Date of Award

6-2020

Document Type

Project

Degree Name

Master of Science in Information Systems and Technology

Department

Information and Decision Sciences

First Reader/Committee Chair

Coulson, Anthony

Abstract

This culminating experience project explores geofencing as a potential risk and advantageous tool within the field of cybersecurity. Geofencing is defined here as a software program feature that allows its users to collect and deliver data within a specific targeted geographical area. Currently used applications are addressed from a cybersecurity mindset by applying the hacker methodology to demonstrate the potential threat. Additionally, geofencing is applied to the NIST Cybersecurity Framework to demonstrate potential benefits for cyber defence. Finally, vulnerabilities associated with applying geofencing to cyber defense, and its potential implications on privacy and cybersecurity laws is discussed and recommendations for further research are suggested.

Key findings include:

  • Demonstrating geofencing as an unknown threat in the field of cybersecurity, suggesting attention be dedicated to the type of data that is collected and the safety measures protecting that data.
  • Geofencing can be used as a tool to defend as well as support risk management. By using it as a source of data collection, decisions can be implemented to better manage the risk of devices entering and leaving a specified geographical area.
  • Geofencing can provide data that falls into Personally Identifiable Information (PII) which should make it regulated under most privacy laws.

Current privacy policies and laws are insufficient when the scope of geofencing is applied to current methodologies. Geofencing must be regulated in a fashion that ensures data collected is necessary and relevant, and that the data is kept safe from potential threats.

Download

Share

COinS