{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,10,3]],"date-time":"2025-10-03T22:32:58Z","timestamp":1759530778836,"version":"3.41.2"},"reference-count":51,"publisher":"Emerald","issue":"5","license":[{"start":{"date-parts":[[1997,12,1]],"date-time":"1997-12-01T00:00:00Z","timestamp":880934400000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.emerald.com\/insight\/site-policies"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[1997,12,1]]},"abstract":"<jats:p>Explains how, with the Internet increasingly being used for the conduct of electronic commerce, organizations are now cognizant of the need to control their employees\u2019 usage of the Internet. Little research has been conducted to date into this important concern. Suggests that an Internet acceptable usage policy is one vehicle for providing this control, containing guidelines for employees indicating both acceptable and unacceptable Internet usages. The policy aims to control those employee behaviours and actions which contribute to the incidence and severity of internal and external Internet risks, while enabling employees and the organization to gain maximum business value from the Internet connection. Explores the issues to be considered in the development of an organization\u2019s Internet acceptable usage policy. Uses a case study of a large Australian organization to illustrate the issues. Proposes a set of criteria for an effective Internet acceptable usage policy as a result of this research.<\/jats:p>","DOI":"10.1108\/09685229710367726","type":"journal-article","created":{"date-parts":[[2002,7,27]],"date-time":"2002-07-27T02:08:10Z","timestamp":1027735690000},"page":"182-190","source":"Crossref","is-referenced-by-count":10,"title":["Internet acceptable usage policy for organizations"],"prefix":"10.1108","volume":"5","author":[{"given":"Sharman","family":"Lichtenstein","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Paula M.C.","family":"Swatman","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"140","reference":[{"key":"key2022031120255681600_b1","unstructured":"AARNet (1995, Policy on Allowed Access to the Internet via AARNet Members, http:\/\/www. avcc.edu.u\/avcc\/aarnet\/aarnpols\/access.htm, 11 October (accessed 22 October 1996)."},{"key":"key2022031120255681600_b2","unstructured":"Abell, W. and Lim, L. (1996, \u201cBusiness use of the Internet in New Zealand: an exploratory study\u201d, Proceedings AUSWEB 96 \u2010 the Second Australian World Wide Web Conference, Southern Cross University, Australia."},{"key":"key2022031120255681600_b3","unstructured":"AHERF (1995, AHERF (Allegheny Health, Education and Research Foundation) Internet Acceptable Use Statement, http:\/\/www.mcphu. edu\/campus\/howto\/policies\/aup.tml, 15 November (Accessed 18 October 1996)."},{"key":"key2022031120255681600_b4","unstructured":"Bloch, M., Pigneur, Y. and Segev, A. (1996, \u201cLeveraging electronic commerce for competitive advantage: a business value framework\u201d, Proceedings of Ninth International Conference on EDI\u2010IOS, Bled.."},{"key":"key2022031120255681600_b5","unstructured":"Branstad, D., Oldehoff, A., Aiken, R.et al. (1995), \u201cSecurity policy for use of the national research and education network\u201d, inederal Networking Council, FEDERAL INTERNET SECURITY \u2010 A Framework for Action, Draft, Appendix 4."},{"key":"key2022031120255681600_b6","unstructured":"Broadbent, M., Butler, C., Hansell, A. and Dampney, C.N.G. (1995, \u201cBusiness value, quality and partnerships: Australasian information systems management issues\u201d, Australian Computer Journal, Vol. 27 No. 1."},{"key":"key2022031120255681600_b7","doi-asserted-by":"crossref","unstructured":"Brockway, D.W. (1996, \u201cKnowledge technologies and business alignment\u201d, Information Management & Computer Security, Vol. 4 No. 1.","DOI":"10.1108\/09685229610114213"},{"key":"key2022031120255681600_b8","unstructured":"Cavazos, E.A. and Morin, G. (1994, Cyberspace and the Law: Your Rights and Duties in the On\u2010Line World, MIT Press, Cambridge, MA."},{"key":"key2022031120255681600_b9","unstructured":"Cheswick, W. and Bellovin, S. (1994, Firewalls and Internet Security, Addison\u2010Wesley, Reading, MA."},{"key":"key2022031120255681600_b10","doi-asserted-by":"crossref","unstructured":"Cockburn, C. and Wilson, T. D. (1996, \u201cBusiness use of the World\u2010Wide Web\u201d, International Journal of Information Management, Vol. 16 No. 2.","DOI":"10.1016\/0268-4012(95)00071-2"},{"key":"key2022031120255681600_b11","unstructured":"Cohen, F.B. (1995, Protection and Security on the Information Superhighway, John Wiley & Sons, New York, NY."},{"key":"key2022031120255681600_b12","unstructured":"Condon J.C. and Yousef, F. (1985, An Introduction to Intercultural Communication, Macmillan, London."},{"key":"key2022031120255681600_b13","doi-asserted-by":"crossref","unstructured":"Cronin, B., Overfelt, K., Fouchereauz, K., Manzvanzvike, T., Cha, M. and Sona, E. (1994, \u201cThe Internet and competitive intelligence: a survey of current practice\u201d, International Journal of Information Management, Vol. 14.","DOI":"10.1016\/0268-4012(94)90060-4"},{"key":"key2022031120255681600_b14","doi-asserted-by":"crossref","unstructured":"Doddrell, G.R. (1995, \u201cInformation security and the Internet\u201d, Information Management & Computer Security, Vol. 3 No. 4.","DOI":"10.1108\/09685229510123629"},{"key":"key2022031120255681600_b15","unstructured":"EC (1995, \u201cDirective 95\/46\/EC of the European Parliament and of the Council of 24 October 1995 on the protection of individuals with regard to the processing of personal data and on the free movement of such data\u201d, Official Journal of the European Communities, No. L. 281, 23 November."},{"key":"key2022031120255681600_b16","doi-asserted-by":"crossref","unstructured":"Ernst & Young (1996, \u201cThe Ernst & Young International Information Security Survey 1995\u201d, Information Management & Computer Security, Vol. 4 No. 4.","DOI":"10.1108\/09685229610130486"},{"key":"key2022031120255681600_b17","unstructured":"FNC (Federal Networking Council) (1995a, Federal Internet Security Plan (FISP), Federal Networking Council, Security Working Group."},{"key":"key2022031120255681600_b18","unstructured":"FNC (Federal Networking Council) (1995b, FEDERAL INTERNET SECURITY \u2010 A Framework for Action \u2010 Draft, Federal Networking Council, Security Working Group."},{"key":"key2022031120255681600_b19","doi-asserted-by":"crossref","unstructured":"Hartmann, A. (1995, \u201cComprehensive information technology security: a new approach to respond ethical and social issues surrounding information security in the 21st Century\u201d, in Eloff, J.H.P. and Von Solms, H.S. (Eds), Information Security \u2010 the Next Decade, IFIP\/Sec \u201995, Proceedings of the IFIP TC11 Eleventh International Conference on Information Security, Chapman & Hall, London.","DOI":"10.1007\/978-0-387-34873-5_43"},{"key":"key2022031120255681600_b20","unstructured":"Heard, F.T. (1996, \u201cInternet security policies and Internet appropriate use policies\u201d, Proceedings of EDPAC 96 Conference, Perth.."},{"key":"key2022031120255681600_b21","doi-asserted-by":"crossref","unstructured":"Holbrook, P. and Reynolds, J. (Eds) (1991, Site Security Handbook, IETF RFC 1244..","DOI":"10.17487\/rfc1244"},{"key":"key2022031120255681600_b22","doi-asserted-by":"crossref","unstructured":"Kohl, U. (1995, \u201cFrom social requirements to technical solutions \u2010\u2010 bridging the gap with user\u2010oriented data security\u201d, in Eloff, J.H.P. and Von Solms, H.S. (Eds), Information Security \u2010 The Next Decade, IFIP\/Sec \u201995, Proceedings of the IFIP TC11 Eleventh International Conference on Information Security, Chapman & Hall, London.","DOI":"10.1007\/978-0-387-34873-5_45"},{"key":"key2022031120255681600_b23","unstructured":"Lawrence, E., Murry, J. and Tidwell, A. (1996, \u201cCyberpresence strategies for business executives\u201d, Proceedings AUSWEB 96."},{"key":"key2022031120255681600_b24","doi-asserted-by":"crossref","unstructured":"Lichtenstein, S. (1996a, \u201cInternet acceptable usage policy\u201d, Computer Audit Update, Elsevier Advanced Technology, Barking, December.","DOI":"10.1016\/S0960-2593(97)80801-4"},{"key":"key2022031120255681600_b25","unstructured":"Lichtenstein, S. (1996b, \u201cInternet security policy: a holistic and organisational approach\u201d, in Bossomaier, T. and Chubb, L. (Eds), Proceedings of 2nd Joint Conference AUUG 96\/APWWW, AUUG\u201996 and Asia Pacific World Wide Web, World Congress Centre, Melbourne."},{"key":"key2022031120255681600_b26","doi-asserted-by":"crossref","unstructured":"Lichtenstein, S. (1996c, Internet Acceptable Usage Policy: Human Issues, working paper 10\/96, Department of Information Systems, Monash University, Melbourne.","DOI":"10.1016\/S0960-2593(97)80801-4"},{"key":"key2022031120255681600_b27","unstructured":"Lichtenstein, S. (1997, \u201cDeveloping Internet security policy for organisations\u201d, in Nunamaker, J.F. and Sprague, R.H. (Eds), Proceedings of the Thirtieth Annual Hawaii International Conference on Systems Sciences, Hawaii, IEEE Computer Society Press, Los Alamitos, CA."},{"key":"key2022031120255681600_b28","doi-asserted-by":"crossref","unstructured":"Lichtenstein, S. and Swatman, P.M.C. (1997, \u201cInternet acceptable usage policy: arguments and perils\u201d, in Swatman, P.M.C, Swatman, P. and Cooper, J. (Eds), Proceedings of PAWEC \u201997, Brisbane..","DOI":"10.1108\/09685229710367726"},{"key":"key2022031120255681600_b29","unstructured":"Logan, M. and Logan, R. (1996, \u201cAlignment: how to do business on the Internet\u201d, Proceedings INET 96."},{"key":"key2022031120255681600_b30","unstructured":"Logan, R. (1995, The Fifth Language, Stoddart, Toronto."},{"key":"key2022031120255681600_b31","doi-asserted-by":"crossref","unstructured":"Mathieu, R.G. and Woodard, R.L. (1995, \u201cData integrity and the Internet: implications for management\u201d, Information Management & Computer Security, Vol. 3 No. 2.","DOI":"10.1108\/09685229510088566"},{"key":"key2022031120255681600_b32","unstructured":"Miers, D. and Hutton, G. (1996, The Strategic Challenges of Electronic Commerce, Enix Consulting Limited, UK."},{"key":"key2022031120255681600_b33","doi-asserted-by":"crossref","unstructured":"Nance, K.L. and Strohmaier, M. (1995, \u201cEthical information security in a cross\u2010cultural environment\u201d, in Eloff, J.H.P. and Von Solms, H.S. (Eds), Information Security \u2010 The Next Decade, IFIP\/Sec \u201995, Proceedings of the IFIP TC11 Eleventh International Conference on Information Security, Chapman & Hall, London.","DOI":"10.1007\/978-0-387-34873-5_44"},{"key":"key2022031120255681600_b34","unstructured":"NASA (1996, NASA Internet Acceptable Usage Policy, NASA.."},{"key":"key2022031120255681600_b35","unstructured":"NIIAC (1995, Commentary on the Privacy and Related Security Principles, Mega Project III of the National Information Infrastructure Advisory Council, USA."},{"key":"key2022031120255681600_b36","unstructured":"NIST (1994, Reducing the Risks of Internet Connection and Use, Computer Systems Laboratory Bulletin.."},{"key":"key2022031120255681600_b37","unstructured":"NIST (1996, The World Wide Web: Managing Security Risks, Computer Systems Laboratory Bulletin.."},{"key":"key2022031120255681600_b38","unstructured":"NSFNET (1992, The NSFNET Backbone Services Acceptable Use Policy, http:\/\/www.haystack. edu\/ysp\/ computer\/nsfnet.tml, June (accessed 18 October 1996)."},{"key":"key2022031120255681600_b39","unstructured":"Oliver, R.W. (1997, \u201cCorporate policies for electronic commerce\u201d, in Nunamaker, J.F. and Sprague, R.H. (Eds), Proceedings of the Thirtieth Annual Hawaii International Conference on Systems Sciences, Hawaii, IEEE Computer Society Press, Los Alamitos, CA."},{"key":"key2022031120255681600_b40","unstructured":"Olson, I.M. and Abrams, M.D. (1995, \u201cInformation security policy\u201d, in Abrams, M.D., Jajodia, S. and Podell, H.J. (Eds), Information Security \u2010 an Integrated Collection of Essays, IEEE Computer Society Press, Los Alamitos, CA."},{"key":"key2022031120255681600_b41","doi-asserted-by":"crossref","unstructured":"Pethia, R., Crocker, S. and Fraser, B. (1991, Guidelines for the Secure Operation of the Internet, IETF RFC1281.","DOI":"10.17487\/rfc1281"},{"key":"key2022031120255681600_b42","unstructured":"Poon, S. and Swatman, P.M.C. (1995, \u2018The Internet for small businesses: an enabling infrastructure for competitiveness\u201d, roceedings of the Fifth Internet Society Conference, Hawaii, June, pp. 221\u201031."},{"key":"key2022031120255681600_b43","unstructured":"Poon, S. and Swatman, P.M.C. (1996, \u201cElectronic networking among small business in Australia \u2010 an exploratory study\u201d, in Swatman, P.M.C., Gricar, J. and Novak, J. (Eds), Electronic Commerce for Trade Efficiency and Effectiveness\u2010Proceedings of the Ninth International Conference on EDI\u2010IOS, Bled, Slovenia, 10\u201012 June, Moderna Organizacija Kranj, Bled, pp. 446\u201060."},{"key":"key2022031120255681600_b44","unstructured":"Quelch, J. A. and Klein, L. R. (1996, \u201cThe Internet and international marketing\u201d, Sloan Management Review, Spring.."},{"key":"key2022031120255681600_b45","unstructured":"Rannenberg, K. (1994, \u201cRecent development in information technology security evaluation \u2010 the need for evaluation criteria for multilateral security\u201d, in Sizer, R., Yngstrom, L., Kaspersen, H. and Fischer\u2010Hubner, S. (Eds), Proceedings Security and Control of Information Technology in Society, IFIP Transactions A43, Elsevier Science B.V., Amsterdam."},{"key":"key2022031120255681600_b46","unstructured":"Stallings, W. (1995, Internet Security Handbook, IDG Books Worldwide, Inc."},{"key":"key2022031120255681600_b47","unstructured":"TIOcom (1996, Terms and Conditions for User Access and User Services, The Internet Outsourcing Group, http:\/\/www.tio.com\/ terms.tml, 27 April, (accessed 18 October 1996)."},{"key":"key2022031120255681600_b48","unstructured":"Vanbokkelen, J. (1990, The Internet Oral Tradition, IETF RFC1173.."},{"key":"key2022031120255681600_b49","doi-asserted-by":"crossref","unstructured":"Wood, C.C. (1995, \u201cWriting InfoSec policies\u201d, Computers & Security, Vol. 14.","DOI":"10.1016\/0167-4048(95)97114-P"},{"key":"key2022031120255681600_b50","unstructured":"Yin R.K. (1989, Case Study Research: Design and Methods, revised ed., Sage, Newbury Park, CA and London."},{"key":"key2022031120255681600_b51","unstructured":"Yngstrom, L. (1995, \u201cA holistic approach to IT security\u201d, in Eloff, J.H.P. and Von Solms, H.S. (Eds), Information Security \u2010 the Next Decade, IFIP\/Sec \u201995, Proceedings of the IFIP TC11 Eleventh International Conference on Information Security, Chapman & Hall, London."}],"container-title":["Information Management &amp; Computer Security"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/www.emeraldinsight.com\/doi\/full-xml\/10.1108\/09685229710367726","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/www.emerald.com\/insight\/content\/doi\/10.1108\/09685229710367726\/full\/xml","content-type":"application\/xml","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/www.emerald.com\/insight\/content\/doi\/10.1108\/09685229710367726\/full\/html","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,7,25]],"date-time":"2025-07-25T00:09:46Z","timestamp":1753402186000},"score":1,"resource":{"primary":{"URL":"http:\/\/www.emerald.com\/ics\/article\/5\/5\/182-190\/178451"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[1997,12,1]]},"references-count":51,"journal-issue":{"issue":"5","published-print":{"date-parts":[[1997,12,1]]}},"alternative-id":["10.1108\/09685229710367726"],"URL":"https:\/\/doi.org\/10.1108\/09685229710367726","relation":{},"ISSN":["0968-5227"],"issn-type":[{"type":"print","value":"0968-5227"}],"subject":[],"published":{"date-parts":[[1997,12,1]]}}}