The Conceptual Framework of mLearning Security for University in Thailand

Sarawut RamjanDepartment of e-Commerce ManagementNorth-Chiang Mai university

Introduction

• mLearning is employed for improving class management– Anytime– Anywhere

• Lecture mobile application• Student mobile application• Network infrastructure

– Optional- Cloud computing

Issue

• Vulnerability points– Client– Server– Communication pipeline

• Cyber problem• Focus on Thailand-digital divide

– Border country– Each region

Solution

• Concerning issue• Technological solution• Concentrated in various viewpoint

– C.I.A. Triad dimension • Integrity• Confidentiality• Availability

List review

• Common threat– Access to data– Unauthorized– Device corruption– Malicious software

Experience countries I

• The similar direction• Overlap in vulnerability points and C.I.A

triad dimension– Threat and problem– Security control

Experience countries II

• Compromised to ISO/IEC27001 and ISO/IEC 17799:2005– Security policy– Organization information security– Asset management– Human resource security

Experience countries III

• Compromised to ISO/IEC27001 and ISO/IEC 17799:2005– Physical and environmental security

communication and operation management– Access control– Information system acquisition ,

development and maintenance– System information security incident

management– Business continuity management and

compliance

The conceptual framework

mLearning security for university in Thailand

Threat and problem

Technological solution

ISO/IEC27001 and ISO/IEC17799:2005

C.I.A. triad

mLearning system on Thai University

charcteristic

Vulnerability points

Conclusion and recommendation

• Ease up to later model– Key success factor

• Practical guideline for Thai university

– Rule base system• Solution and procedure from various input

• Further paper study– Law/act

Q & A and Thank you