报告题目 | the power of pervasive messages on improving password changing behavior: evidence from a large-scale field experiment and a survey |
报告人(单位) | 张楠教授(哈尔滨工业大学) |
主持人(单位) | 邵秀燕副教授(东南大学) |
时间 地点 | 2024年10月23日(周三)上午10:00 腾讯会议id:641-882-763 |
报告摘要和内容: organizational information systems security concerns have increased significantly. password-based authentication is the most used method for system security. however, encouraging users to create stronger passwords and change them frequently is always a challenge. further, although the importance of users’ password behaviors has been emphasized by both researchers and practitioners, little is known about user’s actual password behavior in a university information system (uis). the rationale of the behavior is very different between an employee of a company and a student or faculty member of a university. thus, in this study, we would like to identify the most effective persuasive method for improving users’ password-changing behavior in a uis. we conducted two complementary empirical studies. in study 1, we proved the efficacy of different persuasive messages through a large-scale randomized field experiment (n=16,667) in a university in nordic by sending e-mails via the official account of the it department to both staff and students, requesting them to change their uis accounts’ passwords. we adopted different persuasion methods in various e-mails. results show that efficacy-, reciprocity-, and consistency-based messages are as effective for staff as fear appeal-based messages, but authority-based messages are the least effective. for students, consistency-based messages are as effective as fear appeal-based messages, whereas reciprocity-, social proof-, consistency- and scarcity-based messages are less effective. overall, our results of study 1 suggest that an e-mail message requesting a password change succeeds in about 20-40% of the cases. in study 2, to investigate the underlying mechanism further, based on the elm model, we developed a conceptual model and conducted a survey (n=342) at a university in china to verify it. the results show that non-fear and fear-based messages influence users’ intention to change password changing behavior via different paths. | |
报告人简介:
张楠,哈尔滨工业大学管理科学与工程系教授,博士生导师,系主任。香港科技大学资讯系统博士;英国伦敦大学学院电子通讯硕士,大连理工大学计算机科学与技术学士。主要从事信息系统、社交媒体情境下的信息隐私与安全等方向研究,研究成果曾发表在国际顶级期刊misq及其他期刊上。受邀担任《信息系统学报》、《管理科学》,misq、isr、jais、i&m等十余本国内、国际主流学术期刊及icis、pacis等会议的编委及审稿人。中国管理科学与工程学会,中国信息经济学会及cnais理事。主持国家自然科学基金重大研发计划培育项目一项,面上项目一项。参与多项国家级重大、重点研究项目。黑龙江省“头雁计划”骨干成员。 | |
