{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,4,30]],"date-time":"2026-04-30T10:08:10Z","timestamp":1777543690223,"version":"3.51.4"},"reference-count":26,"publisher":"Emerald","issue":"2","license":[{"start":{"date-parts":[[2016,6,13]],"date-time":"2016-06-13T00:00:00Z","timestamp":1465776000000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.emerald.com\/insight\/site-policies"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["ICS"],"published-print":{"date-parts":[[2016,6,13]]},"abstract":"<jats:sec>\n<jats:title content-type=\"abstract-subheading\">Purpose<\/jats:title>\n<jats:p>Modern browsers are designed to inform users as to whether it is secure to login to a website, but most users are not aware of this information and even those who are sometimes ignore it. This study aims to assess users\u2019 knowledge of security warnings communicated via browser indicators and the likelihood that their online decision-making adheres to this knowledge.<\/jats:p>\n<\/jats:sec>\n<jats:sec>\n<jats:title content-type=\"abstract-subheading\">Design\/methodology\/approach<\/jats:title>\n<jats:p>Participants from Amazon\u2019s Mechanical Turk visited a series of secure and insecure websites and decided as quickly and as accurately as possible whether it was safe to login. An online survey was then used to assess their knowledge of information security.<\/jats:p>\n<\/jats:sec>\n<jats:sec>\n<jats:title content-type=\"abstract-subheading\">Findings<\/jats:title>\n<jats:p>Knowledge of information security was not necessarily a good predictor of decisions regarding whether to sign-in to a website. Moreover, these decisions were modulated by attention to security indicators, familiarity of the website and psychosocial stress induced by bonus payments determined by response times and accuracy.<\/jats:p>\n<\/jats:sec>\n<jats:sec>\n<jats:title content-type=\"abstract-subheading\">Practical implications<\/jats:title>\n<jats:p>Even individuals with security knowledge are unable to draw the necessary conclusions about digital risks when browsing the web. Users are being educated through daily use to ignore recommended security indicators.<\/jats:p>\n<\/jats:sec>\n<jats:sec>\n<jats:title content-type=\"abstract-subheading\">Originality\/value<\/jats:title>\n<jats:p>This study represents a new way to entice participants into risky behavior by monetizing both speed and accuracy. This approach could be broadly useful as a way to study risky environments without placing participants at risk.<\/jats:p>\n<\/jats:sec>","DOI":"10.1108\/ics-01-2016-0002","type":"journal-article","created":{"date-parts":[[2016,6,20]],"date-time":"2016-06-20T04:51:07Z","timestamp":1466398267000},"page":"164-176","source":"Crossref","is-referenced-by-count":15,"title":["Attention and past behavior, not security knowledge, modulate users\u2019 decisions to login to insecure websites"],"prefix":"10.1108","volume":"24","author":[{"given":"Timothy","family":"Kelley","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Bennett I.","family":"Bertenthal","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"140","reference":[{"key":"key2020121520182488600_ref001","doi-asserted-by":"crossref","first-page":"69","DOI":"10.1016\/j.ijhcs.2015.05.005","article-title":"Why phishing still works: user strategies for combating phishing attacks","volume":"82","year":"2015","journal-title":"International Journal of Human-Computer Studies"},{"key":"key2020121520182488600_ref002","first-page":"105","article-title":"Comparative eye tracking of experts and novices in web single sign-on","year":"2013"},{"issue":"3","key":"key2020121520182488600_ref003","doi-asserted-by":"crossref","first-page":"255","DOI":"10.1016\/j.jml.2012.11.001","article-title":"Random effects structure for confirmatory hypothesis testing: keep it maximal","volume":"68","year":"2013","journal-title":"Journal of Memory and Language"},{"issue":"1","key":"key2020121520182488600_ref004","first-page":"1","article-title":"Fitting linear mixed-effects models using {lme4}","volume":"67","year":"2015","journal-title":"Journal of Statistical Software"},{"issue":"1","key":"key2020121520182488600_ref005","doi-asserted-by":"crossref","first-page":"3","DOI":"10.1177\/1745691610393980","article-title":"Amazon\u2019s mechanical Turk: a new source of inexpensive, yet high-quality, data?","volume":"6","year":"2011","journal-title":"Perspectives on Psychological Science"},{"issue":"3","key":"key2020121520182488600_ref006","doi-asserted-by":"crossref","first-page":"e57410","DOI":"10.1371\/journal.pone.0057410","article-title":"Evaluating Amazon\u2019s mechanical Turk as a tool for experimental behavioral research","volume":"8","year":"2013","journal-title":"PLoS ONE"},{"key":"key2020121520182488600_ref007","volume-title":"An {R} Companion to Applied Regression","year":"2011","edition":"2nd edn."},{"key":"key2020121520182488600_ref008","first-page":"746","article-title":"Users\u2019 conceptions of web security","volume-title":"CHI \u201902 Extended Abstracts on Human Factors in Computing Systems \u2013 CHI \u201802","year":"2002"},{"key":"key2020121520182488600_ref009","first-page":"3278","article-title":"End user perception of online risk under uncertainty","year":"2012"},{"key":"key2020121520182488600_ref010","article-title":"Data analysis using regression and multilevel\/hierarchical models","volume-title":"Data Analysis Using Regression and Multilevel\/Hierarchical Models","year":"2007"},{"key":"key2020121520182488600_ref011","unstructured":"Gelman, A. and Su, Y.-S. (2015), is Using Regression and Multilevel\/Hierarchical Models, available at: http:\/\/cran.r-project.org\/package=arm"},{"key":"key2020121520182488600_ref012","article-title":"Your reputation precedes you: history, reputation, and the chrome malware warning","volume-title":"Symposium on Usable Privacy and Security (SOUPS)","year":"2014"},{"issue":"2","key":"key2020121520182488600_ref013","doi-asserted-by":"crossref","first-page":"573","DOI":"10.1037\/a0029146","article-title":"Bayesian estimation supersedes the t test","volume":"142","year":"2013","journal-title":"Journal of Experimental Psychology"},{"issue":"1","key":"key2020121520182488600_ref014","first-page":"1","article-title":"Least-squares means: the {R} package {lsmeans}","volume":"69","year":"2016","journal-title":"Journal of Statistical Software"},{"issue":"2","key":"key2020121520182488600_ref015","doi-asserted-by":"crossref","first-page":"248","DOI":"10.1037\/a0018930","article-title":"Stress reduces use of negative feedback in a feedback-based learning task","volume":"124","year":"2010","journal-title":"Behavioral neuroscience"},{"key":"key2020121520182488600_ref016","volume-title":"R: A Language and Environment for Statistical Computing","author":"R Core Team","year":"2014"},{"key":"key2020121520182488600_ref017","volume-title":"psych: Procedures for Psychological, Psychometric, and Personality Research","year":"2015"},{"key":"key2020121520182488600_ref018","first-page":"51","article-title":"The emperor\u2019s new security indicators an evaluation of website authentication and the effect of role playing on usability studies","year":"2007"},{"key":"key2020121520182488600_ref019","first-page":"411","article-title":"Exploring user reactions to new browser cues for extended validation certificates","year":"2008"},{"key":"key2020121520182488600_ref020","first-page":"248","article-title":"Reinforcing bad behaviour","year":"2010"},{"key":"key2020121520182488600_ref021","article-title":"Crying wolf: an empirical study of SSL warning effectiveness","year":"2009"},{"issue":"2","key":"key2020121520182488600_ref022","doi-asserted-by":"crossref","first-page":"99","DOI":"10.2307\/3001913","article-title":"Comparing individual means in the analysis of variance","volume":"5","year":"1949","journal-title":"Biometrics"},{"key":"key2020121520182488600_ref023","first-page":"137","article-title":"Gathering evidence: use of visual security cues in web browsers","year":"2005"},{"key":"key2020121520182488600_ref024","volume-title":"ggplot2: Elegant Graphics for Data Analysis","year":"2009"},{"issue":"1","key":"key2020121520182488600_ref025","first-page":"1","article-title":"The split-apply-combine strategy for data analysis","volume":"40","year":"2011","journal-title":"Journal of Statistical Software"},{"issue":"2","key":"key2020121520182488600_ref026","doi-asserted-by":"crossref","first-page":"179","DOI":"10.1016\/j.obhdp.2012.03.005","article-title":"Decision making under time pressure, modeled in a prospect theory framework","volume":"118","year":"2012","journal-title":"Organizational Behavior and Human Decision Processes"}],"container-title":["Information &amp; Computer Security"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/www.emeraldinsight.com\/doi\/full-xml\/10.1108\/ICS-01-2016-0002","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/www.emerald.com\/insight\/content\/doi\/10.1108\/ICS-01-2016-0002\/full\/xml","content-type":"application\/xml","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/www.emerald.com\/insight\/content\/doi\/10.1108\/ICS-01-2016-0002\/full\/html","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,7,25]],"date-time":"2025-07-25T01:22:34Z","timestamp":1753406554000},"score":1,"resource":{"primary":{"URL":"http:\/\/www.emerald.com\/ics\/article\/24\/2\/164-176\/112204"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2016,6,13]]},"references-count":26,"journal-issue":{"issue":"2","published-print":{"date-parts":[[2016,6,13]]}},"alternative-id":["10.1108\/ICS-01-2016-0002"],"URL":"https:\/\/doi.org\/10.1108\/ics-01-2016-0002","relation":{},"ISSN":["2056-4961"],"issn-type":[{"value":"2056-4961","type":"print"}],"subject":[],"published":{"date-parts":[[2016,6,13]]}}}