Protection Motivation Theory Factors that Influence Undergraduates to Adopt Smartphone Security Measures

Marvin Schneider and Shawon Rahman

Abstract


Because smartphones are ubiquitous in our society, and undergraduate students use smartphones extensively, it is necessary to understand how undergraduates can be protected from malicious hacker attacks, viruses, and malware. This quantitative study explores the influence of Protection Motivation Theory (PMT) constructs on security behaviors of undergraduate students. The primary focus of this quantitative study is to answer our primary research question: to what extent do the independent PMT variables (perceived threat severity, perceived threat vulnerability, self-efficacy, response efficacy, and response cost) explain undergraduate students’ employment of smartphone security measures? The findings suggest that although all hypotheses were not supported by the analysis; however, self-efficacy and perceived threat vulnerability showed a statistically positive association with several smartphone security measures. However, none of the constructs showed a statistically significant association with using unsecured Wi-Fi in public places. The practical implications of the findings are for industry to focus on better design of smartphone hardware and software (such as antivirus apps) to protect users, and to increase self-efficacy among smartphone undergraduate users through training and education.

Keywords


Protection Motivation Theory, Avoidance Motivation, Smartphone Security, Fear Appeals Model, Antivirus, Self-efficacy.

References


Pew Research Center. (2018). Mobile fact sheet. www.pewinternet.org/fact-sheet/mobile/

Pew Research Center. (2017). A third of Americans live in a household with three or more smartphones.www.pewresearch.org/fact-tank/2017/05/25/a-thirdof-americans-live-in-a-household-with-three-or-more-smartphones/

Rogers, R. W. (1975). A protection motivation theory of fear appeals and attitude change. The Journal of Psychology, 91(1), 93–114. doi.10.1080/00223980.1975.9915803

Hanus, B., & Wu, Y. (2016). Impact of users’ security awareness on desktop security behavior: A protection motivation theory perspective. Information Systems Management, 33(1), 2–16. doi.10.1080/10580530.2015.1117842

Jones, B. H., & Chin, A. G. (2015). On the efficacy of smartphone security: A critical analysis of modifications in business students’ practices over time. International Journal of Information Management, 35, 561–571. doi.10.1016/j.ijinfomgt.2015.06.003

Sharma, R., & Madhusudhan, M. (2017). Use of mobile devices by library and information science students in central universities of Uttar Pradesh. DESIDOC Journal of Library & Information Technology, 37, 293–302. doi.10.14429/djlit.37.4.11505

Park, M., & Drevin, L. (2016). An investigation into the security behaviour of tertiary students regarding mobile device security. In CONF-IRM 2016 proceedings (Paper 63). aisel.aisnet.org/

Kim, E. B. (2014). Recommendations for information security awareness training for college students. Information Managementand Computer Security, 22(1), 115–126. doi.10.1108/IMCS-01-2013-0005

Raghavan, V., & Xiaoni, Z. (2017). An integrative model of managing software security during information systems development. Journal of International Technology & Information Management, 26(4), 83–109. pdfs.semanticscholar.org

Konan, N., Durmuş, E., Bakır, A. A., & Türkoğlu, D. (2018). The relationship between smartphone addiction and perceived social support of university students’ [sic]. International Online Journal of Educational Sciences,10(5), 244–259. doi.org/10.15345/iojes.2018.05.016

Chin, A. G., Etudo, U., & Harris, M. A. (2016). On mobile device security practices and training efficacy: An empirical study. Informatics in Education, 15(2), 235–252. doi.org/10.15388/infedu.2016.12

Jones, B. H., & Heinrichs, L. R. (2012). Do business students practice smartphone security? The Journal of Computer Information Systems, 53, 22–30. doi.org/10.1080/08874417.2012.11645611

Tsai, H. Y. S., Jiang, M., Alhabash, S., LaRose, R., Rifon, N. J., & Cotten, S. R. (2016). Understanding online safety behaviors: A protection motivation theory perspective. Computers & Security, 59, 138–150. doi.10.1016/j.cose.2016.02.009

Cheolho, Y., Jae-Won, H., & Kim, R. (2012). Exploring factors that influence students’ behaviors in information security. Journal of Information Systems Education, 23, 407–415. EBSCOhost database. (Accession No. 89084300)

Mensch, S., & Wilkie, L. (2011). Information security activities of college students: An exploratory study. Academy of Information and Management Sciences Journal, 14, 91–116. www.abacademies.org

Chongrui, L., Zhiqiang, W., Cong, W., Yan, L., & Hongjie, W. (2020, April). The Status Quo and Effects of Undergraduate Students’ Cybersecurity Judgment: A study in China. Journal of Physics: Conference Series (Vol. 1486, p. 022011).

Boss, S. R., Galletta, D. F., Lowry, P. B., Moody, G. D., & Polak, P. (2015). What do systems users have to fear? Using fear appeals to engender threats and fear that motivate protective security behaviors. Management Information Systems [MIS] Quarterly, 39, 837–864. misq.org

Warkentin, M., Walden, E., Johnston, A. C., & Straub, D. W. (2016). Neural correlates of protection motivation for secure IT behaviors: An fMRI examination. Journal of The Association for Information Systems, 17, 194–215.doi.org/10.17705/1jais.00424

Mousavi, R., Chen, R., Kim, D. J., & Chen, K. (2020). Effectiveness of privacy assurance mechanisms in users' privacy protection on social networking sites from the perspective of protection motivation theory. Decision Support Systems, 135, 113323. doi: 10.1016/j.dss.2020.113323.

Rogers, R. W. (1983). Cognitive and physiological processes in fear appeals and attitude change: A revised theory of protection motivation. In J. Cacioppo & R. Petty (Eds.), Social psychophysiology (pp. 153–177). New York, NY: Guilford Press.

Jang, S. H., & Yoon, E. (2016). A comparative study on the awareness of health risks and the risk reduction measures related to sodium intake between female and male university students in Busan and Gyeongnam: An application of protection motivation theory. Korean Journal of Food & Cookery Science, 32(1), 136–146. doi.10.9724/kfcs.2016.32.1.136

Bai, Y., Liu, Q., Chen, X., Gao, Y., Gong, H., Tan, X., Zhang, M., Tuo, J., Zhang, Y., Xiang, Q., Deng, F., Liu, G. (2018). Protection motivation theory in predicting intention to receive cervical cancer screening in rural Chinese women. Psycho-Oncology, 27, 442–449. doi.org/10.1002/pon.4510

Okuhara, T., Okada, H., & Kiuchi, T. (2020). Predictors of staying at home during the COVID-19 pandemic and social lockdown based on protection motivation theory: A cross-sectional study in Japan. Healthcare (Basel), 8(4), 475. doi:10.3390/healthcare8040475

Lazarus, R. S. (1991). Progress on a cognitive-motivational-relational theory of emotion. American Psychologist, 46, 819–834. doi.org/10.1037/0003-066x.46.8.819

Keller, P. A., & Block, L. G. (1996). Increasing the persuasiveness of fear appeals: The effect of arousal and elaboration. Journal of Consumer Research, 22, 448–459. doi.org/10.1086/209461

Anderson, C. L., & Agarwal, R. (2010). Practicing safe computing: A multimethod empirical examination of home computer user security behavioral intentions. Management Information Systems [MIS] Quarterly, 34, 613–643. doi.10.2307/25750694

Morowatisharifabad, M. A., Abdolkarimi, M., Asadpour, M., Fathollahi, M. S., & Balaee, P. (2018). The predictive effects of protection motivation theory on intention and behaviour of physical activity in patients with type 2 diabetes. Open Access Macedonian Journal of Medical Sciences, 6, 709–714. doi.org/10.3889/oamjms.2018.119

Rohani, H., Bidkhori, M., Eslami, A. A., Sadeghi, E., & Sadeghi, A. (2018). Psychological factors of healthful diet promotion among diabetics: An application of health action process approach. Electronic Physician, 10, 6647–6654. doi.org/10.19082/6647

Johnston, A. C., & Warkentin, M. (2010). Fear appeals and information security behaviors: An empirical study. Management Information Systems [MIS] Quarterly, 34, 549–566. misq.org

Terblanche-Smit, M., & Terblanche, N. S. (2010). Race and attitude formation in HIV/Aids fear advertising. Journal of Business Research, 63(2), 121-125.

Zhang Meadows, C. (2020). The Effects of Fear Appeals and Message Format on Promoting Skin Cancer Prevention Behaviors among College Students. Societies, 10(1), 21.

Vos, S., Crouch, R., Quester, P., & Ilicic, J. (2017). Examining the effectiveness of fear appeals in prompting help-seeking: The case of at-risk gamblers. Psychology & Marketing, 34, 648–660. doi.org/10.1002/mar.21012

Arlitsch, K., & Edelman, A. (2014). Staying safe: Cyber security for people and organizations. Journal of Library Administration, 54(1), 46–56. doi.10.1080/01930826.2014.893116

Banuri, H., Alam, M., Khan, S., Manzoor, J., Ali, B., Khan, Y., & Zhang, X. (2012). An Android runtime security policy enforcement framework. Personal and Ubiquitous Computing, 16, 631–641. doi.10.1007/s00779-011-0437-6

Belanger, F., & Crossler, R. E. (2019). Dealing with digital traces: Understanding protective behaviors on mobile devices. The Journal of Strategic Information Systems, 28, 34–49. doi.10.1016/j.jsis.2018.11.002

Abrahim S., Mir, B. A., Suhara, H., Mohamed, F. A., & Sato, M. (2019). Structural equation modeling and confirmatory factor analysis of social media use and education. International Journal of Educational Technology in Higher Education, 16, Art. 32. doi.org/10.1186/s41239-019-0157-y

Byrne, B. M. (2010). Structural equation modeling with AMOS: Basic concepts, applications, and programming. New York, NY: Routledge

Faul, F., Erdfelder, E., Lang, A.-G., & Buchner, A. (2007). G*Power 3: A flexible statistical power analysis program for the social, behavioral, and biomedical sciences. Behavior Research Methods, 39, 175–191. doi.10.3758/bf03193146

Soper, D. (n.d.). Free statistics calculators: Home. www.danielsoper.com/statcalc/default.aspx

Westland, J. C. (2010). Lower bounds on sample size in structural equation modeling. ElectronicCommerce Research and Applications, 9, 476–487. doi.10.1016/j.elerap.2010.07.003

Wolf, E. J., Harrington, K. M., Clark, S. L., & Miller, M. W. (2013). Sample size requirements for structural equation models: An evaluation of power, bias, and solution propriety. Educational and Psychological Measurement, 73(6), 913–934. doi.10.1177/0013164413495237

Field, A. (2009). Discovering statistics using SPSS (3rd ed.). Thousand Oaks, CA: Sage.

Çetinkaya, M. K., & Kaçıranlar, S. (2019). Improved two-parameter estimators for the negative binomial and Poisson regression models. Journal of Statistical Computation & Simulation, 89, 2645–2660. doi.org/10.1080/00949655.2019.1628235

Fox, J. (2016). Applied regression analysis and generalized linear models (3rd ed.). Thousand Oaks, CA: Sage.

Hilbe, J. (2014). Modeling count data. New York, NY: Cambridge University Press.

Dang-Pham, D., & Pittayachawan, S. (2015). Comparing intention to avoid malware across contexts in a BYOD-enabled Australian university: A protection motivation theory approach. Computers & Security,48, 281–297. doi.org/10.1016/j.cose.2014.11.002

Posey, C., Roberts, T. L., & Lowry, P. B. (2015). The impact of organizational commitment on insiders’ motivation to protect organizational information assets. Journal of Management Information Systems, 32, 179–214. doi.10.1080/07421222.2015.1138374

Yoon, C., & Kim, H. (2013). Understanding computer security behavioral intention in the workplace: An empirical study of Korean firms. Information Technology & People, 26, 401–419. doi.10.1108/ITP-12-2012-0147

Okonofua, Henry and Rahman, Shawon; “Cybersecurity: An Analysis of the Protection Mechanisms in a Cloud-centered Environment”; 2nd IEEE International Symposium on Security, Privacy and Trust in Internet of Things (SPTIoT 2018), August 1-3, 2018, New York, USA

Rahman, Shawon and May, Yvonne; “Wireless Security Vulnerabilities and Countermeasures for an Airport”; 30th International Conference on Computers and Their Applications (CATA-2015), March 9-11, 2015, Waikiki Beach Marriott Resort & Spa, Honolulu, Hawaii, USA

Rahman, Shawon and Jackson, George, Jr; “Survey of Malware Threats and Defense in Smartphones Applications”; The 2nd National Computing Colleges Conference (NC3 2017), February 22-23, 2017, Hail, Saudi Arabia.

Faizi, Salman and Rahman, Shawon;” Securing Cloud Computing Through IT Governance”; International Journal of Information Technology in Industry (ITII), vol. 7, no.1, 2019, Pages: 1-14

Jackson, George, and Rahman, Shawon; “Exploring Challenges and Opportunities in Cybersecurity Risk and Threat Communications related to the Medical Internet of Things (MIoT)”, International Journal of Network Security & Its Applications (IJNSA), Vol. 11, No. 4, July 2019

Dharmalingam, Vaishnavi and Rahman, Shawon; “Towards Cloud of Things from Internet of Things”; International Journal of Engineering and Technology, Vol. 7, No 4.6, 2018, Pages: 112-116

Opala, Omondi John; Rahman, Shawon; and Alelaiwi, Abdulhameed; “The Influence of Information Security on the Adoption of Cloud computing: An Exploratory Analysis”, International Journal of Computer Networks & Communications (IJCNC), Vol. 7, No. 4, July 2015

Rader, A., Marc and Rahman, Syed (Shawon); “Exploring Historical and Emerging Phishing Techniques and Mitigating the Associated Security Risks”; International Journal of Network Security & Its Applications (IJNSA), Vol.5, No.4, July 2013

Faizi, Salman and Rahman, Shawon; “Effect of Fear on Behavioral Intention to Comply”; ACM the 4th International Conference on Information System and Data Mining (ICISDM2020), May 15-17, 2020, Hilo, Hawaii, USA

Faizi, Salman and Rahman, Shawon; “Choosing the Best-fit Lifecycle Framework while Addressing Functionality and Security Issues”; 34th International Conference on Computers and Their Applications (CATA-2019), March 18-20, 2019, Waikiki Beach Marriott Resort & Spa, Honolulu, Hawaii, USA

Okonofua, Henry and Rahman, Shawon; “Evaluating the Risk Management Plan and Addressing Factors for Successes in Government Agencies”; 17th IEEE International Conference On Trust, Security And Privacy In Computing And Communications (IEEE TrustCom-18), August 1-3, 2018, New York, USA

Jackson, George and Rahman, Shawon ; “Security Governance, Management, and Strategic Alignment via Capabilities”; IEEE 4th Annual Conference on Computation Science and Computational Intelligence (CSCI), The 2017 International Symposium on Cyber Warfare, Cyber Defense and Security (ISCW), Dec 14-16, 2017, Las Vegas, Nevada, USA

Loukaka, Alain and Rahman, Shawon; “Discovering New Cyber Protection Approaches From a Security Professional Prospective”; International Journal of Computer Networks & Communications (IJCNC) Vol.9, No.4, July 2017


Full Text: PDF

Refbacks

  • There are currently no refbacks.


Creative Commons License
This work is licensed under a Creative Commons Attribution 3.0 License.

IT in Innovation IT in Business IT in Engineering IT in Health IT in Science IT in Design IT in Fashion

IT in Industry @ http://www.it-in-industry.com . ISSN (Online): 2203-1731; ISSN (Print): 2204-0595