dc.contributor.author | Moody, Gregory D. | |
dc.contributor.author | Siponen, Mikko | |
dc.contributor.author | Pahnila, Seppo | |
dc.date.accessioned | 2018-11-16T12:44:28Z | |
dc.date.available | 2022-09-26T21:35:07Z | |
dc.date.issued | 2018 | |
dc.identifier.citation | Moody, G. D., Siponen, M., & Pahnila, S. (2018). Toward a Unified Model of Information Security Policy Compliance. <i>MIS Quarterly</i>, <i>42</i>(1), 285-311. <a href="https://doi.org/10.25300/MISQ/2018/13853" target="_blank">https://doi.org/10.25300/MISQ/2018/13853</a> | |
dc.identifier.other | CONVID_27254366 | |
dc.identifier.other | TUTKAID_75170 | |
dc.identifier.uri | https://jyx.jyu.fi/handle/123456789/60225 | |
dc.description.abstract | Information systems security (ISS) behavioral research has produced different models to explain security policy
compliance. This paper (1) reviews 11 theories that have served the majority of previous information security
behavior models, (2) empirically compares these theories (Study 1), (3) proposes a unified model, called the
unified model of information security policy compliance (UMISPC), which integrates elements across these
extant theories, and (4) empirically tests the UMISPC in a new study (Study 2), which provided preliminary
empirical support for the model. The 11 theories reviewed are (1) the theory of reasoned action, (2) neutralization
techniques, (3) the health belief model, (4) the theory of planned behavior, (5) the theory of interpersonal
behavior, (6) the protection motivation theory, (7) the extended protection motivation theory, (8) deterrence
theory and rational choice theory, (9) the theory of self-regulation, (10) the extended parallel processing model,
and (11) the control balance theory. The UMISPC is an initial step toward empirically examining the extent
to which the existing models have similar and different constructs. Future research is needed to examine to
what extent the UMISPC can explain different types of ISS behaviors (or intentions thereof). Such studies will
determine the extent to which the UMISPC needs to be revised to account for different types of ISS policy
violations and the extent to which the UMISPC is generalizable beyond the three types of ISS violations we
examined. Finally, the UMISPC is intended to inspire future ISS research to further theorize and empirically
demonstrate the important differences between rival theories in the ISS context that are not captured by current
measures. | fi |
dc.format.mimetype | application/pdf | |
dc.language.iso | eng | |
dc.publisher | Management Information Systems Research Center, University of Minnesota | |
dc.relation.ispartofseries | MIS Quarterly | |
dc.rights | In Copyright | |
dc.subject.other | information system security | |
dc.subject.other | unified theory | |
dc.subject.other | survey | |
dc.title | Toward a Unified Model of Information Security Policy Compliance | |
dc.type | article | |
dc.identifier.urn | URN:NBN:fi:jyu-201811164752 | |
dc.contributor.laitos | Informaatioteknologian tiedekunta | fi |
dc.contributor.laitos | Faculty of Information Technology | en |
dc.contributor.oppiaine | Tietojärjestelmätiede | fi |
dc.contributor.oppiaine | Information Systems Science | en |
dc.type.uri | http://purl.org/eprint/type/JournalArticle | |
dc.date.updated | 2018-11-16T10:15:10Z | |
dc.type.coar | http://purl.org/coar/resource_type/c_dcae04bc | |
dc.description.reviewstatus | peerReviewed | |
dc.format.pagerange | 285-311 | |
dc.relation.issn | 0276-7783 | |
dc.relation.numberinseries | 1 | |
dc.relation.volume | 42 | |
dc.type.version | publishedVersion | |
dc.rights.copyright | © 2018 by the Management Information Systems Research Center (MISRC) of the University of Minnesota. | |
dc.rights.accesslevel | openAccess | fi |
dc.subject.yso | tietojärjestelmät | |
dc.subject.yso | turvallisuus | |
dc.format.content | fulltext | |
jyx.subject.uri | http://www.yso.fi/onto/yso/p3927 | |
jyx.subject.uri | http://www.yso.fi/onto/yso/p7349 | |
dc.rights.url | http://rightsstatements.org/page/InC/1.0/?language=en | |
dc.relation.doi | 10.25300/MISQ/2018/13853 | |
dc.type.okm | A2 | |