{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,5,12]],"date-time":"2026-05-12T16:25:43Z","timestamp":1778603143383,"version":"3.51.4"},"publisher-location":"New York, NY, USA","reference-count":18,"publisher":"ACM","license":[{"start":{"date-parts":[[2008,9,22]],"date-time":"2008-09-22T00:00:00Z","timestamp":1222041600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2008,9,22]]},"DOI":"10.1145\/1595676.1595684","type":"proceedings-article","created":{"date-parts":[[2009,8,24]],"date-time":"2009-08-24T14:08:35Z","timestamp":1251122915000},"page":"47-58","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":172,"title":["The compliance budget"],"prefix":"10.1145","author":[{"given":"Adam","family":"Beautement","sequence":"first","affiliation":[{"name":"University College London, Malet Place, London"}]},{"given":"M. Angela","family":"Sasse","sequence":"additional","affiliation":[{"name":"University College London, Malet Place, London"}]},{"given":"Mike","family":"Wonham","sequence":"additional","affiliation":[{"name":"Hewlett-Packard Labs, Bristol"}]}],"member":"320","published-online":{"date-parts":[[2008,9,22]]},"reference":[{"key":"e_1_3_2_1_1_1","unstructured":"J. Adams (1995) Risk. Routledge.  J. Adams (1995) Risk. Routledge."},{"key":"e_1_3_2_1_2_1","doi-asserted-by":"publisher","DOI":"10.1145\/322796.322806"},{"key":"e_1_3_2_1_3_1","doi-asserted-by":"publisher","DOI":"10.1145\/986655.986664"},{"key":"e_1_3_2_1_4_1","doi-asserted-by":"publisher","DOI":"10.1145\/1065907.1066032"},{"key":"e_1_3_2_1_5_1","unstructured":"Lawrence A. Gordon&Martin P. Loeb (2006): Managing Cybersecurity Resources: A Cost-Benefit Analysis. Mcgraw-Hill.   Lawrence A. Gordon&Martin P. Loeb (2006): Managing Cybersecurity Resources: A Cost-Benefit Analysis. Mcgraw-Hill."},{"key":"e_1_3_2_1_6_1","volume-title":"Proceedings of the Sixth Workshop on the Economics of Information Security","author":"Herath Hemantha S.B.","year":"2007"},{"key":"e_1_3_2_1_7_1","volume-title":"Proceedings of the Fifth Workshop on the Economics of Information Security","author":"Huang C. Derrick","year":"2006"},{"key":"e_1_3_2_1_8_1","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2007.59"},{"key":"e_1_3_2_1_9_1","volume-title":"Proceedings of the Sixth Workshop on the Economics of Information Security","author":"Johnson M. Eric","year":"2007"},{"key":"e_1_3_2_1_10_1","volume-title":"Proceedings of the Sixth Workshop on the Economics of Information Security","author":"Kumar Vincent","year":"2007"},{"key":"e_1_3_2_1_11_1","volume-title":"Gentner, D.A.&Stevens, A.A. {Eds.} Mental models.","author":"A.","year":"1983"},{"key":"e_1_3_2_1_12_1","unstructured":"B. Schneier (2000): Secrets and Lies: Digital Security in a Networked World. Wiley.   B. Schneier (2000): Secrets and Lies: Digital Security in a Networked World. Wiley."},{"key":"e_1_3_2_1_13_1","unstructured":"Strauss A. and Corbin J. (1990). Basics of qualitative research: Grounded theory procedures and techniques. Sage Publications.  Strauss A. and Corbin J. (1990). Basics of qualitative research: Grounded theory procedures and techniques. Sage Publications."},{"key":"e_1_3_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.1145\/508171.508195"},{"key":"e_1_3_2_1_15_1","unstructured":"Weirich (2005): Persuasive Password Security. Unpublished PhD Thesis Department of Computer Science University College London UK.  Weirich (2005): Persuasive Password Security. Unpublished PhD Thesis Department of Computer Science University College London UK."},{"key":"e_1_3_2_1_16_1","volume-title":"Proceedings of the 8th USENIX Security Symposium","author":"D.","year":"1999"},{"key":"e_1_3_2_1_17_1","first-page":"13","volume-title":"L. Faith Cranor&S. Garfinkel {Eds.}: Security and Usability: Designing secure systems that people can use","author":"K","year":"2005"},{"key":"e_1_3_2_1_18_1","doi-asserted-by":"publisher","DOI":"10.1145\/304851.304859"}],"event":{"name":"NSPW '08: 2008 New Security Paradigms Workshop","location":"Lake Tahoe California USA","acronym":"NSPW '08","sponsor":["ACM Association for Computing Machinery"]},"container-title":["Proceedings of the 2008 New Security Paradigms Workshop"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/1595676.1595684","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/1595676.1595684","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T12:18:03Z","timestamp":1750249083000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/1595676.1595684"}},"subtitle":["managing security behaviour in organisations"],"short-title":[],"issued":{"date-parts":[[2008,9,22]]},"references-count":18,"alternative-id":["10.1145\/1595676.1595684","10.1145\/1595676"],"URL":"https:\/\/doi.org\/10.1145\/1595676.1595684","relation":{},"subject":[],"published":{"date-parts":[[2008,9,22]]},"assertion":[{"value":"2008-09-22","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}