|
1
|
Siponen M, Soliman W, Vance A. Common Misunderstandings of Deterrence Theory in Information Systems Research and Future Research Directions. DATA BASE FOR ADVANCES IN INFORMATION SYSTEMS 2022. [DOI: 10.1145/3514097.3514101] [Citation(s) in RCA: 2] [Impact Index Per Article: 1.0] [Reference Citation Analysis] [Abstract] [Track Full Text] [Subscribe] [Scholar Register] [Indexed: 10/19/2022]
Abstract
In the 1980s, information systems (IS) borrowed deterrence theory (DT) from the field of criminology to explain information security behaviors (or intention). Today, DT is among the most commonly used theories in IS security research. Our review of IS research applying DT highlights that many fundamental assumptions of DT are unrecognized and therefore unexamined. This may have resulted in misunderstandings and conceptual confusions regarding some of the basic concepts of DT. For example, some IS studies confuse general deterrence with specific deterrence or do not recognize the difference between the two. Moreover, these fundamental assumptions, when directly examined, may provide important information about the applicability of DT in certain IS security contexts. This research commentary aims to identify and discuss some of the fundamental assumptions of DT and their implications for IS research. By examining these assumptions, IS researchers can study the previously unexplored aspects of DT in different IS contexts. Further, by recognizing these assumptions, IS scholars can revise them and build new variants of DT to better account for specific characteristics of IS behaviors and contexts.
Collapse
|
|
2
|
Jeong M, Zo H. Preventing insider threats to enhance organizational security: The role of opportunity-reducing techniques. TELEMATICS AND INFORMATICS 2021. [DOI: 10.1016/j.tele.2021.101670] [Citation(s) in RCA: 1] [Impact Index Per Article: 0.3] [Reference Citation Analysis] [Track Full Text] [Journal Information] [Subscribe] [Scholar Register] [Indexed: 10/21/2022]
|
|
3
|
Willison R. Understanding the offender/environment dynamic for computer crimes. INFORMATION TECHNOLOGY & PEOPLE 2006. [DOI: 10.1108/09593840610673810] [Citation(s) in RCA: 20] [Impact Index Per Article: 1.1] [Reference Citation Analysis] [Track Full Text] [Subscribe] [Scholar Register] [Indexed: 11/17/2022]
|
|
4
|
Willison R. Understanding the perpetration of employee computer crime in the organisational context. INFORMATION AND ORGANIZATION 2006. [DOI: 10.1016/j.infoandorg.2006.08.001] [Citation(s) in RCA: 59] [Impact Index Per Article: 3.3] [Reference Citation Analysis] [Track Full Text] [Subscribe] [Scholar Register] [Indexed: 11/29/2022]
|