Abstract
In this paper, we propose a conceptual model for information security (InfoSec) decision making that is based on cognitive science and neuroscience, and present a comprehensive framework of InfoSec decision making process. In addition, we illustrate a specific experiment design that could be used to investigate how specific automatic affective processes would impact specific components of the InfoSec decision making process.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
Wang, H., Jiang, X., Kambourakis, G.: Special issue on security, privacy and trust in network-based big data. Inf. Sci. 318, 48–50 (2015)
Chatterjee, S., Sarker, S., Valacich, J.S.: The behavioral roots of information systems security: exploring key factors related to unethical IT use. J. Manag. Inf. Syst. 31, 49–87 (2015)
Pettigrew III, J.A., Ryan, J.J.: Making successful security decisions: a qualitative evaluation. IEEE Secur. Priv. 10(1), 60–68 (2012)
Schneier, B.: The psychology of security. In: Vaudenay, S. (ed.) Progress in Cryptology–AFRICACRYPT 2008, pp. 50–79. Springer, Berlin (2008)
Arora, A., Nandkumar, A., Telang, R.: Does information security attack frequency increase with vulnerability disclosure? An empirical analysis. Inf. Syst. Front. 8, 350–362 (2006)
Fang, F., Parameswaran, M., Zhao, X., Whinston, A.B.: An economic mechanism to manage operational security risks for inter-organizational information systems. Inf. Syst. Front. 16, 399–416 (2014)
Hsu, J.S.-C., Shih, S.-P., Hung, Y.W., Lowry, P.B.: The role of extra-role behaviors and social controls in information security policy effectiveness. Inf. Syst. Res. 26, 282–300 (2015)
Acquisti, A., Grossklags, J.: Privacy and rationality in individual decision making. IEEE Secur. Priv. 3(1), 26–33 (2005)
Ng, B.-Y., Kankanhalli, A., Xu, Y.C.: Studying users’ computer security behavior: a health belief perspective. Decis. Support Syst. 46, 815–825 (2009)
Pahnila, S., Siponen, M., Mahmood, A.: Employees’ behavior towards IS security policy compliance. In: 40th Annual Hawaii International Conference on System Sciences. HICSS 2007, pp. 156b–156b. IEEE (2007)
Vance, A., Siponen, M., Pahnila, S.: Motivating IS security compliance: insights from habit and protection motivation theory. Inf. Manag. 49, 190–198 (2012)
Woodside, A.G.: Overcoming the illusion of will and self‐fabrication: going beyond naïve subjective personal introspection to an unconscious/conscious theory of behavior explanation. Psychol. Mark. 23, 257–272 (2006)
Pavlou, P., Davis, F., Dimoka, A.: Neuro IS: the potential of cognitive neuroscience for information systems research. In: ICIS 2007 Proceedings 122 (2007)
vom Brocke, J., Liang, T.-P.: Guidelines for neuroscience studies in information systems research. J. Manag. Inf. Syst. 30, 211–234 (2014)
West, R.: The psychology of security. Commun. ACM 51, 34–40 (2008)
Straub, D.W., Welke, R.J.: Coping with systems risk: security planning models for management decision making. Mis Q. 22(4), 441–469 (1998)
Grossklags, J., Christin, N., Chuang, J.: Secure or insure?: a game-theoretic analysis of information security games. In: Proceedings of the 17th International Conference on World Wide Web, pp. 209–218. ACM (2008)
Boyd John, R.: A discourse on winning and losing. Air University document MU43947, briefing 1 (1987)
Bryant, D.J.: Rethinking OODA: toward a modern cognitive framework of command decision making. Mil. Psychol. 18, 183 (2006)
Romanowski, C., Raj, R., Schneider, J., Mishra, S., Shivshankar, V., Ayengar, S., Cueva, F.: Regional response to large-scale emergency events: building on historical data. Int. J. Crit. Infrastruct. Prot. 11, 12–21 (2015)
Trotter, M.J., Salmon, P.M., Lenne, M.G.: Impromaps: applying Rasmussen’s risk management framework to improvisation incidents. Saf. Sci. 64, 60–70 (2014)
Dolcos, F., McCarthy, G.: Brain systems mediating cognitive interference by emotional distraction. J. Neurosci. 26, 2072–2079 (2006)
Bonelli, R.M., Cummings, J.L.: Frontal-subcortical circuitry and behavior. Dialogues Clin. Neurosci. 9, 141 (2007)
Pessoa, L.: How do emotion and motivation direct executive control? Trends Cogn. Sci. 13, 160–166 (2009)
Ray, R.D., Zald, D.H.: Anatomical insights into the interaction of emotion and cognition in the prefrontal cortex. Neurosci. Biobehav. Rev. 36, 479–501 (2012)
Critchley, H.D.: Neural mechanisms of autonomic, affective, and cognitive integration. J. Comp. Neurol. 493, 154–166 (2005)
Thayer, J.F., Lane, R.D.: A model of neurovisceral integration in emotion regulation and dysregulation. J. Affect. Disord. 61, 201–216 (2000)
Okon-Singer, H., Hendler, T., Pessoa, L., Shackman, A.J.: The neurobiology of emotion-cognition interactions: fundamental questions and strategies for future research. Front. Hum. Neurosci. 9, 58 (2015)
Wu, D., Courtney, C.G., Lance, B.J., Narayanan, S.S., Dawson, M.E., Oie, K.S., Parsons, T.D.: Optimal arousal identification and classification for affective computing using physiological signals: virtual reality Stroop task. IEEE Trans. Affect. Comput. 1, 109–118 (2010)
Wyczesany, M., Grzybowski, S.J., Barry, R.J., Kaiser, J., Coenen, A.M., Potoczek, A.: Covariation of EEG synchronization and emotional state as modified by anxiolytics. J. Clin. Neurophysiol. 28, 289–296 (2011)
Parsons, T.D., Courtney, C.G., Dawson, M.E.: Virtual reality Stroop task for assessment of supervisory attentional processing. J. Clin. Exp. Neuropsychol. 35, 812–826 (2013)
Wu, D., Lance, B.J., Parsons, T.D.: Collaborative filtering for brain-computer interaction using transfer learning and active class selection. PLoS One 8, e56624 (2013)
McMahan, T., Parberry, I., Parsons, T.D.: Modality specific assessment of video game player’s experience using the Emotiv. Entertain. Comput. 7, 1–6 (2015)
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2017 Springer International Publishing Switzerland
About this paper
Cite this paper
Mai, B., Parsons, T., Prybutok, V., Namuduri, K. (2017). Neuroscience Foundations for Human Decision Making in Information Security: A General Framework and Experiment Design. In: Davis, F., Riedl, R., vom Brocke, J., Léger, PM., Randolph, A. (eds) Information Systems and Neuroscience. Lecture Notes in Information Systems and Organisation, vol 16. Springer, Cham. https://doi.org/10.1007/978-3-319-41402-7_12
Download citation
DOI: https://doi.org/10.1007/978-3-319-41402-7_12
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-319-41401-0
Online ISBN: 978-3-319-41402-7
eBook Packages: Business and ManagementBusiness and Management (R0)