{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,4,13]],"date-time":"2026-04-13T19:00:24Z","timestamp":1776106824064,"version":"3.50.1"},"publisher-location":"New York, NY, USA","reference-count":71,"publisher":"ACM","license":[{"start":{"date-parts":[[2024,5,11]],"date-time":"2024-05-11T00:00:00Z","timestamp":1715385600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"DOI":"10.13039\/https:\/\/doi.org\/10.13039\/100000001","name":"National Science Foundation","doi-asserted-by":"publisher","award":["CNS-1704087"],"award-info":[{"award-number":["CNS-1704087"]}],"id":[{"id":"10.13039\/https:\/\/doi.org\/10.13039\/100000001","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2024,5,11]]},"DOI":"10.1145\/3613905.3651012","type":"proceedings-article","created":{"date-parts":[[2024,5,11]],"date-time":"2024-05-11T08:15:21Z","timestamp":1715415321000},"page":"1-13","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":5,"title":["A Framework for Reasoning about Social Influences on Security and Privacy Adoption"],"prefix":"10.1145","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-4084-4086","authenticated-orcid":false,"given":"Cori","family":"Faklaris","sequence":"first","affiliation":[{"name":"Software and Information Systems, University of North Carolina at Charlotte, United States"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-9489-4188","authenticated-orcid":false,"given":"Laura","family":"Dabbish","sequence":"additional","affiliation":[{"name":"Human-Computer Interaction Institute, Carnegie Mellon University, United States"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-9856-9654","authenticated-orcid":false,"given":"Jason I.","family":"Hong","sequence":"additional","affiliation":[{"name":"Human-Computer Interaction Institute, Carnegie Mellon University, United States"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2024,5,11]]},"reference":[{"key":"e_1_3_3_2_1_1","volume-title":"Mobile Banking Adoption: Application of Diffusion of Innovation Theory. Social Science Research Network","author":"Al-Jabri Ibrahim M.","year":"2021","unstructured":"[1]Ibrahim M. Al-Jabri and M. Sadiq Sohail. 2012. Mobile Banking Adoption: Application of Diffusion of Innovation Theory. Social Science Research Network, Rochester, NY. Retrieved October 13, 2021 from https:\/\/papers.ssrn.com\/abstract=2523623"},{"key":"e_1_3_3_2_2_1","doi-asserted-by":"publisher","DOI":"10.1080\/10810730490271575"},{"key":"e_1_3_3_2_3_1","volume-title":"NY. Retrieved","author":"Boss Scott","year":"2015","unstructured":"[3]Scott Boss, Dennis Galletta, Paul Benjamin Lowry, Gregory D. Moody, and Peter Polak. 2015. What Do Systems Users Have to Fear? Using Fear Appeals to Engender Threats and Fear that Motivate Protective Security Behaviors. Social Science Research Network, Rochester, NY. Retrieved July 18, 2018 from https:\/\/papers.ssrn.com\/abstract=2607190"},{"key":"e_1_3_3_2_4_1","volume-title":"Influence: science and practice","author":"Cialdini Robert B.","unstructured":"[4]Robert B. Cialdini. 2001. Influence: science and practice (4th ed ed.). Allyn and Bacon, Boston, MA.","edition":"4"},{"key":"e_1_3_3_2_5_1","doi-asserted-by":"publisher","DOI":"10.1146\/annurev.psych.55.090902.142015"},{"key":"e_1_3_3_2_6_1","volume-title":"CNET. Retrieved","author":"Cipriani Jason","year":"2022","unstructured":"[6]Jason Cipriani. Google signs up 150 million people for two-factor authentication: What it is, how it works. CNET. Retrieved January 14, 2022 from https:\/\/www.cnet.com\/tech\/services-and-software\/google-signs-up-150-million-people-for-two-factor-authentication-what-it-is-how-it-works\/"},{"key":"e_1_3_3_2_7_1","volume-title":"Hong","author":"Faklaris Cori","year":"2021","unstructured":"[7]Cori Faklaris, Laura Dabbish, and Jason I. Hong. 2021. SA-13, the 13-item security attitude scale. Retrieved from https:\/\/socialcybersecurity.org\/files\/SA13handout.pdf"},{"key":"e_1_3_3_2_8_1","volume-title":"Plano Clark","author":"Creswell John W.","year":"2017","unstructured":"[8]John W. Creswell and Vicki L. Plano Clark. 2017. Designing and Conducting Mixed Methods Research. SAGE Publications."},{"key":"e_1_3_3_2_9_1","volume-title":"Proceedings of the Symposium on Usable Privacy and Security (SOUPS), 2019","author":"Das Sauvik","year":"2019","unstructured":"[9]Sauvik Das, Laura A. Dabbish, and Jason I. Hong. 2019. A Typology of Perceived Triggers for End-User Security and Privacy Behaviors. In Proceedings of the Symposium on Usable Privacy and Security (SOUPS), 2019. USENIX Association Berkeley, CA. . Retrieved August 28, 2019 from https:\/\/www.usenix.org\/conference\/soups2019\/presentation\/das"},{"key":"e_1_3_3_2_10_1","doi-asserted-by":"publisher","DOI":"10.1561\/3300000026"},{"key":"e_1_3_3_2_11_1","volume-title":"Proceedings of the Symposium on Usable Privacy and Security, 2014","author":"Das Sauvik","year":"2014","unstructured":"[11]Sauvik Das, Tiffany Hyun-Jin Kim, Laura A. Dabbish, and Jason I. Hong. 2014. The effect of social influence on security sensitivity. In Proceedings of the Symposium on Usable Privacy and Security, 2014. USENIX Association Berkeley, CA. . Retrieved from https:\/\/www.usenix.org\/system\/files\/conference\/soups2014\/ soups14-paper- das.pdf"},{"key":"e_1_3_3_2_12_1","doi-asserted-by":"publisher","DOI":"10.1145\/2660267.2660271"},{"key":"e_1_3_3_2_13_1","doi-asserted-by":"publisher","DOI":"10.1145\/2675133.2675225"},{"key":"e_1_3_3_2_14_1","first-page":"1","volume-title":"ACM CHI 2018 Conf. Hum. Factors Comput. Syst. 1","author":"Das Sauvik","year":"2018","unstructured":"[14]Sauvik Das, Joanne Lo, Laura Dabbish, and Jason I. Hong. 2018. Breaking! A Typology of Security and Privacy News and How It's Shared. ACM CHI 2018 Conf. Hum. Factors Comput. Syst. 1, 1 (2018), 2."},{"key":"e_1_3_3_2_15_1","doi-asserted-by":"publisher","DOI":"10.1377\/hlthaff.2017.1104"},{"key":"e_1_3_3_2_16_1","volume-title":"Social Computing. The Encyclopedia of Human-Computer Interaction. Retrieved","author":"Erickson Thomas","year":"2023","unstructured":"[16]Thomas Erickson. Social Computing. The Encyclopedia of Human-Computer Interaction. Retrieved September 12, 2023 from https:\/\/www.interaction-design.org\/literature\/book\/the-encyclopedia-of-human-computer-interaction-2nd-ed\/social-computing"},{"key":"e_1_3_3_2_17_1","volume-title":"Help and Documentation: The 10th Usability Heuristic","author":"Research-Based User World Leaders","year":"2023","unstructured":"[17]World Leaders in Research-Based User Experience. Help and Documentation: The 10th Usability Heuristic. Nielsen Norman Group. Retrieved February 10, 2023 from https:\/\/www.nngroup.com\/articles\/help-and-documentation\/"},{"key":"e_1_3_3_2_18_1","doi-asserted-by":"publisher","DOI":"10.13140\/RG.2.2.15447.57760"},{"key":"e_1_3_3_2_19_1","volume-title":"Proceedings of the Fifteenth Symposium on Usable Privacy and Security (SOUPS 2019)","author":"Faklaris Cori","year":"2019","unstructured":"[19]Cori Faklaris, Laura Dabbish, and Jason I Hong. 2019. A Self-Report Measure of End-User Security Attitudes (SA-6). In Proceedings of the Fifteenth Symposium on Usable Privacy and Security (SOUPS 2019), August 12, 2019, Santa Clara, CA. USENIX Association Berkeley, CA, Santa Clara, CA, 18. . Retrieved from https:\/\/www.usenix.org\/system\/files\/soups2019-faklaris.pdf"},{"key":"e_1_3_3_2_20_1","volume-title":"Proceedings of the Fifteenth Symposium on Usable Privacy and Security (SOUPS 2019)","author":"Faklaris Cori","year":"2019","unstructured":"[20]Cori Faklaris, Laura Dabbish, and Jason I Hong. 2019. A Self-Report Measure of End-User Security Attitudes (SA-6). In Proceedings of the Fifteenth Symposium on Usable Privacy and Security (SOUPS 2019), August 12, 2019, Santa Clara, CA. USENIX Association Berkeley, CA, Santa Clara, CA, 18. . Retrieved from https:\/\/www.usenix.org\/system\/files\/soups2019-faklaris.pdf"},{"key":"e_1_3_3_2_21_1","doi-asserted-by":"publisher","DOI":"10.48550\/arXiv.2205.06937"},{"key":"e_1_3_3_2_22_1","doi-asserted-by":"publisher","DOI":"10.1145\/642611.642652"},{"key":"e_1_3_3_2_23_1","doi-asserted-by":"publisher","DOI":"10.1111\/1475-6773.12117"},{"key":"e_1_3_3_2_24_1","volume-title":"Retrieved","author":"Fulton Kelsey R.","year":"2022","unstructured":"[24]Kelsey R. Fulton, Rebecca Gelles, Alexandra McKay, Yasmin Abdi, Richard Roberts, and Michelle L. Mazurek. 2019. The Effect of Entertainment Media on Mental Models of Computer Security. 2019. 79\u201395. . Retrieved August 21, 2022 from https:\/\/www.usenix.org\/conference\/soups2019\/presentation\/fulton"},{"key":"e_1_3_3_2_25_1","unstructured":"[25]Karen Glanz Barbara K. Rimer and K. Viswanath. 2008. Health Behavior and Health Education: Theory Research and Practice. John Wiley & Sons."},{"key":"e_1_3_3_2_26_1","first-page":"94","article-title":"Examining the validity of the stages of exercise change algorithm","volume":"15","author":"Hausenblas Heather A.","year":"1999","unstructured":"[26]Heather A. Hausenblas, Erin A. Dannecker, Daniel P. Connaughton, and Timm R. Lovins. 1999. Examining the validity of the stages of exercise change algorithm. Am. J. Health Stud. Silver Spring 15, 2 (1999), 94\u201399.","journal-title":"Am. J. Health Stud. Silver Spring"},{"key":"e_1_3_3_2_27_1","volume-title":"Retrieved","author":"H\u00fchnlein Detlef","year":"2010","unstructured":"[27]Detlef H\u00fchnlein, Heiko Ro\u00dfnagel, and Jan Zibuschka. 2010. Diffusion of federated identity management. Gesellschaft f\u00fcr Informatik e.V. Retrieved January 15, 2022 from http:\/\/dl.gi.de\/handle\/20.500.12116\/19795"},{"key":"e_1_3_3_2_28_1","doi-asserted-by":"publisher","DOI":"10.1080\/0144929X.2021.1977849"},{"key":"e_1_3_3_2_29_1","doi-asserted-by":"publisher","DOI":"10.1162\/desi.2010.26.1.15"},{"key":"e_1_3_3_2_30_1","doi-asserted-by":"publisher","DOI":"10.1145\/3432954"},{"key":"e_1_3_3_2_31_1","doi-asserted-by":"publisher","DOI":"10.1007\/11853565_16"},{"key":"e_1_3_3_2_32_1","doi-asserted-by":"publisher","DOI":"10.1016\/0022-1031(83)90023-9"},{"key":"e_1_3_3_2_33_1","doi-asserted-by":"publisher","DOI":"10.1080\/07421222.2017.1394083"},{"key":"e_1_3_3_2_34_1","doi-asserted-by":"publisher","DOI":"10.1145\/3449212"},{"key":"e_1_3_3_2_35_1","doi-asserted-by":"publisher","DOI":"10.17705\/1CAIS.01937"},{"key":"e_1_3_3_2_36_1","volume-title":"Retrieved","author":"Pearman Sarah","year":"2019","unstructured":"[36]Sarah Pearman, Shikun Aerin Zhang, Lujo Bauer, Nicolas Christin, and Lorrie Faith Cranor. 2019. Why people (don't) use password managers effectively. 2019. 319\u2013338. . Retrieved July 15, 2021 from https:\/\/www.usenix.org\/conference\/soups2019\/presentation\/pearman"},{"key":"e_1_3_3_2_37_1","doi-asserted-by":"publisher","DOI":"10.1097\/JES.0b013e3181d49612"},{"key":"e_1_3_3_2_38_1","doi-asserted-by":"publisher","DOI":"10.1145\/1518701.1518816"},{"key":"e_1_3_3_2_39_1","volume-title":"Interaction Design: Beyond Human-Computer Interaction","author":"Preece Jennifer","year":"2015","unstructured":"[39]Jennifer Preece, Helen Sharp, and Yvonne Rogers. 2015. Interaction Design: Beyond Human-Computer Interaction (4th ed.). Wiley. Retrieved May 10, 2019 from https:\/\/www.wiley.com\/en-us\/Interaction+Design%3A+Beyond+Human+Computer+Interaction%2C+4th+Edition-p-9781119020752","edition":"4"},{"key":"e_1_3_3_2_40_1","doi-asserted-by":"publisher","DOI":"10.4278\/0890-1171-12.1.38"},{"key":"e_1_3_3_2_41_1","doi-asserted-by":"publisher","DOI":"10.1037\/0022-006X.51.3.390"},{"key":"e_1_3_3_2_42_1","doi-asserted-by":"publisher","DOI":"10.1111\/spc3.12329"},{"key":"e_1_3_3_2_43_1","doi-asserted-by":"publisher","DOI":"10.1093\/cybsec"},{"key":"e_1_3_3_2_44_1","doi-asserted-by":"publisher","DOI":"10.1145\/2335356.2335364"},{"key":"e_1_3_3_2_45_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2016.24"},{"key":"e_1_3_3_2_46_1","doi-asserted-by":"publisher","DOI":"10.1145\/2976749.2978307"},{"key":"e_1_3_3_2_47_1","volume-title":"Diffusion of Innovations","author":"Rogers Everett M.","unstructured":"[47]Everett M. Rogers. 2010. Diffusion of Innovations, 4th Edition. Simon and Schuster.","edition":"4"},{"key":"e_1_3_3_2_48_1","doi-asserted-by":"publisher","DOI":"10.1080\/00223980.1975.9915803"},{"key":"e_1_3_3_2_49_1","first-page":"211","article-title":"Weighing Context and Trade-offs","volume":"2017","author":"Ruoti Scott","year":"2017","unstructured":"[49]Scott Ruoti, Tyler Monson, Justin Wu, Daniel Zappala, and Kent Seamons. 2017. Weighing Context and Trade-offs: How Suburban Adults Selected Their Online Security Posture. 2017. 211\u2013228. . Retrieved February 11, 2021 from https:\/\/www.usenix.org\/conference\/soups2017\/technical-sessions\/presentation\/ruoti","journal-title":"How Suburban Adults Selected Their Online Security Posture."},{"key":"e_1_3_3_2_50_1","volume-title":"The 15 biggest data breaches of the 21st century. CSO Online. Retrieved","author":"Hill Michael","year":"2023","unstructured":"[50]Michael Hill and Dan Swinhoe. 2022. The 15 biggest data breaches of the 21st century. CSO Online. Retrieved February 9, 2023 from https:\/\/www.csoonline.com\/article\/2130877\/the-biggest-data-breaches-of-the-21st-century.html"},{"key":"e_1_3_3_2_51_1","doi-asserted-by":"publisher","DOI":"10.1145\/2858036.2858303"},{"key":"e_1_3_3_2_52_1","doi-asserted-by":"publisher","DOI":"10.1145\/2858036.2858303"},{"key":"e_1_3_3_2_53_1","doi-asserted-by":"publisher","DOI":"10.1037\/0022-3514.48.5.1279"},{"key":"e_1_3_3_2_54_1","doi-asserted-by":"publisher","DOI":"10.1145\/1837110.1837125"},{"key":"e_1_3_3_2_55_1","doi-asserted-by":"publisher","DOI":"10.1145\/508171.508195"},{"key":"e_1_3_3_2_56_1","volume-title":"Learning From Strangers: The Art and Method of Qualitative Interview Studies","author":"Weiss Robert S.","unstructured":"[56]Robert S. Weiss. 1995. Learning From Strangers: The Art and Method of Qualitative Interview Studies. Simon and Schuster."},{"key":"e_1_3_3_2_57_1","doi-asserted-by":"publisher","DOI":"10.5176\/2251-1865_CBP18.49"},{"key":"e_1_3_3_2_58_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP46214.2022.9833757"},{"key":"e_1_3_3_2_59_1","doi-asserted-by":"publisher","DOI":"10.1145\/1240624.1240704"},{"key":"e_1_3_3_2_60_1","volume-title":"Retrieved","author":"Zou Yixin","year":"2018","unstructured":"[60]Yixin Zou, Abraham H. Mhaidli, Austin McCall, and Florian Schaub. 2018. \u201cI've Got Nothing to Lose\u201d: Consumers\u2019 Risk Perceptions and Protective Actions after the Equifax Data Breach. 2018. 197\u2013216. . Retrieved October 14, 2022 from https:\/\/www.usenix.org\/conference\/soups2018\/presentation\/zou"},{"key":"e_1_3_3_2_61_1","doi-asserted-by":"publisher","DOI":"10.1145\/3313831.3376570"},{"key":"e_1_3_3_2_62_1","doi-asserted-by":"publisher","DOI":"10.1145\/3313831.3376570"},{"key":"e_1_3_3_2_63_1","doi-asserted-by":"publisher","DOI":"10.4135\/9781412961288.n469"},{"key":"e_1_3_3_2_64_1","volume-title":"Wikipedia. Retrieved","year":"2017","unstructured":"[64]2017. Social influence. Wikipedia. Retrieved September 13, 2017 from https:\/\/en.wikipedia.org\/w\/index.php?title=Social_influence&oldid=800243709"},{"key":"e_1_3_3_2_65_1","volume-title":"CNET. Retrieved","year":"2017","unstructured":"[65]2017. Equifax data leak may affect nearly half the US population. CNET. Retrieved October 23, 2017 from https:\/\/www.cnet.com\/news\/equifax-data-leak-hits-nearly-half-of-the-us-population\/"},{"key":"e_1_3_3_2_66_1","volume-title":"2019 Data Breach Investigations Report. Verizon Enterprise. Retrieved","year":"2019","unstructured":"[66]2019. 2019 Data Breach Investigations Report. Verizon Enterprise. Retrieved May 8, 2019 from https:\/\/enterprise.verizon.com\/resources\/reports\/dbir\/"},{"key":"e_1_3_3_2_67_1","volume-title":"Verizon Enterprise. Retrieved","year":"2020","unstructured":"[67]2020. 2020 Data Breach Investigations Report. Verizon Enterprise. Retrieved May 28, 2020 from https:\/\/enterprise.verizon.com\/resources\/reports\/dbir\/"},{"key":"e_1_3_3_2_68_1","volume-title":"Google. Retrieved","year":"2022","unstructured":"[68]2021. Making sign-in safer and more convenient. Google. Retrieved January 14, 2022 from https:\/\/blog.google\/technology\/safety-security\/making-sign-safer-and-more-convenient\/"},{"key":"e_1_3_3_2_69_1","unstructured":"[69]Less Than 1 in 10 Gmail Users Enable Two-Factor Authentication - Slashdot. Retrieved January 18 2018 from https:\/\/tech.slashdot.org\/story\/18\/01\/18\/1836259\/less-than-1-in-10-gmail-users-enable-two-factor-authentication"},{"key":"e_1_3_3_2_70_1","volume-title":"Retrieved","year":"2022","unstructured":"[70]Home: Oxford English Dictionary. Retrieved January 15, 2022 from https:\/\/www.oed.com\/"},{"key":"e_1_3_3_2_71_1","doi-asserted-by":"crossref","unstructured":"[71]2021 Data Breach Investigations Report. Verizon Business. Retrieved September 19 2021 from https:\/\/www.verizon.com\/business\/resources\/reports\/dbir\/","DOI":"10.1016\/S1361-3723(21)00061-0"}],"event":{"name":"CHI '24: CHI Conference on Human Factors in Computing Systems","location":"Honolulu HI USA","acronym":"CHI '24","sponsor":["SIGCHI ACM Special Interest Group on Computer-Human Interaction","SIGACCESS ACM Special Interest Group on Accessible Computing"]},"container-title":["Extended Abstracts of the CHI Conference on Human Factors in Computing Systems"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3613905.3651012","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3613905.3651012","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T23:56:53Z","timestamp":1750291013000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3613905.3651012"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024,5,11]]},"references-count":71,"alternative-id":["10.1145\/3613905.3651012","10.1145\/3613905"],"URL":"https:\/\/doi.org\/10.1145\/3613905.3651012","relation":{},"subject":[],"published":{"date-parts":[[2024,5,11]]},"assertion":[{"value":"2024-05-11","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}