Clarifying information security motivation factors and their structure helps to promote information security. In this study, we conducted a questionnaire survey about drives and disincentives that affect the implementation of information security measures. Using the answers from the 932 respondents, we conducted Exploratory Factor Analysis. The result showed a number of motivation factors for information security, including six drives and five disincentives. We also verified the validity of the structural model of those factors using Structural Equation Modeling (SEM) and came up with a motivation structure concerning information security. We further examined commonality and differences in motivation structures for those who have had security incidents, those who haven't, and those who have had near-but-not-real incidents. Regardless of having such experience or not, the three groups had commonality in their motivation structures but there were some differences in individual factors.
[1]
H. W. Heinrich,et al.
Industrial Accident Prevention: a Scientific Approach
,
1951
.
[2]
Richard M. Steers,et al.
Motivation and Work Behaviour
,
1978
.
[3]
P. Kleinginna,et al.
A categorized list of motivation definitions, with a suggestion for a consensual definition
,
1981
.
[4]
V. Vroom.
Work and motivation
,
1964
.
[5]
Emery R. Hayhurst,et al.
Industrial Accident Prevention, A Scientific Approach
,
1932
.
[6]
Tyler Moore,et al.
The Economics of Information Security
,
2006,
Science.
[7]
Basabi Chakraborty,et al.
An Anshin Model for the Evaluation of the Sense of Security
,
2006,
Proceedings of the 39th Annual Hawaii International Conference on System Sciences (HICSS'06).