Zakaria, Nur Haryani and Katuk, Norliza (2013) Towards designing effective security messages: Persuasive password guidelines. In: International Conference on Research and Innovation in Information Systems (ICRIIS 2013), 27-28 Nov. 2013, Kuala Lumpur.

PDF Restricted to Registered users only Download (499kB) | Request a copy

Abstract

The current state of information security compliance in workplaces is deteriorating. In many cases human factors were attributed as the cause of the problem.Humans are well known as the weakest link in the security chain.Commonly, end-users will depend on security messages when confronted with security-related decision making. Most of the time, end-users will try their best to make sense of unclear instructions in order to cope with situations.This indicates the way security messages are presented is of utmost importance. However, research focusing on designing effective security messages is quite limited.This paper presents research in progress, towards designing effective security messages focusing on passwords guidelines.Our initial review indicated the lack of persuasive elements in the current password guidelines may lead to unmotivated behaviour of producing good (strong) passwords.This paper also includes initial results obtained from pilot study which reveal promising results supporting the usage of persuasion strategies to improve the current state information security compliance.

Item Type:	Conference or Workshop Item (Paper)
Additional Information:	Print ISBN: 978-1-4799-2486-8 Publisher: IEEE
Uncontrolled Keywords:	Informationt security compliance,security messages, password guidelines, persuasion.
Subjects:	Q Science > QA Mathematics > QA76 Computer software
Divisions:	College of Arts and Sciences
Depositing User:	Mrs. Nur Haryani Zakaria
Date Deposited:	08 Apr 2015 07:13
Last Modified:	08 Apr 2015 07:13
URI:	https://repo.uum.edu.my/id/eprint/13775

Actions (login required)

View Item