EconPapers    
Economics at your fingertips  

EconPapers Home
About EconPapers

Working Papers
Journal Articles
Books and Chapters
Software Components

Authors

JEL codes
New Economics Papers

Advanced Search


EconPapers FAQ
Archive maintainers FAQ
Cookies at EconPapers

Format for printing

The RePEc blog
The RePEc plagiarism page

 

Protection motivation theory in information security behavior research: reconsidering the fundamentals

Mikko Siponen, Mikko Rönkkö, Liu Fufan (), Steffi Haag and Gabriella Laatikainen
Additional contact information
Mikko Siponen: UA - University of Alabama [Tuscaloosa]
Mikko Rönkkö: JYU - University of Jyväskylä
Liu Fufan: IÉSEG School Of Management [Puteaux]
Steffi Haag: Heinrich Heine Universität Düsseldorf = Heinrich Heine University [Düsseldorf]
Gabriella Laatikainen: JYU - University of Jyväskylä

Post-Print from HAL

Abstract: Scholars commonly use protection motivation theory (PMT) by Rogers to examine information systems (IS) security behaviors and behavioral intentions. A recent influential paper by Boss, Galletta, Lowry, Moody, and Polak (2015; hereafter BGLMP) in MIS Quarterly outlines correct and incorrect uses of PMT in Information Security behavior research. In this paper, we review some of BGLMP's key recommendations, such as the claim that all IS behavior studies that apply PMT should always use the model of the full theory, contain and measure fear, and measure actual behaviors. We defend an interpretation of Rogers (1975, 1983) that differs from the interpretation that BGLMP propose. We present evidence that Rogers' PMT and the empirical evidence do not adequately support many of BGLMP's suggestions and that these suggestions contradict good scientific practices (e.g., restricting the use of the method of isolation) that the philosophy of science and the original literature on PMT uphold. As a result, if reviewers and editors continue to embrace these recommendations, they could hinder the progress of IS behavior research by not allowing isolation or the combination of different theoretical components. In contrast to BGLMP's paper, we argue that further PMT research can focus on isolated PMT components and combine them with other theories. Some of our ideas (e.g., isolation) are not PMT-specific and could be useful for IS research in general. In summary, we contest BGLMP's recommendations and offer revised recommendations in return.

Date: 2023
References: Add references at CitEc
Citations:

Published in Communications of the Association for Information Systems, 2023, 53, pp.1136-1165. ⟨10.17705/1CAIS.05348⟩

There are no downloads for this item, see the EconPapers FAQ for hints about obtaining it.

Related works:
This item may be available elsewhere in EconPapers: Search for items with the same title.

Export reference: BibTeX RIS (EndNote, ProCite, RefMan) HTML/Text

Persistent link: https://EconPapers.repec.org/RePEc:hal:journl:hal-04711810

DOI: 10.17705/1CAIS.05348

Access Statistics for this paper

More papers in Post-Print from HAL
Bibliographic data for series maintained by CCSD ().

 
Share

RePEc
This site is part of RePEc and all the data displayed here is part of the RePEc data set.

Is your work missing from RePEc? Here is how to contribute.

Questions or problems? Check the EconPapers FAQ or send mail to .

Örebro UniversityEconPapers is hosted by the School of Business at Örebro University.

Page updated 2025-03-19
Handle: RePEc:hal:journl:hal-04711810