文章基本信息

标题：AHP-based Security Decision Making: How Intention and Intrinsic Motivation Affect Policy Compliance
本地全文：下载
作者：Ahmed Alzahrani ; Christopher Johnson
期刊名称：International Journal of Advanced Computer Science and Applications(IJACSA)
印刷版ISSN：2158-107X
电子版ISSN：2156-5570
出版年度：2019
卷号：10
期号：6
页码：1-8
DOI：10.14569/IJACSA.2019.0100601
出版社：Science and Information Society (SAI)
摘要：Analytic hierarchy process is a multiple-criteria tool used in applications related to decision-making. In this paper, analytic hierarchy process is used as guidance in information security policy decision-making by identifying influencing factors and their weights for information security policy compliance. The weights for intrinsic motivators are identified based on self-determination theory as essential criteria, namely, autonomy, competence, relatedness, along with behavioural intention towards compliance; and use four awareness focus areas. A survey of cyber-security decision-makers at a Fortune 600 organisation provided data. The results suggest that behavioural intention (52% of the weight of influencing factors) is more important than autonomy (21%), competence (21%) or relatedness (6%) in influencing behaviour towards information security policy compliance. Determining weights of intrinsic motivation, intention, and awareness focus areas can help security decision-making and compliance with policy, and support design of effective security awareness programmes. However, these weights may in turn be affected by local organisational and cultural factors.
关键词：Analytic Hierarchy Process; behavioural intention; autonomy; competence; relatedness; information security policy compliance