Factors influencing protection motivation and IS security policy a compliance

2006 Innovations in Information Technology, IIT

Volumn , Issue , 2006, Pages

  Siponen, Mikko ^a   Pahnila, Seppo ^a   Mahmood, Adam ^b  

^a UNIVERSITY OF OULU   (Finland)

^b UNIVERSITY OF TEXAS AT EL PASO   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

IS SECURITY; NEW MODEL; SELF-EFFICACY;

DATA STRUCTURES; ELECTRIC BREAKDOWN; INFORMATION TECHNOLOGY; INNOVATION; MOTIVATION; PERSONNEL; SECURITY OF DATA; SECURITY SYSTEMS; TECHNOLOGY;

PUBLIC POLICY;

EID: 50049128296     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/INNOVATIONS.2006.301907     Document Type: Conference Paper

References (21)

1. Ajzen, I., "The Theory of Planned Behavior", Organizational Behavior and Human Decision Processes 50,2, 1991, 179-211.
2. Aytes, K. and Connolly, T, "A Research Model for Investigating Human Behavior Related to Computer Security", Proceedings of the 2003 American Conference On Information Systems, Tampa, FL, August 4-6. 2003.
3. Aytes, K. and Connolly, T, "Computer and Risky Computing Practices: A Rational Choice Perspective", Journal of Organizational and End User Computing, 16,2, 2004, 22-40.
4. Bagchi, K. and Udo, G., "An analysis of the growth of computer and Internet security breaches", Communications of AIS 12, 2003, 684-700.
5. Bandura, A., "Self-Efficacy: Toward a Unifying Theory of Behaviour Change", Psychological Review 84, 2, 1977, 191-215.
6. Eysenbach, G. and J. Wyatt, Using the Internet for Surveys and Health Research. Journal of Medical Internet Research, 2002. 4(2).
7. Finney, H.C. & Lesieur, H.R., (1992), A Contingency theory of organizational crime. Research in the Sociology of Organizations, vol. 1, pp. 255-299.
8. Fishbein, M. and Ajzen, I., Belief Attitude, Intention and Behavior: An Introduction to Theory and Research. MA, Addison-Wesley. 1975.
9. Hair, J.F.J., Anderson, R.E., Tatham, R.L., and Black, W. C., Multivariate data analysis. 5 ed: Upper Saddle River, New Jersey, Prentice Hall Inc. 1998.
10. Hinde, S., "Security surveys spring crop", Computers & Security, 21, 4, 2002, 310-321.
11. Karahanna, E., Straub, D. W. and Chervany, N. L., "Information technology adoption across time: A cross-sectional comparison of pre-adoption and post-adoption beliefs", MIS Quarterly, 23,2, 1999, 183-213.
12. Moore, G.C. and Benbasat, I., "Development of an Instrument to Measure the Perceptions of Adopting an Information Technology Innovation". Information Systems Research, 1991. 2(3): p. 191-222.
13. Pahnila, S., Siponen, M., Mahmood, A., "Employees' Behavior towards IS Security Policy Compliance", in Proceedings of the 2007 Hawaii International Conference on System Sciences (HICSS 40), January 3-6, 2007, Hilton Waikoloa Village on the Big Island, HI, USA.
14. Rogers, R. W., "Cognitive and Physiological Processes in Fear Appeals and Attitude Change: A Revised Theory of Protection Motivation Theory", in Social Psychophysiology, J. Cacioppo and R. Petty (Eds.), Guilford, New York, 1983.
15. Rogers, R. W. and Prentice-Dunn, S, "Protection motivation theory", In D. S. Gochman (Ed.), Handbook of Health Behavior Research I: Personal and Social Determinants, New York, NY: Plenum Press, 1997, 113-132.
16. Siponen, M., "A Conceptual Foundation for Organizational Information Security Awareness", Information Management & Computer Security, 8, 1, 2000, 31-41.
17. Straub, D. W., "Validating Instruments in MIS Research", MIS Quarterly, 13, 2, 1989, 147-169.
18. Straub, D.W., "Effective IS Security: An Empirical Study", Information Systems Research, 1, 3, 1990, 255-276.
19. Straub, DW. and Welke, RJ., "Coping with Systems Risk: Security Planning Models fir. Management Decision-Making" , MIS Quarterly, 22, 4, 1998, 441-469.
20. Wyatt, J., When to Use Web-based Surveys. Journal of the American Medical Informatics Association, 2000. 7(4): p. 426-430.
21. Woon, I. M. Y., Tan, G W. and Low, R. T., "A Protection Motivation Theory Approach to Home Wireless Security", Proceedings of the Twenty-Sixth International Conference on Information Systems, Las Vegas, 2005, 367-380.