@inbook{91fff0af1c0f42d28ab3106a327991a2,
title = "The Design of Messages to Improve Cybersecurity Incident Reporting",
abstract = "Cybersecurity suffers from the problem of poor incident reporting. We explored message influences on incident reporting rate. Participants were presented with messages that differed in terms of (i) whether the problem was framed as a technical or a security issue and (ii) the perceived beneficiaries of making a report (benefit to the user, to others vs. no benefit message). Participants were more likely to report a problem if so doing implied some benefit to self, where making the problem more personally relevant might act to reduce social loafing in group settings. They were also more likely to report a technical rather than a security problem and qualitative data suggested that users were sometimes suspicious of messages reporting a security incident – believing that the message itself might be a cybersecurity attack. The findings provide starting points for future research aimed at improving incident reporting.",
keywords = "Security, User behavior, Incident reporting, Behavior change, Protection-motivation theory, Social loafing",
author = "Pamela Briggs and Debora Jeske and Lynne Coventry",
year = "2017",
month = may,
day = "13",
doi = "10.1007/978-3-319-58460-7_1",
language = "English",
isbn = "978-3-319-58459-1",
volume = "10292",
series = "Lecture Notes in Computer Science",
publisher = "Springer",
pages = "3--13",
booktitle = "Human Aspects of Information Security, Privacy and Trust",
address = "Germany",
}