|
|||||
|
|
Heuristics and biases in cyber security dilemmas |
|
| Authors: | Heather Rosoff Jinshu Cui Richard S John |
| Institution: | 1. Sol Price School of Public Policy, University of Southern California, Los Angeles, CA, USA 2. Center for Risk and Economic Analysis of Terrorism Events (CREATE), University of Southern California, Los Angeles, CA, USA 3. Department of Psychology, University of Southern California, Los Angeles, CA, USA |
| Abstract: | Cyber security often depends on decisions made by human operators, who are commonly considered a major cause of security failures. We conducted 2 behavioral experiments to explore whether and how cyber security decision-making responses depend on gain–loss framing and salience of a primed recall prior experience. In Experiment I, we employed a 2 × 2 factorial design, manipulating the frame (gain vs. loss) and the presence versus absence of a prior near-miss experience. Results suggest that the experience of a near-miss significantly increased respondents’ endorsement of safer response options under a gain frame. Overall, female respondents were more likely to select a risk averse (safe) response compared with males. Experiment II followed the same general paradigm, framing all consequences in a loss frame and manipulating recall to include one of three possible prior experiences: false alarm, near-miss, or a hit involving a loss of data. Results indicate that the manipulated prior hit experience significantly increased the likelihood of respondents’ endorsement of a safer response relative to the manipulated prior near-miss experience. Conversely, the manipulated prior false-alarm experience significantly decreased respondents’ likelihood of endorsing a safer response relative to the manipulated prior near-miss experience. These results also showed a main effect for age and were moderated by respondent’s income level. |
| Keywords: | |
| 本文献已被 SpringerLink 等数据库收录! | |