Journal
INFORMATION & MANAGEMENT
Volume 54, Issue 7, Pages 887-901Publisher
ELSEVIER
DOI: 10.1016/j.im.2017.01.003
Keywords
Information security; Early conformance behavior; Perceived security threat; Passwords; Mandatory security policies; Information security awareness
Ask authors/readers for more resources
Individuals often fail to perform the security behaviors their organizations request to protect informational assets. However, forcing individuals into the compliance can trigger undesired behaviors. We propose a model grounded in Theory of Planned Behavior and information security literature to study determinants of early conformance toward technology-enforced security policies. The model was tested with 535 respondents from a university that implemented new password policies. The results show support for all the proposed relationships, except that subjective norm does not affect intentions. This important finding is explained by the leading role of early conformers, which highlights the importance of context-specific theorizing by researchers. (C) 2017 Elsevier B.V. All rights reserved.
Authors
I am an author on this paper
Click your name to claim this paper and add it to your profile.
Reviews
Recommended
No Data Available