• Journal of Digital Convergence
• /
• v.19 no.8
• /
• pp.49-57
• /
• 2021

This paper aims to confirm the effect of self-control and organization-control on information security attitude. The research method is composed of a cross-design of locus of control and tightness culture. The measurement variables used in the assessment are information security actual attitude, compliace behavioral attitude, and information security efficacy. As a result, the locus of control had a significant effect on information security actual attitude, information security efficacy, information security efficacy, and it was found that influence of the internal-based condition was greater than the external-based condition. The tightness culture had a significant effect on compliace behavioral attitude, information security efficacy, and it was found that influence of the tight culture-based condition was greater than the loose culture-based condition. In addition, the discussion contatins the implications of information security direction that reflect these research results.

• Korean Journal of Culture and Social Issue
• /
• v.11 no.1
• /
• pp.25-42
• /
• 2005

The present research examined the proposition that once people violate traffic regulations, they would experience cognitive dissonance and subsequently engage in changing their attitudes toward the law negatively in order to reduce the dissonance. In an experiment, participants were presented with three scenarios in which a person violated traffic laws, and they were asked to imagine themselves as the person of the scenarios and write statements supporting the unlawful behaviors. Participants' attitudes toward the general traffic law and the regulations related to the violations were measured 8 weeks before and right after the experimental treatment. The results, as expected, showed that their attitudes toward the general traffic law and the specific regulations in the scenarios changed negatively after writing the statements. In each secnarios, the participants who chose to wrote statements supporting the unlawful behaviors showed great attitude changes that those who did not write the statements. Furthermore, attitudes toward the regulations that were not directly related to the scenarios did not change significantly, and participants who were expected to experience stronger dissonance arousal (e.g.., supported more unlawful behaviors or had have more positive attitudes toward the law before the experiment) showed greater attitude changes. These results support the effects of trivial unlawful behaviors on attitudes toward the law and strongly suggest the role of cognitive dissonance underlying the effects.

• Convergence Security Journal
• /
• v.18 no.1
• /
• pp.69-84
• /
• 2018

This study examines antecedents of the intention of compliance with information security policies based on Ajzen's Theory of Planned Behavior. The study conducted the following: Verification of casual relations between role of management and protection motivation and the antecedents of planned behavior as parameters to determine the effect on the intention of compliance with information security policy, and comparative analysis between the research model and a competition model. The result of the study disclosed that, in the research model, attitude and subjective norm took an intermediary role on management beliefs, response efficacy, response cost, self-efficacy, and compliance intention, and perceived behavior control on management beliefs, self-efficacy and compliance intention.

• The Journal of Korean Association of Computer Education
• /
• v.23 no.1
• /
• pp.63-75
• /
• 2020

From the perspective of compliance with security policies by members of the organization, which is a major cause of security incidents, this study presented biased thinking as factors that affect compliance with security policies and verified the following: First, the impact of biased thinking on security policies on compliance with security policies is verified. Second, the participation of management, perceived risk, education and punishment of management will verify the adjustment effect of increasing or decreasing biased thinking. Finally, we have verified that compliance attitudes have a significant impact on compliance behavior. To this end, 157 people were surveyed, statistical analysis of research models and structural equations, and conformity analysis were conducted. Studies have shown that biased thinking has a negative effect on the attitude of compliance with information security. In addition, it was analyzed that the attitude of compliance with information security policy increases policy compliance behavior. On the other hand, the higher the perceived risk of information security, the lower the bias was the adjustment effect, but management's participation, education and punishment were found to have no adjustment effect.

• Journal of Digital Convergence
• /
• v.18 no.11
• /
• pp.169-176
• /
• 2020

With widespread use of information technologies the importance of information security has been heightened. Security policies which deal with fundamental direction of information security are critical elements of information security management. Numerous studies have been conducted on users' intention to comply security policies. They were based on various theoretical foundations and the theory of planned behavior(TPB) was the most frequently used. This research employed one of the quantitatively synthesizing meta-analytic techniques called Two-Stage Structural Equation Modeling to investigate factors influencing information security policy compliance behavior based on TPB. Analysis results indicated that all three factors of TPB were significantly influencing the behavioral intention. Moreover, the overall fit indices of structural model exhibited satisfactory level.

• The Journal of the Korea institute of electronic communication sciences
• /
• v.19 no.4
• /
• pp.741-752
• /
• 2024

Organizations amplify their information security (IS) technical investments as the demand for IS escalates. This research suggests conditions for enhancing insider compliance with IS, focusing on the potential for behavior modification through techno-stress and organizational justice, based on the theory of planned behavior. To test the proposed hypothesis, this study utilized a survey methodology on 383 employees from companies with implemented IS. The test results showed that IS techno-stress (overload and uncertainty) caused by reduced attitudes of employees, and organizational justice increased subjective norms, influencing IS compliance intentions along with self-efficacy. Additionally, organizational justice has been found to alleviate the adverse effects of IS overload and uncertainty on attitudes. The findings are expected to help clarify measures for achieving IS performance within the organization by proposing organizational justice conditions to improve the negative IS environment of the organization.

• Journal of Digital Convergence
• /
• v.10 no.10
• /
• pp.31-46
• /
• 2012

Drawing upon Griffin and Neal's safety climate and performance model, this study developed an information security climate model. Research model is composed of three research variables that include information security climate, information security compliance attitude, and opportunistic security behavior. Results of the study strongly support the fundamental proposition that the organizational security climate has significant positive influence on the individual's opportunistic security behavior. However, the study also reveals that the organizational climate may not directly associate with the reduction of opportunistic security behavior. Rather the organizational security climate nurtures the favorable attitude of the employee towards the compliance of information security, which in turn discourages opportunistic security behavior.

• Convergence Security Journal
• /
• v.22 no.3
• /
• pp.57-68
• /
• 2022

As the importance and awareness of security have recently expanded, companies and governments are making continuous efforts and investments for security management. However, there are still many security threats in the organization, especially security incidents caused by internal staff. Therefore, it is very important for members to comply with security policies for organizational security management. Therefore, this study classified industrial security management into technical security, physical security, and managerial security, and applied the theory of planned behavior to investigate the impact relationship on the intention to comply with security policies. SPSS 25 and AMOS 25 were used for statistical analysis, and the study found that technical security had a positive(+) effect on subjective norms, physical security had a positive(+) effect on perceived behavior control, and attitude and perceived behavior control had a positive(+) effect on security policy compliance intention.

• Convergence Security Journal
• /
• v.22 no.1
• /
• pp.113-120
• /
• 2022

Despite the limitations of existing security policies due to technological development, companies are unable to actively respond to changes by maintaining a closed security policy. This study classified information security policy into three types: regulatory type policy, advisory type policy, and informative type policy. For each classified policy type, the effect on the information security policy compliance behavior of organizational members was investigated by applying the extended theory of planned behavior, and the moderating effect of information security stress was investigated. SmartPLS 2.0 and SPSS 21.0, which are structural equation modeling techniques, were used to analyze the relationship affecting each factor. As a result of the study, regulatory type, advisory type, and informative type security policies affected organizational members' information security policy compliance behavior, and security stress had an effect on information security compliance attitudes and subjective norms on information security, which are prerequisites for planned behavior theory. gave. This study suggests that various types of corporate information security policies can be applied and that security stress can affect information security behaviors of members.

• The Journal of the Convergence on Culture Technology
• /
• v.10 no.5
• /
• pp.513-521
• /
• 2024

This study aims to investigate how the social capital of middle school students is influenced by their grades, attitudes, and school interests, which are defined as school adjustment flexibility, and how they affect the social capital of middle school students. This study aims to provide a basis for policy discussions on how to shape the social capital of adolescents. The results of the analysis show that school adjustment flexibility has an impact on each factor of social capital. Trust is positively related to school attitudes, and norms are positively related to school compliance and school interest. Network has a positive effect on school attitude and a negative effect on school enjoyment. These results suggest that the higher the ability to follow the rules, the higher the norms of social capital, which suggests that social norms internalized at the individual level also affect group norms, which are the standards of behavior or rituals that members of a group follow when they want to behave as expected of them. We were able to find out that the normative domain of social capital is expanded by increasing the interest in school life of elementary and middle school students, and we confirmed that school class attitude is a major influencing factor in developing the network of social capital. Therefore, in order to increase the social capital capacity of elementary and middle school students, it is necessary to devise a plan to form various networks through multifaceted efforts to increase interest in school life and changes in school class attitude.