The design of messages to improve cybersecurity incident reporting

Pam Briggs, Debora Jeske, Lynne Coventry*

*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceedingConference contribution

5 Citations (Scopus)

Abstract

Cybersecurity suffers from the problem of poor incident reporting. We explored message influences on incident reporting rate. Participants were presented with messages that differed in terms of (i) whether the problem was framed as a technical or a security issue and (ii) the perceived beneficiaries of making a report (benefit to the user, to others vs. no benefit message). Participants were more likely to report a problem if so doing implied some benefit to self, where making the problem more personally relevant might act to reduce social loafing in group settings. They were also more likely to report a technical rather than a security problem and qualitative data suggested that users were sometimes suspicious of messages reporting a security incident – believing that the message itself might be a cybersecurity attack. The findings provide starting points for future research aimed at improving incident reporting.

Original languageEnglish
Title of host publicationHuman Aspects of Information Security, Privacy and Trust
Subtitle of host publication5th International Conference, HAS 2017, Held as Part of HCI International 2017, Vancouver, BC, Canada, July 9-14, 2017, Proceedings
EditorsTheo Tryfonas
Place of PublicationCham
PublisherSpringer Verlag
Pages3-13
Number of pages11
ISBN (Electronic)9783319584607
ISBN (Print)9783319584591
DOIs
Publication statusPublished - 13 May 2017
Externally publishedYes
Event5th International Conference on Human Aspects of Information Security, Privacy and Trust, held as part of 19th International Conference on Human-Computer Interaction, HCI 2017 - Vancouver Convention Centre, Vancouver, Canada
Duration: 9 Jul 201714 Jul 2017
Conference number: 5th
http://2017.hci.international/pagesmith/129

Publication series

NameLecture Notes in Computer Science (including subseries Information Systems and Applications, incl. Internet/Web, and HCI (LNISA))
PublisherSpringer
Volume10292
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349

Conference

Conference5th International Conference on Human Aspects of Information Security, Privacy and Trust, held as part of 19th International Conference on Human-Computer Interaction, HCI 2017
Abbreviated titleHAS 2017
Country/TerritoryCanada
CityVancouver
Period9/07/1714/07/17
Internet address

Keywords

  • Security
  • User behavior
  • Incident reporting
  • Behavior change
  • Protection-motivation theory
  • Social loafing

Fingerprint

Dive into the research topics of 'The design of messages to improve cybersecurity incident reporting'. Together they form a unique fingerprint.

Cite this