Abstract
Users’ cybersecurity behaviour is very dynamic and changeable at home, and computer security is very challenging because there is no canonical and specific definition of home computer user. Many cybersecurity programs and information security best practices have focused on algorithms, methods and standards that cover main security functions but computer users are limited to perform multitask operations and processing information. These limitations affect their decision and full attention on security tasks. Users’ security decisions are also limited to their technological solutions. These solutions influence the users’ actions by providing security functions and mechanisms, but human factors also affect individual’s decisions. This paper proposes a decision-making process based on cognitive modelling which influences users’ behaviour during computer interaction at home. The cognitive modelling simulates human thinking process by using a software model. An intelligent agent architecture is also provided to gather information to identify users’ risky behaviours during any interaction with computers. This agent evaluates risks and recommends relevant awareness and efficient controls to reduce cybersecurity risks.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
Howe AE et al (2012) The psychology of security for the home computer user. In: 2012 IEEE symposium on security and privacy (SP). IEEE, New York
UK, O.f.N.S. (2017) Family Spending
Wash R (2010) Folk models of home computer security. In: Proceedings of the sixth symposium on usable privacy and security. ACM, New York
Metalidou E et al (2014) The human factor of information security: unintentional damage perspective. Procedia-Soc Behav Sci 147:424–428
West R (2008) The psychology of security. Commun ACM 51(4):34–40
Stanton JM et al (2005) Analysis of end user security behaviors. Comput secur 24(2):124–133
Bryant P, Furnell S, Phippen A (2008) Improving protection and security awareness amongst home users. Adv Netw Comput Commun 4:182
Weber EU, Blais AR, Betz NE (2002) A domain-specific risk-attitude scale: measuring risk perceptions and risk behaviors. J Behav Decis Making 15(4):263–290
Iglesias JA, Ledezma A, Sanchis A (2013) Evolving systems for computer user behavior classification. In: 2013 IEEE Conference on Evolving and Adaptive Intelligent Systems (EAIS). IEEE, New York
Malcolmson J (2009) What is security culture? Does it differ in content from general organisational culture? In: 43rd Annual 2009 international Carnahan conference on security technology
Albrechtsen E (2007) A qualitative study of users’ view on information security. Comput Secur 26(4):276–289
Mai B et al (2017) Neuroscience foundations for human decision making in information security: a general framework and experiment design. In: Information systems and neuroscience. Springer, Berlin, pp 91–98
Straub DW, Welke RJ (1998) Coping with systems risk: security planning models for management decision making. MIS quarterly, pp 441–469
Grossklags J, Christin N, Chuang J (2008) Secure or insure? A game-theoretic analysis of information security games. In: Proceedings of the 17th international conference on World Wide Web. ACM, New York
Bryant DJ (2006) Rethinking OODA: toward a modern cognitive framework of command decision making. Mil Psychol 18(3):183
Arora A, Nandkumar A, Telang R (2006) Does information security attack frequency increase with vulnerability disclosure? An empirical analysis. Inf Syst Front 8(5):350–362
Hsu JS-C et al (2015) The role of extra-role behaviors and social controls in information security policy effectiveness. Inf Syst Res 26(2):282–300
Joshi P (2017) Artificial intelligence with python. Packt Publishing, Birmingham
Wooldridge M (2009) An introduction to multiagent systems. Wiley, New York
Wooldridge M (2001) An introduction to multiagent systems. Wiley, New York
Kussul N, Skakun S (2005) Intelligent system for users’ activity monitoring in computer networks. In: Intelligent data acquisition and advanced computing systems: technology and applications, IDAACS 2005. IEEE, New York
Stuart R, Peter N (2016) Artificial intelligence-A modern approach, 3rd ed, Berkeley
Chan M, Woon I, Kankanhalli A (2005) Perceptions of information security in the workplace: linking information security climate to compliant behavior. J Inf Priv Secur 1(3):18–41
Panko RR, Beh HG (2002) Monitoring for pornography and sexual harassment. Commun ACM 45(1):84–87
Koh K et al (2005) Security governance: its impact on security culture. In: AISM
Rogers RW (1983) Cognitive and psychological processes in fear appeals and attitude change: a revised theory of protection motivation. A sourcebook, Soc psychophysiol, pp 153–176
Hazari S, Hargrave W, Clenney B (2008) An empirical investigation of factors influencing information security behavior. J Inf Priv Secur 4(4):3–20
Ajzen I (1991) The theory of planned behavior. Organ Behav Hum Decis Process 50(2):179–211
Ng B-Y, Rahim M (2005) A socio-behavioral study of home computer users’ intention to practice security. IN: PACIS 2005 Proceedings, p 20
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2019 Springer Nature Singapore Pte Ltd.
About this paper
Cite this paper
Foroughi, F., Luksch, P. (2019). An Intelligent Agent Architecture to Influence Home Users’ Risky Behaviours. In: Yang, XS., Sherratt, S., Dey, N., Joshi, A. (eds) Third International Congress on Information and Communication Technology. Advances in Intelligent Systems and Computing, vol 797. Springer, Singapore. https://doi.org/10.1007/978-981-13-1165-9_79
Download citation
DOI: https://doi.org/10.1007/978-981-13-1165-9_79
Published:
Publisher Name: Springer, Singapore
Print ISBN: 978-981-13-1164-2
Online ISBN: 978-981-13-1165-9
eBook Packages: EngineeringEngineering (R0)