A New Model for Understanding Users' IS Security Compliance
作者: Seppo Pahnila , Mikko T. Siponen , M. Adam Mahmood
DOI:
关键词:
摘要: The literature agrees that the major threat to IS security is constituted by careless employees. Therefore, effective requires users are not only aware of, but also comply with organizations’ policies and procedures. To address this important concern, different awareness, education enforcement approaches have been proposed. Prior research on compliance has criticized these extant awareness as lacking theoretically empirically grounded principles ensure employees policies. This research-in-progress study proposes a new model contains factors explain employees’ compliance.
researchgate.net 
pacis-net.org 参考文章(48)
Kregg Aytes, Terry Connolly, A Research Model for Investigating Human Behavior Related to Computer Security americas conference on information systems. pp. 260- ,(2003)
Whatever happened to information systems ethics? Caught between the devil and the deep blue sea Relevant Theory and Informed Practice. pp. 159- 174 ,(2004) , 10.1007/B115738
Irene Woon, Gek-Woo Tan, R. Low, A Protection Motivation Theory Approach to Home Wireless Security international conference on information systems. ,(2005)
Elena Karahanna, Detmar W. Straub, Norman L. Chervany, Information technology adoption across time: a cross-sectional comparison of pre-adoption and post-adoption beliefs Management Information Systems Quarterly. ,vol. 23, pp. 183- 213 ,(1999) , 10.2307/249751
Richard Y. Wang, Diane M. Strong, Beyond accuracy: what data quality means to data consumers Journal of Management Information Systems. ,vol. 12, pp. 5- 33 ,(1996) , 10.1080/07421222.1996.11518099
William Caelli, Guy G Gable, None, IT security : the need for international cooperation : proceedings of the IFIP TC11 Eighth International Conference on Information Security, IFIP/Sec '92, Singapore, 27-29 May 1992 North-Holland. ,(1992)
Detmar W. Straub, Validating instruments in MIS research Management Information Systems Quarterly. ,vol. 13, pp. 147- 169 ,(1989) , 10.2307/248922
Carolyn E. Aydin, Ronald E. Rice, Social worlds, individual differences, and implementation: predicting attitudes toward a medical information system Information & Management. ,vol. 20, pp. 119- 136 ,(1991) , 10.1016/0378-7206(91)90049-8
Kay Sommers, Barbara Robinson, Security awareness training for students at virginia commonwealth university siguccs: user services conference. pp. 379- 380 ,(2004) , 10.1145/1027802.1027895
Nick Gaunt, Installing an appropriate information security policy International Journal of Medical Informatics. ,vol. 49, pp. 131- 134 ,(1998) , 10.1016/S1386-5056(98)00022-7