A Review of the Theory of Planned Behaviour in the Context of Information Security Policy Compliance

被引：0

作者：

Sommestad, Teodor ^{[1
]}

Hallberg, Jonas ^{[1
]}

机构：

[1] Swedish Def Res Agcy, Linkoping, Sweden

来源：

SECURITY AND PRIVACY PROTECTION IN INFORMATION PROCESSING SYSTEMS | 2013年 / 405卷

关键词：

information security; security policy; security rule; policy compliance; policy violation; computer misuse; theory of planned behavior; REASONED ACTION; DETERRENCE; MODEL;

D O I：

暂无

中图分类号：

TP3 [计算技术、计算机技术];

学科分类号：

0812 ;

摘要：

The behaviour of employees influences information security in virtually all organisations. To inform the employees regarding what constitutes desirable behaviour, an information security policy can be formulated and communicated. However, not all employees comply with the information security policy. This paper reviews and synthesises 16 studies related to the theory of planned behaviour. The objective is to investigate 1) to what extent the theory explains information security policy compliance and violation and 2) whether reasonable explanations can be found when the results of the studies diverge. It can be concluded that the theory explains information security policy compliance and violation approximately as well as it explains other behaviours. Some potential explanations can be found for why the results of the identified studies diverge. However, many of the differences in results are left unexplained.

引用

页码：257 / 271

页数：15

共 50 条

[31] Predictors of Success in Information Security Policy Compliance
Nord, Jeretta
Sargent, Carol Springer
Koohang, Alex
Marotta, Angelica
JOURNAL OF COMPUTER INFORMATION SYSTEMS, 2022, 62 (04) : 863 - 873
[32] Variables influencing information security policy compliance: A systematic review of quantitative studies
Sommestad, T. (Teodor.Sommestad@foi.se), 1600, JAI Press (22): : 42 - 75
[33] Information security policy compliance model in organizations
Safa, Nader Sohrabi
Von Solms, Rossouw
Furnell, Steven
COMPUTERS & SECURITY, 2016, 56 : 70 - 82
[34] Interaction Effect of Gender and Neutralization Techniques on Information Security Policy Compliance: An Ethical Perspective
Bansal, Gaurav
Shin, Soo Il
AMCIS 2016 PROCEEDINGS, 2016,
[35] Incorrect compliance and correct noncompliance with information security policies: A framework of rule-related information security behaviour
Niemimaa, Marko
COMPUTERS & SECURITY, 2024, 145
[36] The Mediating Role of Psychological Empowerment in Information Security Compliance Intentions
Dhillon, Gurpreet
Talib, Yurita Yakimini Abdul
Picoto, Winnie Ng
JOURNAL OF THE ASSOCIATION FOR INFORMATION SYSTEMS, 2020, 21 (01): : 152 - 174
[37] A Model of Information Security Policy Compliance for Public Universities: A Conceptual Model
Angraini
Alias, Rose Alinda
Okfalisa
EMERGING TRENDS IN INTELLIGENT COMPUTING AND INFORMATICS: DATA SCIENCE, INTELLIGENT INFORMATION SYSTEMS AND SMART COMPUTING, 2020, 1073 : 810 - 818
[38] A Conceptual Analysis about the Organizational Impact of Compliance on Information Security Policy
Cavallari, Maurizio
EXPLORING SERVICES SCIENCE, 2012, 103 : 101 - 114
[39] Information Security Policy Compliance: Leadership, Trust, Role Values, and Awareness
Koohang, Alex
Nowak, Alojzy
Paliszkiewicz, Joanna
Nord, Jeretta Horn
JOURNAL OF COMPUTER INFORMATION SYSTEMS, 2020, 60 (01) : 1 - 8
[40] Understanding the Incentive Mechanism of Penalty for Information Security Policy Compliance Behavior
Wang, Xiaolong
Li, Wenli
2018 7TH INTERNATIONAL CONFERENCE ON SOCIAL SCIENCE, EDUCATION AND HUMANITIES RESEARCH (SSEHR 2018), 2018, : 19 - 25

← 1 2 3 4 5 →