Persuasive Information Security: Techniques to Help Employees Protect Organizational Information Security

Marc Busch; Sameer Patil; Georg Regal; Christina Hochleitner; Manfred Tscheligi

doi:10.1007/978-3-319-31510-2_29

Persuasive Information Security: Techniques to Help Employees Protect Organizational Information Security

Marc Busch (Vortragende:r), Sameer Patil, Georg Regal, Christina Hochleitner, Manfred Tscheligi

Center for Technology Experience

Aalto University

Publikation: Beitrag in Buch oder Tagungsband › Vortrag mit Beitrag in Tagungsband › Begutachtung

Abstract

Digital information is an important corporate asset. Organizations typically devise policies and guidelines to help employees protect the security of such information. Complying with these rules can often be confusing and difficult and may obstruct the task at hand, leading employees to circumvent or ignore policies. Commercial technology and training programs to mitigate this issue suffer from various shortcomings. To address these shortcomings, we designed six persuasive features: Security Points, Security Quiz, Challenges, Statistics, Personalization, and Risk Communication. A design probe that implemented the features sheds light on how persuasive security features could influence intentions to follow secure work practices. We apply the findings to offer suggestions for further enhancing the six persuasive features.

Originalsprache	Englisch
Titel	Persuasive Technology. 11th International Conference, PERSUASIVE 2016, Salzburg, Austria, April 5-7, 2016, Proceedings
Seiten	339-351
Seitenumfang	13
DOIs	https://doi.org/10.1007/978-3-319-31510-2_29
Publikationsstatus	Veröffentlicht - 2016
Veranstaltung	PERSUASIVE 2016 - 11th International Conference on Persuasive Technology - Dauer: 5 Apr. 2016 → 7 Apr. 2016

Konferenz

Konferenz	PERSUASIVE 2016 - 11th International Conference on Persuasive Technology
Zeitraum	5/04/16 → 7/04/16

Research Field

Ehemaliges Research Field - Technology Experience

Schlagwörter

Usable security; Persuasive design; Information security policy; Security compliance; Organizational information systems

Zugriff auf Dokument

10.1007/978-3-319-31510-2_29Lizenz: Nicht angegeben

Diese Publikation zitieren

@inproceedings{5615bb35aa0a44e29fd35794a5990405,

title = "Persuasive Information Security: Techniques to Help Employees Protect Organizational Information Security",

abstract = "Digital information is an important corporate asset. Organizations typically devise policies and guidelines to help employees protect the security of such information. Complying with these rules can often be confusing and difficult and may obstruct the task at hand, leading employees to circumvent or ignore policies. Commercial technology and training programs to mitigate this issue suffer from various shortcomings. To address these shortcomings, we designed six persuasive features: Security Points, Security Quiz, Challenges, Statistics, Personalization, and Risk Communication. A design probe that implemented the features sheds light on how persuasive security features could influence intentions to follow secure work practices. We apply the findings to offer suggestions for further enhancing the six persuasive features.",

keywords = "Usable security; Persuasive design; Information security policy; Security compliance; Organizational information systems, Usable security; Persuasive design; Information security policy; Security compliance; Organizational information systems",

author = "Marc Busch and Sameer Patil and Georg Regal and Christina Hochleitner and Manfred Tscheligi",

year = "2016",

doi = "10.1007/978-3-319-31510-2_29",

language = "English",

isbn = "978-3-319-31509-6",

pages = "339--351",

booktitle = "Persuasive Technology. 11th International Conference, PERSUASIVE 2016, Salzburg, Austria, April 5-7, 2016, Proceedings",

note = "PERSUASIVE 2016 - 11th International Conference on Persuasive Technology ; Conference date: 05-04-2016 Through 07-04-2016",

}

Busch, M, Patil, S, Regal, G, Hochleitner, C & Tscheligi, M 2016, Persuasive Information Security: Techniques to Help Employees Protect Organizational Information Security. in Persuasive Technology. 11th International Conference, PERSUASIVE 2016, Salzburg, Austria, April 5-7, 2016, Proceedings. S. 339-351, PERSUASIVE 2016 - 11th International Conference on Persuasive Technology, 5/04/16. https://doi.org/10.1007/978-3-319-31510-2_29

Persuasive Information Security: Techniques to Help Employees Protect Organizational Information Security. / Busch, Marc (Vortragende:r); Patil, Sameer; Regal, Georg et al.
Persuasive Technology. 11th International Conference, PERSUASIVE 2016, Salzburg, Austria, April 5-7, 2016, Proceedings. 2016. S. 339-351.

Publikation: Beitrag in Buch oder Tagungsband › Vortrag mit Beitrag in Tagungsband › Begutachtung

TY - GEN

T1 - Persuasive Information Security: Techniques to Help Employees Protect Organizational Information Security

AU - Patil, Sameer

AU - Regal, Georg

AU - Hochleitner, Christina

AU - Tscheligi, Manfred

A2 - Busch, Marc

PY - 2016

Y1 - 2016

N2 - Digital information is an important corporate asset. Organizations typically devise policies and guidelines to help employees protect the security of such information. Complying with these rules can often be confusing and difficult and may obstruct the task at hand, leading employees to circumvent or ignore policies. Commercial technology and training programs to mitigate this issue suffer from various shortcomings. To address these shortcomings, we designed six persuasive features: Security Points, Security Quiz, Challenges, Statistics, Personalization, and Risk Communication. A design probe that implemented the features sheds light on how persuasive security features could influence intentions to follow secure work practices. We apply the findings to offer suggestions for further enhancing the six persuasive features.

AB - Digital information is an important corporate asset. Organizations typically devise policies and guidelines to help employees protect the security of such information. Complying with these rules can often be confusing and difficult and may obstruct the task at hand, leading employees to circumvent or ignore policies. Commercial technology and training programs to mitigate this issue suffer from various shortcomings. To address these shortcomings, we designed six persuasive features: Security Points, Security Quiz, Challenges, Statistics, Personalization, and Risk Communication. A design probe that implemented the features sheds light on how persuasive security features could influence intentions to follow secure work practices. We apply the findings to offer suggestions for further enhancing the six persuasive features.

KW - Usable security; Persuasive design; Information security policy; Security compliance; Organizational information systems

U2 - 10.1007/978-3-319-31510-2_29

DO - 10.1007/978-3-319-31510-2_29

M3 - Conference Proceedings with Oral Presentation

SN - 978-3-319-31509-6

SP - 339

EP - 351

BT - Persuasive Technology. 11th International Conference, PERSUASIVE 2016, Salzburg, Austria, April 5-7, 2016, Proceedings

T2 - PERSUASIVE 2016 - 11th International Conference on Persuasive Technology

Y2 - 5 April 2016 through 7 April 2016

ER -

Persuasive Information Security: Techniques to Help Employees Protect Organizational Information Security

Abstract

Konferenz

Research Field

Schlagwörter

Zugriff auf Dokument

Fingerprint

Diese Publikation zitieren