Mayer, Peter ; Kunz, Alexandra ; Volkamer, Melanie (2017):
Reliable Behavioural Factors in the Information Security Context.
In: International Conference on Availability, Reliability and Security,
DOI: 10.1145/3098954.3098986,
[Conference or Workshop Item]
Abstract
Users do often not behave securely when using information technology. Many studies have tried to identify those factors of behavioural theories which can increase secure behaviour. The goal of this work is to identify which of the studied factors are reliably associated with secure behaviour across multiple studies.Those factors are of interest to information security professionals since addressing them in security awareness and education campaigns can help improving security related processes of users. To attain our goal, we conducted a systematic literature review and assessed the reliability of the factors based on the effect sizes reported in the literature. Our results indicate that 11 out of the 14 factors from well established behavioural theories exhibit reliable effects in the information security context. These factors cover very different aspects: influence of the users skills, whether the environment makes it possible to exhibit secure behaviour, the influence of friends or co-workers, and the perceived properties of the secure behaviour (e.g. response cost). Also, we identify areas, where more studies are needed to increase the confidence of the factors’ reliability assessment.
| Item Type: | Conference or Workshop Item |
|---|---|
| Erschienen: | 2017 |
| Creators: | Mayer, Peter ; Kunz, Alexandra ; Volkamer, Melanie |
| Title: | Reliable Behavioural Factors in the Information Security Context |
| Language: | English |
| Abstract: | Users do often not behave securely when using information technology. Many studies have tried to identify those factors of behavioural theories which can increase secure behaviour. The goal of this work is to identify which of the studied factors are reliably associated with secure behaviour across multiple studies.Those factors are of interest to information security professionals since addressing them in security awareness and education campaigns can help improving security related processes of users. To attain our goal, we conducted a systematic literature review and assessed the reliability of the factors based on the effect sizes reported in the literature. Our results indicate that 11 out of the 14 factors from well established behavioural theories exhibit reliable effects in the information security context. These factors cover very different aspects: influence of the users skills, whether the environment makes it possible to exhibit secure behaviour, the influence of friends or co-workers, and the perceived properties of the secure behaviour (e.g. response cost). Also, we identify areas, where more studies are needed to increase the confidence of the factors’ reliability assessment. |
| Book Title: | International Conference on Availability, Reliability and Security |
| Divisions: | 20 Department of Computer Science > SECUSO - Security, Usability and Society Profile Areas > Cybersecurity (CYSEC) 20 Department of Computer Science Profile Areas |
| Date Deposited: | 07 Jun 2017 10:24 |
| DOI: | 10.1145/3098954.3098986 |
| Identification Number: | TUD-CS-2017-0132 |
| Corresponding Links: | |
| Export: | |
| Suche nach Titel in: | TUfind oder in Google |
 |
Send an inquiry |
Options (only for editors)
 |
Show editorial Details |
Drucken
Impressum