The Design of Messages to Improve Cybersecurity Incident Reporting

Briggs, Pamela, Jeske, Debora and Coventry, Lynne (2017) The Design of Messages to Improve Cybersecurity Incident Reporting. In: Human Aspects of Information Security, Privacy and Trust. Lecture Notes in Computer Science, 10292 . Springer, pp. 3-13. ISBN 978-3-319-58459-1

Full text not available from this repository. (Request a copy)
Official URL:


Cybersecurity suffers from the problem of poor incident reporting. We explored message influences on incident reporting rate. Participants were presented with messages that differed in terms of (i) whether the problem was framed as a technical or a security issue and (ii) the perceived beneficiaries of making a report (benefit to the user, to others vs. no benefit message). Participants were more likely to report a problem if so doing implied some benefit to self, where making the problem more personally relevant might act to reduce social loafing in group settings. They were also more likely to report a technical rather than a security problem and qualitative data suggested that users were sometimes suspicious of messages reporting a security incident – believing that the message itself might be a cybersecurity attack. The findings provide starting points for future research aimed at improving incident reporting.

Item Type: Book Section
Uncontrolled Keywords: Security, User behavior, Incident reporting, Behavior change, Protection-motivation theory, Social loafing
Subjects: C800 Psychology
P900 Others in Mass Communications and Documentation
Department: Faculties > Health and Life Sciences > Psychology
Depositing User: Becky Skoyles
Date Deposited: 08 Aug 2017 11:13
Last Modified: 12 Oct 2019 17:28

Actions (login required)

View Item View Item


Downloads per month over past year

View more statistics