Human error compromises the security of information systems in government and business organizations in the best of times. In an emergency situation, users are apt to give out more, rather than less information, over the voice channel, in the hope that any extra information may be helpful. Social engineering schemes to gain unauthorized information access are more likely to succeed as human expediency, to access information to inform decision makers and emergency operations, wins the tradeoff over seemingly pedantic security management. We propose an architectural design, specifically for the voice channel, consisting of the coupling of security and context mechanisms with query processing for secure and relevant information retrieval in emergency situations. Security and context mechanisms are expected to enhance the utility of information dissemination, via voice, to the emergency worker while ensuring procedural and fine-grain levels of security in emergency management situations.
By: Dimitri Kanevsky; Dawn Jutla; Nabil Adam
Published in: RC24115 in 2006
LIMITED DISTRIBUTION NOTICE:
This Research Report is available. This report has been submitted for publication outside of IBM and will probably be copyrighted if accepted for publication. It has been issued as a Research Report for early dissemination of its contents. In view of the transfer of copyright to the outside publisher, its distribution outside of IBM prior to publication should be limited to peer communications and specific requests. After outside publication, requests should be filled only by reprints or legally obtained copies of the article (e.g., payment of royalties). I have read and understand this notice and am a member of the scientific community outside or inside of IBM seeking a single copy only.
Questions about this service can be mailed to reports@us.ibm.com .