A strategic framework for e-government security: the case in Nigeria

A thesis submitted to the University of Bedfordshire in partial fulfilment of the requirements for the degree of Doctor of PhilosophyCountries across the globe are striving towards full-scale implementation of e-government. One of the issues arising with the efforts to this realization is the assurance of secure transactions while upholding high privacy standards. In order to engage citizens in the process, there must be transparency and confidence that the e-government systems they are using are reliable and will deliver the services with integrity, confidentiality and accountability. Different systems require different levels of security according to the services they provide to their users. This research presents an investigation into reasons why e-government security frameworks developed by researchers with the claim that it is one-size-fits-all issue may not hold true, particularly in the case of Nigeria, based on certain identified realities. The claim of a generalized framework appears very challenging because there seem to be much diversity across different governments. Countries differ in one or more of the following characteristics: political systems, legal systems, economic situation, available technological infrastructure, Internet and PC penetration, availability of skills and human resources, literacy levels, computer literacy levels, level of poverty, leadership, and ethnic diversities in terms of norms, languages, and expertise. Security measures implemented in e-government projects in some developed countries, beginning with more established e-government systems around the world, were evaluated and a strategic framework for e-government security proposed which considers both technical and non-technical factors that involve people, processes and technologies. The framework is proposed to advance the rapid adoption of practices that will guarantee e-government security. It seeks to provide a flexible, repeatable and cost-effective approach to implementing e-government security. This research examines the issues of enclosure in the implementation of e-government from the perspective of security and ultimately survivability

Legal and institutional framework for the protection of e-commerce consumers in Nigeria

The advent of the Internet has brought about a modem way of conducting commercial transactions known as "electronic commerce (e-commerce)". The buyers are called electronic consumers (e-consumers) while the sellers are called electronic traders (e-traders). The tendency of unfair trade practices and consumer exploitations by the e-traders is eminent. The need to protect the e-consumers against such inimical conducts becomes paramount. Therefore, this study seeks to analyse the legal and institutional frameworks for the protection of e-consumers in Nigeria. The study analyses the adequacy of the legal framework as well the institutional framework with a view to making recommendations for reform. The study collects and analyses its data using a library-based research and a semi-structured interview. The study also explores international practices for better analyses and appreciation of the legal and institutional problems affecting e-consumers in Nigeria. As a result, the study reveals that the existing laws governing e-commerce and consumer protection are grossly inadequate. The study finds the inadequacy particularly in the provisions of the Nigerian Constitution 1999, the Sale of Goods Act 1893, Consumer Protection Council Act 1992, etc. Additionally, the study reveals that the inadequacy of the legal framework for the protection of e-consumers is further compounded by ineffective consumer protection institutions in the country. Such institutions include the Consumer Protection Council and the Courts. A Nigerian consumer suffers a lot and often gets discouraged when he/she intends to enforce his/her rights before the said consumer protection institutions. The system of enforcing consumer rights in Nigeria is expensive, delay-prone and full of uncertainties and technicalities. Thus. this study recommends a systematic overhaul of the legal and institutional frameworks for e-commerce and consumer protection in Nigeria. The study further recommends the establishment of a specialised consumer court/tribunal. A section of the proposed court/tribunal should be manned by experts in the fields of e-commerce Jaw and consumer protection. This is to ensure effective handling of e-consumer grievances in the country

Privacy, Security and Trust Issues Arising from Outsourcing PII Data Collection in Developing Nations A case of Nigeria e-government services

Abstract Outsourcing of IT functions is increasingly used in many organizations in sub

Improving the Effectiveness of E-Learning Implementation in the School of Engineering at Tripoli University

The study is concerned with generating recommendations for the development of e- learning strategy at the School of Engineering at Tripoli University in Libya. They are based on the identified barriers to the successful e-learning implementation in the institution after the quantitative and qualitative analysis of the questionnaires developed using SmartSurvey software package. The barriers were classified in three main categories: technical, cultural and mismanagement. These barriers were compared with those from Middle East and North Africa (MENA) countries (as close culture) and UK (as international culture and developed country). Then a SWOT (Strengths, Weaknesses, Opportunities, and Threats) model for the diagnostic of the current stage of e-learning performance in the institution is developed. The user-centred design and action research approach are used for the design, development and implementation of an e-learning package for a module studied by Year 4 students from School of Engineering at Tripoli University. The e-learning packages played a supporting role in the delivery of the chosen module therefore the blended learning approach contributed to the improvement of the quality for the teaching and learning processes. A novel I-CUBE model which can be used for the development of teaching and learning activities in a digital era is proposed. The sources of information for the proposed model are: quantitative and qualitative analysis of the stakeholders answers; conclusions for the (SWOT) analysis; researcher’s reflections of the design, development and implementation of the e-learning package, study of the relevant educational publications and researcher’s personal experience. There are several common opinions about the factors influencing the successful e-learning implementation so it is possible to make correlations between the stakeholders’ points of view and to construct the surfaces which are included in the I-CUBE model. A set of institutional, pedagogical and technological recommendations for the development of e-learning strategy in the School of Engineering at Tripoli University are formulated. These are derived from the analysis of barriers and SWOT model related to the successful e-learning implementation in Libyan Higher Education Institutes (LHEIs). Also the aspects included in the proposed novel I-CUBE model for the development of teaching and learning activities, the researcher’s personal experience as a student and lecturer at Tripoli University and as a PhD student at the University of Huddersfield in UK are also considered. The implementation of these recommendations will enable the enhancement of students’ learning experience and staff satisfaction through technology-based education addressing the flexible and diverse learning community’s needs

Managing near field communication (NFC) payment applications through cloud computing

This thesis was submitted for the degree of Doctor of Philosophy and awarded by Brunel University.The Near Field Communication (NFC) technology is a short-range radio communication channel which enables users to exchange data between devices. NFC provides a contactless technology for data transmission between smart phones, Personal Computers (PCs), Personal Digital Assistants (PDAs) and such devices. It enables the mobile phone to act as identification and a credit card for customers. However, the NFC chip can act as a reader as well as a card, and also be used to design symmetric protocols. Having several parties involved in NFC ecosystem and not having a common standard affects the security of this technology where all the parties are claiming to have access to client’s information (e.g. bank account details). The dynamic relationships of the parties in an NFC transaction process make them partners in a way that sometimes they share their access permissions on the applications that are running in the service environment. These parties can only access their part of involvement as they are not fully aware of each other’s rights and access permissions. The lack of knowledge between involved parties makes the management and ownership of the NFC ecosystem very puzzling. To solve this issue, a security module that is called Secure Element (SE) is designed to be the base of the security for NFC. However, there are still some security issues with SE personalization, management, ownership and architecture that can be exploitable by attackers and delay the adaption of NFC payment technology. Reorganizing and describing what is required for the success of this technology have motivated us to extend the current NFC ecosystem models to accelerate the development of this business area. One of the technologies that can be used to ensure secure NFC transactions is cloud computing which offers wide range advantages compared to the use of SE as a single entity in an NFC enabled mobile phone. We believe cloud computing can solve many issues in regards to NFC application management. Therefore, in the first contribution of part of this thesis we propose a new payment model called “NFC Cloud Wallet". This model demonstrates a reliable structure of an NFC ecosystem which satisfies the requirements of an NFC payment during the development process in a systematic, manageable, and effective way