IDEAS home Printed from https://ideas.repec.org/a/wly/riskan/v40y2020i8p1571-1588.html
   My bibliography  Save this article

The Case against Commercial Antivirus Software: Risk Homeostasis and Information Problems in Cybersecurity

Author

Listed:
  • Eric Jardine

Abstract

New cybersecurity technologies, such as commercial antivirus software (AV), sometimes fail to deliver on their promised benefits. This article develops and tests a revised version of risk homeostasis theory, which suggests that new cybersecurity technologies can sometimes have ill effects on security outcomes in the short run and little‐to‐no effect over the long run. It tests the preliminary plausibility of four predictions from the revised risk homeostasis theory using new survey data from 1,072 respondents. The estimations suggest the plausible operation of a number of risk homeostasis dynamics: (1) commercial AV users are significantly more likely to self‐report a cybersecurity event in the past year than nonusers, even after correcting for potential reverse causality and informational mechanisms; (2) nonusers become somewhat less likely to self‐report a cybersecurity event as the perceived riskiness of various e‐mail‐based behaviors increases, while commercial AV users do not; (3) the negative short‐run effect of commercial AV use on cybersecurity outcomes fade over time at a predicted rate of about 7.03 percentage points per year of use; and (4) after five years of use, commercial AV users are statistically indistinguishable from nonusers in terms of their probability of self‐reporting a cybersecurity event as perceptions of risky e‐mail‐based behaviors increase.

Suggested Citation

  • Eric Jardine, 2020. "The Case against Commercial Antivirus Software: Risk Homeostasis and Information Problems in Cybersecurity," Risk Analysis, John Wiley & Sons, vol. 40(8), pages 1571-1588, August.
  • Handle: RePEc:wly:riskan:v:40:y:2020:i:8:p:1571-1588
    DOI: 10.1111/risa.13534
    as

    Download full text from publisher

    File URL: https://doi.org/10.1111/risa.13534
    Download Restriction: no

    File URL: https://libkey.io/10.1111/risa.13534?utm_source=ideas
    LibKey link: if access is restricted and if your library uses this service, LibKey will redirect you to where you can use your library subscription to access this item
    ---><---

    References listed on IDEAS

    as
    1. Ajzen, Icek, 1991. "The theory of planned behavior," Organizational Behavior and Human Decision Processes, Elsevier, vol. 50(2), pages 179-211, December.
    2. Peterson, Steven & Hoffer, George & Millner, Edward, 1995. "Are Drivers of Air-Bag-Equipped Cars More Aggressive? A Test of the Offsetting Behavior Hypothesis," Journal of Law and Economics, University of Chicago Press, vol. 38(2), pages 251-264, October.
    3. Viscusi, W Kip, 1984. "The Lulling Effect: The Impact of Child-Resistant Packaging on Aspirin and Analgesic Ingestions," American Economic Review, American Economic Association, vol. 74(2), pages 324-327, May.
    4. Eric Jardine, 2018. "Mind the denominator: towards a more effective measurement system for cybersecurity," Journal of Cyber Policy, Taylor & Francis Journals, vol. 3(1), pages 116-139, January.
    5. Dan Geer & Eric Jardine & Eireann Leverett, 2020. "On market concentration and cybersecurity risk," Journal of Cyber Policy, Taylor & Francis Journals, vol. 5(1), pages 9-29, July.
    6. John D'Arcy & Anat Hovav & Dennis Galletta, 2009. "User Awareness of Security Countermeasures and Its Impact on Information Systems Misuse: A Deterrence Approach," Information Systems Research, INFORMS, vol. 20(1), pages 79-98, March.
    Full references (including those not matched with items on IDEAS)

    Citations

    Citations are extracted by the CitEc Project, subscribe to its RSS feed for this item.
    as


    Cited by:

    1. Hoon S. Choi & Darrell Carpenter & Myung S. Ko, 2022. "Risk Taking Behaviors Using Public Wi-Fi™," Information Systems Frontiers, Springer, vol. 24(3), pages 965-982, June.

    Most related items

    These are the items that most often cite the same works as this one and are cited by the same works as this one.
    1. Asmussen, Katherine E. & Mondal, Aupal & Bhat, Chandra R., 2022. "Adoption of partially automated vehicle technology features and impacts on vehicle miles of travel (VMT)," Transportation Research Part A: Policy and Practice, Elsevier, vol. 158(C), pages 156-179.
    2. McCannon, Bryan C., 2009. "Do less-violent technologies result in less violence? A theoretical investigation applied to the use of tasers by law enforcement," Economics Discussion Papers 2009-36, Kiel Institute for the World Economy (IfW Kiel).
    3. Chang-Gyu Yang & Hee-Jun Lee, 2016. "A study on the antecedents of healthcare information protection intention," Information Systems Frontiers, Springer, vol. 18(2), pages 253-263, April.
    4. Clifford Winston & Vikram Maheshri & Fred Mannering, 2006. "An exploration of the offset hypothesis using disaggregate data: The case of airbags and antilock brakes," Journal of Risk and Uncertainty, Springer, vol. 32(2), pages 83-99, March.
    5. Berlemann, Michael & Matthes, Andreas, 2014. "Positive externalities from active car safety systems," Journal of Policy Modeling, Elsevier, vol. 36(2), pages 313-329.
    6. Huigang Liang & Yajiong Xue & Liansheng Wu, 2013. "Ensuring Employees' IT Compliance: Carrot or Stick?," Information Systems Research, INFORMS, vol. 24(2), pages 279-294, June.
    7. Che, Maohao & Wong, Yiik Diew & Lum, Kit Meng & Wang, Xueqin, 2021. "Interaction behaviour of active mobility users in shared space," Transportation Research Part A: Policy and Practice, Elsevier, vol. 153(C), pages 52-65.
    8. Lott, John R, Jr & Whitley, John E, 2001. "Safe-Storage Gun Laws: Accidental Deaths, Suicides, and Crime," Journal of Law and Economics, University of Chicago Press, vol. 44(2), pages 659-689, October.
    9. A. Reeves & P. Delfabbro & D. Calic, 2021. "Encouraging Employee Engagement With Cybersecurity: How to Tackle Cyber Fatigue," SAGE Open, , vol. 11(1), pages 21582440211, March.
    10. Yajiong Xue & Huigang Liang & Liansheng Wu, 2011. "Punishment, Justice, and Compliance in Mandatory IT Settings," Information Systems Research, INFORMS, vol. 22(2), pages 400-414, June.
    11. John R. Lott, Jr. & John Whitley, 2001. "Safe Storage Gun Laws: Accidental Deaths, Suicides and Crime," School of Economics and Public Policy Working Papers 2001-06, University of Adelaide, School of Economics and Public Policy.
    12. Murilo Catussi Almeida & Adilson Carlos Yoshikuni & Rajeev Dwivedi & Cláudio Luís Carvalho Larieira, 2022. "Do Leadership Styles Influence Employee Information Systems Security Intention? A Study of the Banking Industry," Global Journal of Flexible Systems Management, Springer;Global Institute of Flexible Systems Management, vol. 23(4), pages 535-550, December.
    13. McCarthy, Patrick & Talley, Wayne K., 1999. "Evidence on risk compensation and safety behaviour," Economics Letters, Elsevier, vol. 62(1), pages 91-96, January.
    14. Andy C. Y. Chong & Amanda M. Y. Chu & Mike K. P. So & Ray S. W. Chung, 2019. "Asking Sensitive Questions Using the Randomized Response Approach in Public Health Research: An Empirical Study on the Factors of Illegal Waste Disposal," IJERPH, MDPI, vol. 16(6), pages 1-15, March.
    15. Maria Andersson & Ola Eriksson & Chris Von Borgstede, 2012. "The Effects of Environmental Management Systems on Source Separation in the Work and Home Settings," Sustainability, MDPI, vol. 4(6), pages 1-17, June.
    16. Tran Huy Phuong & Thanh Trung Hieu, 2015. "Predictors of Entrepreneurial Intentions of Undergraduate Students in Vietnam: An Empirical Study," International Journal of Academic Research in Business and Social Sciences, Human Resource Management Academic Research Society, International Journal of Academic Research in Business and Social Sciences, vol. 5(8), pages 46-55, August.
    17. Clara Cardone-Riportella & María José Casasola-Martinez & Isabel Feito-Ruiz, 2014. "Do Entrepreneurs Come From Venus Or Mars? Impact Of Postgraduate Studies: Gender And Family Business Background," Working Papers 14.04, Universidad Pablo de Olavide, Department of Financial Economics and Accounting (former Department of Business Administration), revised Sep 2014.
    18. Peng Cheng & Zhe Ouyang & Yang Liu, 0. "The effect of information overload on the intention of consumers to adopt electric vehicles," Transportation, Springer, vol. 0, pages 1-20.
    19. Ruijie Zhu & Guojing Zhao & Zehai Long & Yangjie Huang & Zhaoxin Huang, 2022. "Entrepreneurship or Employment? A Survey of College Students’ Sustainable Entrepreneurial Intentions," Sustainability, MDPI, vol. 14(9), pages 1-15, May.
    20. Alsalem, Amani & Fry, Marie-Louise & Thaichon, Park, 2020. "To donate or to waste it: Understanding posthumous organ donation attitude," Australasian marketing journal, Elsevier, vol. 28(3), pages 87-97.

    More about this item

    Statistics

    Access and download statistics

    Corrections

    All material on this site has been provided by the respective publishers and authors. You can help correct errors and omissions. When requesting a correction, please mention this item's handle: RePEc:wly:riskan:v:40:y:2020:i:8:p:1571-1588. See general information about how to correct material in RePEc.

    If you have authored this item and are not yet registered with RePEc, we encourage you to do it here. This allows to link your profile to this item. It also allows you to accept potential citations to this item that we are uncertain about.

    If CitEc recognized a bibliographic reference but did not link an item in RePEc to it, you can help with this form .

    If you know of missing items citing this one, you can help us creating those links by adding the relevant references in the same way as above, for each refering item. If you are a registered author of this item, you may also want to check the "citations" tab in your RePEc Author Service profile, as there may be some citations waiting for confirmation.

    For technical questions regarding this item, or to correct its authors, title, abstract, bibliographic or download information, contact: Wiley Content Delivery (email available below). General contact details of provider: https://doi.org/10.1111/(ISSN)1539-6924 .

    Please note that corrections may take a couple of weeks to filter through the various RePEc services.

    IDEAS is a RePEc service. RePEc uses bibliographic data supplied by the respective publishers.