TU Darmstadt / ULB / TUbiblio

Reliable Behavioural Factors in the Information Security Context

Mayer, Peter and Kunz, Alexandra and Volkamer, Melanie (2017):
Reliable Behavioural Factors in the Information Security Context.
In: International Conference on Availability, Reliability and Security, DOI: 10.1145/3098954.3098986, [Conference or Workshop Item]

Abstract

Users do often not behave securely when using information technology. Many studies have tried to identify those factors of behavioural theories which can increase secure behaviour. The goal of this work is to identify which of the studied factors are reliably associated with secure behaviour across multiple studies.Those factors are of interest to information security professionals since addressing them in security awareness and education campaigns can help improving security related processes of users. To attain our goal, we conducted a systematic literature review and assessed the reliability of the factors based on the effect sizes reported in the literature. Our results indicate that 11 out of the 14 factors from well established behavioural theories exhibit reliable effects in the information security context. These factors cover very different aspects: influence of the users skills, whether the environment makes it possible to exhibit secure behaviour, the influence of friends or co-workers, and the perceived properties of the secure behaviour (e.g. response cost). Also, we identify areas, where more studies are needed to increase the confidence of the factors’ reliability assessment.

Item Type: Conference or Workshop Item
Erschienen: 2017
Creators: Mayer, Peter and Kunz, Alexandra and Volkamer, Melanie
Title: Reliable Behavioural Factors in the Information Security Context
Language: English
Abstract:

Users do often not behave securely when using information technology. Many studies have tried to identify those factors of behavioural theories which can increase secure behaviour. The goal of this work is to identify which of the studied factors are reliably associated with secure behaviour across multiple studies.Those factors are of interest to information security professionals since addressing them in security awareness and education campaigns can help improving security related processes of users. To attain our goal, we conducted a systematic literature review and assessed the reliability of the factors based on the effect sizes reported in the literature. Our results indicate that 11 out of the 14 factors from well established behavioural theories exhibit reliable effects in the information security context. These factors cover very different aspects: influence of the users skills, whether the environment makes it possible to exhibit secure behaviour, the influence of friends or co-workers, and the perceived properties of the secure behaviour (e.g. response cost). Also, we identify areas, where more studies are needed to increase the confidence of the factors’ reliability assessment.

Title of Book: International Conference on Availability, Reliability and Security
Divisions: 20 Department of Computer Science > SECUSO - Security, Usability and Society
Profile Areas > Cybersecurity (CYSEC)
20 Department of Computer Science
Profile Areas
Date Deposited: 07 Jun 2017 10:24
DOI: 10.1145/3098954.3098986
Identification Number: TUD-CS-2017-0132
Related URLs:
Export:

Optionen (nur für Redakteure)

View Item View Item