English  |  正體中文  |  简体中文  |  全文筆數/總筆數 : 51772/86996 (60%)
造訪人次 : 8371107      線上人數 : 54
RC Version 7.0 © Powered By DSPACE, MIT. Enhanced by NTU Library & TKU Library IR team.
搜尋範圍 查詢小技巧:
  • 您可在西文檢索詞彙前後加上"雙引號",以獲取較精準的檢索結果
  • 若欲以作者姓名搜尋,建議至進階搜尋限定作者欄位,可獲得較完整資料
  • 進階搜尋
    請使用永久網址來引用或連結此文件: http://tkuir.lib.tku.edu.tw:8080/dspace/handle/987654321/107222


    題名: Ensuring employees' ISP compliance: A combination of deterrence and regulatory focus approach
    作者: Shih, Sheng-Pao;Hsu, Jack Shih-Chieh;Huang, Hsin-Yi;Peng, Cheng-Hui
    日期: 2016-04-05
    上傳時間: 2016-08-18 13:34:41 (UTC+8)
    摘要: Deterrence theory has been widely applied in information security behavioral research. In organizations,
    employees’ information security policy (ISP) compliance is definitely an important information security
    behavior. To explore employees’ ISP compliance, previous information security behavioral studies
    mainly based on the perspective of sanctions from deterrence theory; however, these studies have
    inconsistent results of deterrence effect, which mean that the direct effects of deterrence on employees’
    information security behaviors are not universally applicable in all organization settings [1]. In addition,
    while most ISP compliance studies applied deterrence theory focus on the impacts of deterrence (i.e.
    punishment severity and detection certainty) on ISP compliance behaviors, these studies ignored the fact
    that, different individuals tend to have two fundamental needs: nurturance and security [2], that may
    affect the magnitude of the impact of deterrence on ISP compliance behaviors. Regulatory focus theory
    explains the needs and formulates two different regulatory foci: promotion and prevention. Promotion
    focus is more associated with need for growth and achievement, whereas prevention focus is more
    driven by security needs. In view of aforementioned research gaps, based on the deterrence theory and
    regulatory focus theory, this study tries to understand the effect of different regulatory focus on the
    relationship between deterrence and employees’ ISP compliance intention. We collected data through a
    questionnaire survey from the employees working in high tech industry in Taiwan. The results show that
    detection certainty and punishment severity positively affect ISP compliance intention. The relationship
    between punishment severity and ISP compliance intention is moderated by prevention focus and the
    relationship between detection certainty and ISP compliance intention is moderated by promotion focus.
    This study provides an in-depth understanding of deterrence in ISP compliance context while suggesting
    that regulatory focus plays an important role in affecting employees’ compliance with information
    security policy. Implications for both academic and practice are also highlighted to address the
    moderating effects on the relationship between deterrence and ISP compliance intention
    關聯: Proceedings of Forty-Fifth Annual Conference of the Western Decision Sciences Institute , pp.173-188
    顯示於類別:[資訊管理學系暨研究所] 會議論文

    文件中的檔案:

    沒有與此文件相關的檔案.

    在機構典藏中所有的資料項目都受到原著作權保護.

    TAIR相關文章

    DSpace Software Copyright © 2002-2004  MIT &  Hewlett-Packard  /   Enhanced by   NTU Library & TKU Library IR teams. Copyright ©   - 回饋