC through an external port. The MEE extends this concept by providing a hardened secure computing environment that is uploaded from a secure storage device or a standard thumb drive (USB flash drive).
Databáze: OpenAIRE
Externí odkaz: