报告题目 | The Power of Pervasive Messages on Improving Password Changing Behavior: Evidence from A Large-Scale Field Experiment and A Survey |
报告人(单位) | 张楠教授(哈尔滨工业大学) |
主持人(单位) | 邵秀燕副教授(东南大学) |
时间 地点 | 2024年10月23日(周三)上午10:00 腾讯会议ID:641-882-763 |
报告摘要和内容: Organizational information systems security concerns have increased significantly. Password-based authentication is the most used method for system security. However, encouraging users to create stronger passwords and change them frequently is always a challenge. Further, although the importance of users’ password behaviors has been emphasized by both researchers and practitioners, little is known about user’s actual password behavior in a university information system (UIS). The rationale of the behavior is very different between an employee of a company and a student or faculty member of a university. Thus, in this study, we would like to identify the most effective persuasive method for improving users’ password-changing behavior in a UIS. We conducted two complementary empirical studies. In study 1, we proved the efficacy of different persuasive messages through a large-scale randomized field experiment (N=16,667) in a university in Nordic by sending e-mails via the official account of the IT department to both staff and students, requesting them to change their UIS accounts’ passwords. We adopted different persuasion methods in various e-mails. Results show that efficacy-, reciprocity-, and consistency-based messages are as effective for staff as fear appeal-based messages, but authority-based messages are the least effective. For students, consistency-based messages are as effective as fear appeal-based messages, whereas reciprocity-, social proof-, consistency- and scarcity-based messages are less effective. Overall, our results of study 1 suggest that an e-mail message requesting a password change succeeds in about 20-40% of the cases. In study 2, to investigate the underlying mechanism further, based on the ELM model, we developed a conceptual model and conducted a survey (N=342) at a university in China to verify it. The results show that non-fear and fear-based messages influence users’ intention to change password changing behavior via different paths. | |
报告人简介: 张楠,哈尔滨工业大学管理科学与工程系教授,博士生导师,系主任。香港科技大学资讯系统博士;英国伦敦大学学院电子通讯硕士,大连理工大学计算机科学与技术学士。主要从事信息系统、社交媒体情境下的信息隐私与安全等方向研究,研究成果曾发表在国际顶级期刊MISQ及其他期刊上。受邀担任《信息系统学报》、《管理科学》,MISQ、ISR、JAIS、I&M等十余本国内、国际主流学术期刊及ICIS、PACIS等会议的编委及审稿人。中国管理科学与工程学会,中国信息经济学会及CNAIS理事。主持国家自然科学基金重大研发计划培育项目一项,面上项目一项。参与多项国家级重大、重点研究项目。黑龙江省“头雁计划”骨干成员。 |