{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,10]],"date-time":"2026-06-10T16:12:16Z","timestamp":1781107936755,"version":"3.54.1"},"reference-count":36,"publisher":"IGI Global Scientific Publishing","issue":"3","content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2013,7]]},"abstract":"<jats:p>Addressing Cybersecurity within e-Learning systems becomes empowered to make online information more secure. Certain competences need to be identified as necessary skills to manage security online such the ability to assess sources and architectural components, understanding the privacy, confidentiality and user authentication. Security management approaches quantifying security threats in e-learning are common with other e-services. It is of our need to adopt a quantitative security risk management process in order to determine the worthiest attack and the ignored one, based on financial business risk measure which is the measure of the mean failure cost.This paper proposes a cyber security measure called the Mean Failure Cost (MFC) suitable for e-Learning systems. It is based on the identification of system\u2019s architecture, the well-defined classes of stakeholders, the list of possible threats and vulnerabilities and the specific security requirements related to e-Learning systems and applications. In the mean time, security requirements are considered as appropriate mechanisms for preventing, detecting and recovering security attacks, for this reason an extension of the MFC measure is presented in order to detect the most critical security requirements. Also this paper highlights the security measures and guidelines for controlling e-Learning security policies regarding the most critical security requirements.<\/jats:p>","DOI":"10.4018\/jsse.2013070104","type":"journal-article","created":{"date-parts":[[2013,9,3]],"date-time":"2013-09-03T12:54:26Z","timestamp":1378212866000},"page":"64-81","source":"Crossref","is-referenced-by-count":4,"title":["Mean Failure Cost as a Measurable Value and Evidence of Cybersecurity"],"prefix":"10.4018","volume":"4","author":[{"given":"Neila","family":"Rjaibi","sequence":"first","affiliation":[{"name":"Department of Computer Science, ISG, Tunis, Tunisia"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Latifa Ben Arfa","family":"Rabai","sequence":"additional","affiliation":[{"name":"Department of Computer Science, ISG, Tunis, Tunisia"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Anis","family":"Ben Aissa","sequence":"additional","affiliation":[{"name":"Department of Computer Science, ENIT, Tunis, Tunisia"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Ali","family":"Mili","sequence":"additional","affiliation":[{"name":"Department of Computer Science, New Jersey Institute of Technology, Newark, NJ, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"2432","reference":[{"key":"jsse.2013070104-0","doi-asserted-by":"crossref","unstructured":"Ajlan, A. A., & Zedan, H. (2008). Why moodle. In Proceedings of the 12th IEEE International Workshop on Future Trends of Distributed Computing Systems. IEEE Computer Society.","DOI":"10.1109\/FTDCS.2008.22"},{"key":"jsse.2013070104-1","unstructured":"Ben Aissa, A. (2012). Vers une mesure \u00e9conom\u00e9trique de la s\u00e9curit\u00e9 des syst\u00e8mes informatiques. Doctoral dissertation, Faculty of Sciences of Tunis."},{"key":"jsse.2013070104-2","doi-asserted-by":"publisher","DOI":"10.1007\/s11334-010-0123-2"},{"key":"jsse.2013070104-3","author":"A.Ben Aissa","year":"2011","journal-title":"Defining and computing a value based cyber-security measure"},{"key":"jsse.2013070104-4","doi-asserted-by":"crossref","unstructured":"Ben Aissa, A., Mili, A., Abercrombie, R. K., & Sheldon, F. T. (2010). Modeling stakeholder\/value dependency through mean failure cost. In Proceedings of 6th Annual Cyber Security and Information Intelligence Research Workshop (CSIIRW-2010). ACM International Conference.","DOI":"10.1145\/1852666.1852727"},{"key":"jsse.2013070104-5","doi-asserted-by":"publisher","DOI":"10.1016\/j.jksuci.2012.06.002"},{"key":"jsse.2013070104-6","doi-asserted-by":"crossref","unstructured":"Ben Arfa Rabai, L., Jouini, M., Ben Aissa, A., Nafati, M., & Mili, A. (2012). An economic model of security threats for cloud computing systems. In Proceedings of the International Conference on Cyber Security, Cyber Warfare and Digital Forensic (CyberSec) (pp. 100-105). IEEE Conference Publications.","DOI":"10.1109\/CyberSec.2012.6246112"},{"key":"jsse.2013070104-7","doi-asserted-by":"publisher","DOI":"10.1016\/j.ijinfomgt.2008.02.002"},{"key":"jsse.2013070104-8","first-page":"12","author":"P.Caron","year":"2005","journal-title":"Architecture pour le D\u00e9veloppement et l\u2019Implantation d\u2019un Environnement de Formation Continue en Ligne (LOLE)"},{"key":"jsse.2013070104-9","doi-asserted-by":"publisher","DOI":"10.1145\/1005817.1005828"},{"key":"jsse.2013070104-10","doi-asserted-by":"publisher","DOI":"10.1016\/j.sbspro.2011.04.171"},{"key":"jsse.2013070104-11","unstructured":"Ekelhart, A., Fenz, S., & Neubauer, T. (2009). AURUM: A framework for information security risk management. In Proceedings of the 42nd Hawaii International Conference on System Sciences."},{"issue":"3","key":"jsse.2013070104-12","first-page":"248","article-title":"Towards quantitative measures of information security: A cloud computing case study.","volume":"1","author":"M.Jouini","year":"2012","journal-title":"International Journal of Cyber-Security and Digital Forensics"},{"key":"jsse.2013070104-13","unstructured":"Khanjari, Z. A., Kutti, S., & Hatem, M. (2006). An extended e-learning system architecture: Integrating software tools within the e-learning portal. The International Arab Journal of Information Technology, 3(1)."},{"issue":"1","key":"jsse.2013070104-14","first-page":"233","article-title":"Investigation on security InLms Moodle.","volume":"4","author":"S.Kumar","year":"2011","journal-title":"International Journal of Information Technology and Knowledge Management"},{"key":"jsse.2013070104-15","doi-asserted-by":"crossref","unstructured":"Machado, M., & Tao, E. (2007, October 10\u201313). Blackboard vs. Moodle: Comparing user experience of learning management systems. In Proceedings of the 37th ASEE\/IEEE Frontiers in Education Conference, Milwaukee, WI.","DOI":"10.1109\/FIE.2007.4417910"},{"key":"jsse.2013070104-16","unstructured":"Mili, A., & Sheldon, F. T. (2009). Challenging the mean time to failure: Measuring dependability as a mean failure cost. In Proceedings of 42nd Hawaii International Conference on System Sciences (HICSS-42), Waikoloa, HI (pp. 10)."},{"key":"jsse.2013070104-17","doi-asserted-by":"crossref","unstructured":"MohdAlwi, N. H., & Fan, I. S. (2010). e-Learning and information security management. International Journal of Digit Society (IJDS), 1(2).","DOI":"10.20533\/ijds.2040.2570.2010.0019"},{"key":"jsse.2013070104-18","doi-asserted-by":"publisher","DOI":"10.1504\/IJTEL.2010.035738"},{"key":"jsse.2013070104-19","unstructured":"Naaji, A., & Herman, C. (2011). Implementation of an e-learning system: Optimization and security aspects. In Proceedings of the 15th WSEAS International Conference on Computers, Part of the 15th WSEAS CSCC Multiconference."},{"key":"jsse.2013070104-20","doi-asserted-by":"publisher","DOI":"10.1016\/j.compedu.2004.11.007"},{"key":"jsse.2013070104-21","unstructured":"Nickolova, M., & Nickolov, E. (2007). Threat model for user security in e-learning systems. International Journal Information Technologies and Knowledge, 1."},{"key":"jsse.2013070104-22","unstructured":"Rjaibi, N., & Ben Arfa Rabai, L. (2011). Toward a new model for assessing quality teaching processes in e-learning. In Proceedings of 3rd International Conference on Computer Supported Education (CSEDU 2011 - www.csedu.org), Noordwijkerhout, The Netherlands."},{"key":"jsse.2013070104-23","unstructured":"Rjaibi, N., Ben Arfa Rabai, L., Ben Aissa, A., & Louadi, M. (2012). Cyber security measurement in depth for e-learning systems. International Journal of Advanced Research in Computer Science and Software Engineering (IJARCSSE), 2(11), 107-120. ISSN (Online): 2277 128X, ISSN (Print): 2277 6451. Retrieved from www.ijarcsse.com"},{"key":"jsse.2013070104-24","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2006.08.001"},{"key":"jsse.2013070104-25","author":"B.Scheier","year":"2003","journal-title":"Beyond fear: Thinking sensibly about security in an uncertain world"},{"key":"jsse.2013070104-26","unstructured":"Selvi, T. R., Balasubramanian, N. V., & Manohar, G. T. (2008, March 19-21). Framework and architectural style metrics for component based software engineering. In Proceedings of the International Multi Conference of Engineers and Computer Scientists (IMECS), Hong Kong."},{"key":"jsse.2013070104-27","unstructured":"Stapi\u00e9, Z., Orehovacki, T., & Dani\u00e9, M. (2008). Determination of optimal security settings for LMS Moodle. In Proceedings of 31st MIPRO International Convention on Information Systems Security (Vol. 5, pp. 84.-89). Opatija."},{"key":"jsse.2013070104-28","unstructured":"Stockley, D. (2008). E-learning definition and explanation (Elearning, Online Training, Online Learning). Retrieved from http:\/\/derekstockley.com.au\/elearning-definition.html"},{"key":"jsse.2013070104-29","article-title":"Risk management guide for information technology.","author":"G.Stoneburner","year":"2002","journal-title":"Computers & Security"},{"key":"jsse.2013070104-30","doi-asserted-by":"publisher","DOI":"10.1016\/j.compedu.2006.11.007"},{"key":"jsse.2013070104-31","doi-asserted-by":"publisher","DOI":"10.1016\/j.compedu.2011.01.020"},{"key":"jsse.2013070104-32","unstructured":"Travis, C. (2010). Security requirements reusability and the SQUARE methodology."},{"key":"jsse.2013070104-33","author":"O.Tugui","year":"2008","journal-title":"Trends of integrating the e-learning platform in the graduate agronomic educational system in Romania"},{"issue":"3","key":"jsse.2013070104-34","first-page":"26","article-title":"Who is responsible for e-learning success in higher education? A stakeholders' analysis.","volume":"11","author":"N.Wagner","year":"2008","journal-title":"Journal of Educational Technology & Society"},{"key":"jsse.2013070104-35","author":"M. E.Whitman","year":"2004","journal-title":"Principles of information security"}],"container-title":["International Journal of Secure Software Engineering"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/www.igi-global.com\/viewtitle.aspx?TitleId=83635","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,7,22]],"date-time":"2019-07-22T23:44:58Z","timestamp":1563839098000},"score":1,"resource":{"primary":{"URL":"http:\/\/services.igi-global.com\/resolvedoi\/resolve.aspx?doi=10.4018\/jsse.2013070104"}},"subtitle":["E-Learning Case Study"],"short-title":[],"issued":{"date-parts":[[2013,7]]},"references-count":36,"journal-issue":{"issue":"3"},"URL":"https:\/\/doi.org\/10.4018\/jsse.2013070104","relation":{},"ISSN":["1947-3036","1947-3044"],"issn-type":[{"value":"1947-3036","type":"print"},{"value":"1947-3044","type":"electronic"}],"subject":[],"published":{"date-parts":[[2013,7]]}}}