A Review of the Theory of Planned Behaviour in the Context of Information Security Policy Compliance

被引:0
|
作者
Sommestad, Teodor [1 ]
Hallberg, Jonas [1 ]
机构
[1] Swedish Def Res Agcy, Linkoping, Sweden
来源
SECURITY AND PRIVACY PROTECTION IN INFORMATION PROCESSING SYSTEMS | 2013年 / 405卷
关键词
information security; security policy; security rule; policy compliance; policy violation; computer misuse; theory of planned behavior; REASONED ACTION; DETERRENCE; MODEL;
D O I
暂无
中图分类号
TP3 [计算技术、计算机技术];
学科分类号
0812 ;
摘要
The behaviour of employees influences information security in virtually all organisations. To inform the employees regarding what constitutes desirable behaviour, an information security policy can be formulated and communicated. However, not all employees comply with the information security policy. This paper reviews and synthesises 16 studies related to the theory of planned behaviour. The objective is to investigate 1) to what extent the theory explains information security policy compliance and violation and 2) whether reasonable explanations can be found when the results of the studies diverge. It can be concluded that the theory explains information security policy compliance and violation approximately as well as it explains other behaviours. Some potential explanations can be found for why the results of the identified studies diverge. However, many of the differences in results are left unexplained.
引用
收藏
页码:257 / 271
页数:15
相关论文
共 50 条
  • [41] Information security policy compliance: a replication study in Ethiopia
    Aebissa, Berhanu
    Dhillon, Gurpreet
    Meshesha, Million
    INFORMATION AND COMPUTER SECURITY, 2024,
  • [42] Narratives and Information Security Policy Compliance: A Narrative Policy Framework Perspective
    Al Nuaim, Abdullah
    Ramirez, Ronald
    Dincelli, Ersin
    AMCIS 2020 PROCEEDINGS, 2020,
  • [43] Information Security Policy Compliance: Investigating the role of intrinsic motivation towards policy compliance in the organisation
    Alzahrani, Ahmed
    Johnson, Chris
    Altamimi, Saad
    2018 4TH INTERNATIONAL CONFERENCE ON INFORMATION MANAGEMENT (ICIM2018), 2018, : 125 - 132
  • [44] An Empirical Investigation of the Role of Culture on Employees' Information Systems Security Policy Compliance: Developing Economy Context
    Arage, Tilahun M.
    Belanger, France
    Tesema, Tibebe B.
    AMCIS 2016 PROCEEDINGS, 2016,
  • [45] Information security policy non-compliance: Can capitulation theory explain user behaviors?
    McLeod, Alexander
    Dolezel, Diane
    COMPUTERS & SECURITY, 2022, 112
  • [46] A Theory-Based Review of Information Security Behavior in the Organization and Home Context
    Omidosu, Joseph
    Ophoff, Jacques
    2016 THIRD INTERNATIONAL CONFERENCE ON ADVANCES IN COMPUTING, COMMUNICATION AND ENGINEERING (ICACCE 2016), 2016, : 225 - 231
  • [47] The Impact of Challenge Information Security Stress on Information Security Policy Compliance: The Mediating Roles of Emotions
    Chen, Lin
    Xie, Zongxiao
    Zhen, Jie
    Dong, Kunxiang
    PSYCHOLOGY RESEARCH AND BEHAVIOR MANAGEMENT, 2022, 15 : 1177 - 1191
  • [48] Reducing fraud in organizations through information security policy compliance: An information security controls perspective
    Brown, Dennis
    Batra, Gunjan
    Zafar, Humayun
    Saeed, Khawaja
    COMPUTERS & SECURITY, 2024, 144
  • [49] Exploring the Influence of Direct and Indirect Factors on Information Security Policy Compliance: A Systematic Literature Review
    Alassaf, Mada
    Alkhalifah, Ali
    IEEE ACCESS, 2021, 9 : 162687 - 162705
  • [50] Application of the theory of planned behaviour in behaviour change interventions: A systematic review
    Hardeman, W
    Johnston, M
    Johnston, DW
    Bonetti, D
    Wareham, NJ
    Kinmonth, AL
    PSYCHOLOGY & HEALTH, 2002, 17 (02) : 123 - 158
12345