D'Arcy, 2007: Deterring Internal Information Systems Misuse

Topic:

Deterring employee intentions to misuse computer systems requires complementary technical and procedural controls.

survey with scenarios, 579 responses, does not appear to be primary reference for the study?

Constructs in this publication:

Construct	Cites	Category	Questions given?	Content validity	Pretests	Response type	Notes
Security policies	NEW?		example	expert panel review	2 pilots	7-point Likert scale ranging from "strongly disagree" to "strongly agree"
Security awareness program	NEW?		example	expert panel review	2 pilots	7-point Likert scale ranging from "strongly disagree" to "strongly agree"
Computer monitoring	NEW?		example	expert panel review	2 pilots	7-point Likert scale ranging from "strongly disagree" to "strongly agree"
Preventive security software	NEW?		example	expert panel review	2 pilots	7-point Likert scale ranging from "strongly disagree" to "strongly agree"

This publication is cited by the following publications:

• Chu, 2014: Security awareness program
• Sommestad et al., 2014: Computer monitoring
• Sommestad et al., 2014: Intention to misuse
• Sommestad et al., 2014: Preventive security software
• Sommestad et al., 2014: Security awareness program
• Sommestad et al., 2014: Security policies

Citation:

John D'Arcy and Anat Hovav. Deterring Internal Information Systems Misuse. Commun. ACM, 50(10):113–117, October 2007. doi:10.1145/1290958.1290971.

Bibtex

@article{darcy_deterring_2007,
 abstract = {Deterring employee intentions to misuse computer systems requires complementary technical and procedural controls.},
 author = {D'Arcy, John and Hovav, Anat},
 doi = {10.1145/1290958.1290971},
 issn = {0001-0782},
 journal = {Commun. ACM},
 month = {October},
 number = {10},
 pages = {113--117},
 title = {Deterring {{Internal Information Systems Misuse}}},
 volume = {50},
 year = {2007}
}

---