A Descriptive Review and Classification of Organizational Information Security Awareness Research

Hutchinson, Gershon; Ophoff, Jacques

doi:10.1007/978-3-030-43276-8_9

Cited by 4 publications

(2 citation statements)

References 52 publications

(103 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The general deterrence theory, TPB and PMT are the most widely used theories in information security awareness research (Lebek et al , 2013). While these theories provide insights into information security awareness, some researchers doubt their effectiveness (Hutchinson and Ophoff, 2019). Three essential requirements for behaviour change are capability, opportunity and motivation (Michie et al , 2011).…”

Section: Theoretical Frameworkmentioning

confidence: 99%

“…Hence, there is a need to focus on improving the cybersecurity behaviour of smartphone users in India. Although the theory of planned behaviour (TPB) and protection motivation theory (PMT) are popular in information security awareness research, they are ineffective (Lebek et al , 2013; Hutchinson and Ophoff, 2019). This need to design better interventions motivated the researchers to develop a serious game for cybersecurity awareness focusing on the threats smartphone users face based on FBM.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Cyber Suraksha: a card game for smartphone security awareness

Shah

Agarwal

2023

ICS

View full text Add to dashboard Cite

Purpose The frequency and sophistication of cybercrimes are increasing. These cybercrimes are impacting government and private organizations as well as individuals. One of the countermeasures is to improve the cyber hygiene of the end-users. Serious games or game-based learning has emerged as a promising approach for implementing security education, training and awareness program. In this paper, the researchers propose a tabletop card game called Cyber Suraksha to increase threat awareness and motivate users to adopt recommended security controls for smartphone users. Cyber Suraksha provides an active learning environment for the players. This paper aims to provide the details of the design and evaluation of the game using a between-subjects design. Design/methodology/approach The researchers have used constructive learning theory and the Fogg behaviour model (FBM) to design a tabletop card game called Cyber Suraksha. The researchers evaluated the game using a between-subjects design. The participants' responses in the control and intervention groups were collected using the risk behaviour diagnosis scale. Pearson’s Chi-Square test with a 5% significance level was used to test the hypotheses. Findings The results indicate that the game is enjoyable and fun. Cyber Suraksha game effectively motivates users to adopt the recommended security control for the targeted behaviour. The results indicate that the participants in the intervention group are 2.65 times more likely to adopt recommended behaviour. The findings of this study provide evidence for the effectiveness of hope and fear appeals in improving cybersecurity awareness. Research limitations/implications The generalizability of the study is limited because the sample size is small compared to the total number of smartphone users in India, and only students from computer/IT UG programs in India are used as participants in this study. Practical implications This study uses hope and a fear appeal to design an effective serious game. It also demonstrates using the FBM and constructive learning principles for effective serious game design. Cyber Suraksha is effective for the student group and may be tested with other age groups. Originality/value To the researchers' knowledge, there are no serious games for cybersecurity awareness focusing on the threats faced by smartphone users based on FBM and constructive learning theory. This research used hope along with a fear appeal to motivate smartphone users to adopt recommended security controls.

show abstract

Section: Theoretical Frameworkmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%