{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,1]],"date-time":"2026-06-01T18:04:57Z","timestamp":1780337097127,"version":"3.54.1"},"reference-count":57,"publisher":"American Accounting Association","issue":"1","content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2020,3,1]]},"abstract":"ABSTRACT<\/jats:title>\n This study examines the impact of deterrence and inertia on information security policy changes. Corporations recognize the need to prioritize information security, which sometimes involves designing and implementing new security measures or policies. Using an online survey, we investigate the effect of deterrent sanctions and inertia on respondents' intentions to comply with modifications to company information security policies. We find that certainty and celerity associated with deterrent sanctions increase compliance intentions, while inertia decreases respondents' compliance intentions related to modified information security policies. Therefore, organizations must work to overcome employees' reluctance to change in order to improve compliance with security policy modifications. They may also consider implementing certain and timely sanctions for noncompliance.<\/jats:p>","DOI":"10.2308\/isys-52400","type":"journal-article","created":{"date-parts":[[2019,3,5]],"date-time":"2019-03-05T19:54:00Z","timestamp":1551815640000},"page":"123-134","source":"Crossref","is-referenced-by-count":6,"title":["Impact of Deterrence and Inertia on Information Security Policy Changes"],"prefix":"10.2308","volume":"34","author":[{"given":"Kalana","family":"Malimage","sequence":"first","affiliation":[{"name":"University of Wisconsin\u2013Whitewater"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Nirmalee","family":"Raddatz","sequence":"additional","affiliation":[{"name":"The University of Memphis"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Brad S.","family":"Trinkle","sequence":"additional","affiliation":[{"name":"Mississippi State University"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Robert E.","family":"Crossler","sequence":"additional","affiliation":[{"name":"Washington State University"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Rebecca","family":"Baaske","sequence":"additional","affiliation":[{"name":"University of South Florida"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"1112","published-online":{"date-parts":[[2019,3,5]]},"reference":[{"key":"2024082915322751000_i1558-7959-34-1-123-AmericanInstituteofCertifiedPublicAccountantsAICPA1","unstructured":"American Institute of Certified Public Accountants (AICPA).\n\t\t\t\t\t2009.\n\t\t\t\t\tCommunicating internal control related matters identified in an audit. AU Section 325.\n\t\t\t\t\tAvailable at: https:\/\/www.aicpa.org\/Research\/Standards\/AuditAttest\/DownloadableDocuments\/AU-00325.pdf"},{"key":"2024082915322751000_i1558-7959-34-1-123-AmericanInstituteofCertifiedPublicAccountantsAICPA2","unstructured":"American Institute of Certified Public Accountants (AICPA).\n\t\t\t\t\t2015.\n\t\t\t\t\tAICPA celebrates 25 years of top technologies for CPAs.\n\t\t\t\t\tAvailable at: https:\/\/blog.aicpa.org\/2015\/04\/aicpa-celebrates-25-years-of-top-technologies-for-cpas.html"},{"key":"2024082915322751000_i1558-7959-34-1-123-AmericanInstituteofCertifiedPublicAccountantsAICPA3","unstructured":"American Institute of Certified Public Accountants (AICPA).\n\t\t\t\t\t2016.\n\t\t\t\t\tCPAs well-positioned to help manage cybersecurity risk.\n\t\t\t\t\tAvailable at: https:\/\/blog.aicpa.org\/2016\/02\/cpas-well-positioned-to-help-manage-cybersecurity-risk.html"},{"key":"2024082915322751000_i1558-7959-34-1-123-Barnes1","doi-asserted-by":"crossref","unstructured":"Barnes,\n W.,\n \n \n Gartland\n M.,\n and\n\t\t\t\t\t\tStackM.\n 2004.\n\t\t\t\t\tOld habits die hard: Path dependency and behavioral lock-in.\n\t\t\t\t\tJournal of Economic Issues38 (\n\t\t\t\t\t2):\n\t\t\t\t\t371\u2013\n\t\t\t\t\t377.\n\t\t\t\t\thttps:\/\/doi.org\/10.1080\/00213624.2004.11506696","DOI":"10.1080\/00213624.2004.11506696"},{"key":"2024082915322751000_i1558-7959-34-1-123-Barra1","doi-asserted-by":"crossref","unstructured":"Barra,\n R. A.\n \n \n 2010.\n\t\t\t\t\tThe impact of internal controls and penalties on fraud.\n\t\t\t\t\tJournal of Information Systems24 (\n\t\t\t\t\t1):\n\t\t\t\t\t1\u2013\n\t\t\t\t\t21.\n\t\t\t\t\thttps:\/\/doi.org\/10.2308\/jis.2010.24.1.1","DOI":"10.2308\/jis.2010.24.1.1"},{"key":"2024082915322751000_i1558-7959-34-1-123-Boss1","doi-asserted-by":"crossref","unstructured":"Boss,\n S.,\n \n \n Kirsch\n L.,\n \n \n Angermeier\n I.,\n \n \n Shingler\n R.,\n and\n\t\t\t\t\t\tBossR. W.\n 2009.\n\t\t\t\t\tIf someone is watching, I'll do what I'm asked: Mandatoriness, control, and information security.\n\t\t\t\t\tEuropean Journal of Information Systems18 (\n\t\t\t\t\t2):\n\t\t\t\t\t151\u2013\n\t\t\t\t\t164.\n\t\t\t\t\thttps:\/\/doi.org\/10.1057\/ejis.2009.8","DOI":"10.1057\/ejis.2009.8"},{"key":"2024082915322751000_i1558-7959-34-1-123-Brandon1","doi-asserted-by":"crossref","unstructured":"Brandon,\n D. M.,\n \n \n Long\n J. H.,\n \n \n Loraas\n T.,\n \n \n Mueller-Phillips\n J.,\n and\n\t\t\t\t\t\tVansantB.\n 2014.\n\t\t\t\t\tOnline instrument delivery and participant recruitment services: Emerging opportunities for behavioral accounting research.\n\t\t\t\t\tBehavioral Research in Accounting26 (\n\t\t\t\t\t1):\n\t\t\t\t\t1\u2013\n\t\t\t\t\t23.\n\t\t\t\t\thttps:\/\/doi.org\/10.2308\/bria-50651","DOI":"10.2308\/bria-50651"},{"key":"2024082915322751000_i1558-7959-34-1-123-Buhrmester1","doi-asserted-by":"crossref","unstructured":"Buhrmester,\n M.,\n \n \n Kwang\n T.,\n and\n\t\t\t\t\t\tGoslingS. D.\n 2011.\n\t\t\t\t\tAmazon's Mechanical Turk: A new source of inexpensive, yet high-quality, data?Perspectives on Psychological Science6 (\n\t\t\t\t\t1):\n\t\t\t\t\t3\u2013\n\t\t\t\t\t5.\n\t\t\t\t\thttps:\/\/doi.org\/10.1177\/1745691610393980","DOI":"10.1037\/e527772014-223"},{"key":"2024082915322751000_i1558-7959-34-1-123-Bulgurcu1","doi-asserted-by":"crossref","unstructured":"Bulgurcu,\n B.,\n \n \n Cavusoglu\n H.,\n and\n\t\t\t\t\t\tBenbasatI.\n 2010.\n\t\t\t\t\tInformation security policy compliance: An empirical study of rationality-based beliefs and information security awareness.\n\t\t\t\t\tMIS Quarterly34 (\n\t\t\t\t\t3):\n\t\t\t\t\t523\u2013\n\t\t\t\t\t548.\n\t\t\t\t\thttps:\/\/doi.org\/10.2307\/25750690","DOI":"10.2307\/25750690"},{"key":"2024082915322751000_i1558-7959-34-1-123-Chin1","unstructured":"Chin,\n W. W.\n \n \n 1998.\n\t\t\t\t\tThe partial least squares approach for structural equation modeling.\n\t\t\t\t\tInModern Methods for Business Research,\n\t\t\t\t\tedited byMarcoulidesG. A., ,\n\t\t\t\t\t295\u2013\n\t\t\t\t\t336.\n\t\t\t\t\tHillsdale, NJ:\n\t\t\t\t\tLawrence Erlbaum Associates."},{"key":"2024082915322751000_i1558-7959-34-1-123-Chin2","doi-asserted-by":"crossref","unstructured":"Chin,\n W. W.,\n \n \n Marcolin\n B. L.,\n and\n\t\t\t\t\t\tNewstedP. R.\n 2003.\n\t\t\t\t\tA partial least squares latent variable modeling approach for measuring interaction effects: Results from a Monte Carlo simulation study and an electronic-mail emotion\/adoption study.\n\t\t\t\t\tInformation Systems Research14 (\n\t\t\t\t\t2):\n\t\t\t\t\t189\u2013\n\t\t\t\t\t217.\n\t\t\t\t\thttps:\/\/doi.org\/10.1287\/isre.14.2.189.16018","DOI":"10.1287\/isre.14.2.189.16018"},{"key":"2024082915322751000_i1558-7959-34-1-123-Collins1","unstructured":"Collins,\n J. C.\n \n \n 2017.\n\t\t\t\t\tEmail security: How to encrypt email with Gmail and Outlook.com.\n\t\t\t\t\tAvailable at: https:\/\/www.journalofaccountancy.com\/issues\/2017\/feb\/how-to-encrypt-email.html"},{"key":"2024082915322751000_i1558-7959-34-1-123-Cronbach1","doi-asserted-by":"crossref","unstructured":"Cronbach,\n L. J.\n \n \n 1951.\n\t\t\t\t\tCoefficient alpha and the internal structure of tests.\n\t\t\t\t\tPsychometrika16 (\n\t\t\t\t\t3):\n\t\t\t\t\t297\u2013\n\t\t\t\t\t334.\n\t\t\t\t\thttps:\/\/doi.org\/10.1007\/BF02310555","DOI":"10.1007\/BF02310555"},{"key":"2024082915322751000_i1558-7959-34-1-123-Crossler1","doi-asserted-by":"crossref","unstructured":"Crossler,\n R. E.,\n \n \n Long\n J. H.,\n \n \n Loraas\n T. M.,\n and\n\t\t\t\t\t\tTrinkleB. S.\n 2014.\n\t\t\t\t\tUnderstanding compliance with bring your own device policies utilizing protection motivation theory: Bridging the intention-behavior gap.\n\t\t\t\t\tJournal of Information Systems28 (\n\t\t\t\t\t1):\n\t\t\t\t\t209\u2013\n\t\t\t\t\t226.\n\t\t\t\t\thttps:\/\/doi.org\/10.2308\/isys-50704","DOI":"10.2308\/isys-50704"},{"key":"2024082915322751000_i1558-7959-34-1-123-DArcy1","doi-asserted-by":"crossref","unstructured":"D'Arcy,\n J.,\n and\n\t\t\t\t\t\tDevarajS.\n 2012.\n\t\t\t\t\tEmployee misuse of information technology resources: Testing a contemporary deterrence model.\n\t\t\t\t\tDecision Sciences43 (\n\t\t\t\t\t6):\n\t\t\t\t\t1091\u2013\n\t\t\t\t\t1124.\n\t\t\t\t\thttps:\/\/doi.org\/10.1111\/j.1540-5915.2012.00383.x","DOI":"10.1111\/j.1540-5915.2012.00383.x"},{"key":"2024082915322751000_i1558-7959-34-1-123-DArcy2","doi-asserted-by":"crossref","unstructured":"D'Arcy,\n J.,\n and\n\t\t\t\t\t\tHerathT.\n 2011.\n\t\t\t\t\tA review and analysis of deterrence theory in the IS security literature: Making sense of the disparate findings.\n\t\t\t\t\tEuropean Journal of Information Systems20 (\n\t\t\t\t\t6):\n\t\t\t\t\t643\u2013\n\t\t\t\t\t658.\n\t\t\t\t\thttps:\/\/doi.org\/10.1057\/ejis.2011.23","DOI":"10.1057\/ejis.2011.23"},{"key":"2024082915322751000_i1558-7959-34-1-123-DArcy3","doi-asserted-by":"crossref","unstructured":"D'Arcy,\n J.,\n \n \n Hovav\n A.,\n and\n\t\t\t\t\t\tGallettaD. F.\n 2009.\n\t\t\t\t\tUser awareness of security countermeasures and its impact on information systems misuse: A deterrence perspective.\n\t\t\t\t\tInformation Systems Research20 (\n\t\t\t\t\t1):\n\t\t\t\t\t79\u2013\n\t\t\t\t\t98.\n\t\t\t\t\thttps:\/\/doi.org\/10.1287\/isre.1070.0160","DOI":"10.1287\/isre.1070.0160"},{"key":"2024082915322751000_i1558-7959-34-1-123-Damianides1","doi-asserted-by":"crossref","unstructured":"Damianides,\n M.\n \n \n 2004.\n\t\t\t\t\tHow does SOX change IT?Journal of Corporate Accounting & Finance15 (\n\t\t\t\t\t6):\n\t\t\t\t\t35\u2013\n\t\t\t\t\t41.\n\t\t\t\t\thttps:\/\/doi.org\/10.1002\/jcaf.20054","DOI":"10.1002\/jcaf.20054"},{"key":"2024082915322751000_i1558-7959-34-1-123-Fornell1","doi-asserted-by":"crossref","unstructured":"Fornell,\n C.,\n and\n\t\t\t\t\t\tLarckerD. F.\n 1981.\n\t\t\t\t\tEvaluating structural equation models with unobservable variables and measurement error.\n\t\t\t\t\tJournal of Marketing Research18 (\n\t\t\t\t\t1):\n\t\t\t\t\t39\u2013\n\t\t\t\t\t50.\n\t\t\t\t\thttps:\/\/doi.org\/10.1177\/002224378101800104","DOI":"10.1177\/002224378101800104"},{"key":"2024082915322751000_i1558-7959-34-1-123-Gefen1","doi-asserted-by":"crossref","unstructured":"Gefen,\n D.,\n and\n\t\t\t\t\t\tStraubD. W.\n 2005.\n\t\t\t\t\tPractical guide to factorial validity using PLS-Graph: Tutorial and annotated example.\n\t\t\t\t\tCommunications of the AIS16 (\n\t\t\t\t\t25):\n\t\t\t\t\t91\u2013\n\t\t\t\t\t109.\n\t\t\t\t\thttps:\/\/doi.org\/10.17705\/1CAIS.01605","DOI":"10.17705\/1CAIS.01605"},{"key":"2024082915322751000_i1558-7959-34-1-123-Gibbs1","unstructured":"Gibbs,\n J.\n \n \n 1975.\n\t\t\t\t\tCrime, Punishment, and Deterrence.\n\t\t\t\t\tNew York, NY:\n\t\t\t\t\tElsevier."},{"key":"2024082915322751000_i1558-7959-34-1-123-Gibbs2","doi-asserted-by":"crossref","unstructured":"Gibbs,\n J.\n \n \n 1979.\n\t\t\t\t\tAssessing the deterrence doctrine: A challenge for the social and behavioral sciences.\n\t\t\t\t\tThe American Behavioral Scientist22 (\n\t\t\t\t\t6):\n\t\t\t\t\t653\u2013\n\t\t\t\t\t677.\n\t\t\t\t\thttps:\/\/doi.org\/10.1177\/000276427902200604","DOI":"10.1177\/000276427902200604"},{"key":"2024082915322751000_i1558-7959-34-1-123-Greenfield1","doi-asserted-by":"crossref","unstructured":"Greenfield,\n H. I.\n \n \n 2005.\n\t\t\t\t\tConsumer inertia.\n\t\t\t\t\tAmerican Journal of Economics and Sociology64 (\n\t\t\t\t\t4):\n\t\t\t\t\t1085\u2013\n\t\t\t\t\t1089.\n\t\t\t\t\thttps:\/\/doi.org\/10.1111\/j.1536-7150.2005.00427.x","DOI":"10.1111\/j.1536-7150.2005.00427.x"},{"key":"2024082915322751000_i1558-7959-34-1-123-Gureckis1","doi-asserted-by":"crossref","unstructured":"Gureckis,\n T. M.,\n \n \n Martin\n J.,\n \n \n McDonnell\n J.,\n \n \n Rich\n A. S.,\n \n \n Markant\n D.,\n \n \n Coenen\n A.,\n \n \n Halpern\n D.,\n \n \n Hamrick\n J. B.,\n and\n\t\t\t\t\t\tChanP.\n 2016.\n\t\t\t\t\tTurk: An open-source framework for conducting replicable behavioral experiments online.\n\t\t\t\t\tBehavior Research Methods48 (\n\t\t\t\t\t3):\n\t\t\t\t\t829\u2013\n\t\t\t\t\t842.\n\t\t\t\t\thttps:\/\/doi.org\/10.3758\/s13428-015-0642-8","DOI":"10.3758\/s13428-015-0642-8"},{"key":"2024082915322751000_i1558-7959-34-1-123-Henrich1","doi-asserted-by":"crossref","unstructured":"Henrich,\n J.,\n \n \n Heine\n S. J.,\n and\n\t\t\t\t\t\tNorenzayanA.\n 2010.\n\t\t\t\t\tThe weirdest people in the world?Behavioral and Brain Sciences33 (\n\t\t\t\t\t2\/3):\n\t\t\t\t\t61\u2013\n\t\t\t\t\t83.\n\t\t\t\t\thttps:\/\/doi.org\/10.1017\/S0140525X0999152X","DOI":"10.1017\/S0140525X0999152X"},{"key":"2024082915322751000_i1558-7959-34-1-123-Herath1","doi-asserted-by":"crossref","unstructured":"Herath,\n T.,\n and\n\t\t\t\t\t\tRaoR.\n 2009\n a.\n Protection motivation and deterrence: A framework for security policy compliance in organisations.\n\t\t\t\t\tEuropean Journal of Information Systems18 (\n\t\t\t\t\t2):\n\t\t\t\t\t106\u2013\n\t\t\t\t\t125.\n\t\t\t\t\thttps:\/\/doi.org\/10.1057\/ejis.2009.6","DOI":"10.1057\/ejis.2009.6"},{"key":"2024082915322751000_i1558-7959-34-1-123-Herath2","doi-asserted-by":"crossref","unstructured":"Herath,\n T.,\n and\n\t\t\t\t\t\tRaoR.\n 2009\n b.\n Encouraging information security behaviors in organizations: Role of penalties, pressures and perceived effectiveness.\n\t\t\t\t\tDecision Support Systems47 (\n\t\t\t\t\t2):\n\t\t\t\t\t154\u2013\n\t\t\t\t\t165.\n\t\t\t\t\thttps:\/\/doi.org\/10.1016\/j.dss.2009.02.005","DOI":"10.1016\/j.dss.2009.02.005"},{"key":"2024082915322751000_i1558-7959-34-1-123-Herath3","doi-asserted-by":"crossref","unstructured":"Herath,\n T.,\n \n \n Chen\n R.,\n \n \n Wang\n J.,\n \n \n Banjara\n K.,\n \n \n Wilbur\n J.,\n and\n\t\t\t\t\t\tRaoH. R.\n 2014.\n\t\t\t\t\tSecurity services as coping mechanisms: An investigation into user intention to adopt an email authentication service.\n\t\t\t\t\tInformation Systems Journal24 (\n\t\t\t\t\t1):\n\t\t\t\t\t61\u2013\n\t\t\t\t\t84.\n\t\t\t\t\thttps:\/\/doi.org\/10.1111\/j.1365-2575.2012.00420.x","DOI":"10.1111\/j.1365-2575.2012.00420.x"},{"key":"2024082915322751000_i1558-7959-34-1-123-Hovav1","doi-asserted-by":"crossref","unstructured":"Hovav,\n A.,\n and\n\t\t\t\t\t\tD'ArcyJ.\n 2012.\n\t\t\t\t\tApplying an extended model of deterrence across cultures: An investigation of information systems misuse in the U.S. and South Korea.\n\t\t\t\t\tInformation & Management49 (\n\t\t\t\t\t2):\n\t\t\t\t\t99\u2013\n\t\t\t\t\t110.\n\t\t\t\t\thttps:\/\/doi.org\/10.1016\/j.im.2011.12.005","DOI":"10.1016\/j.im.2011.12.005"},{"key":"2024082915322751000_i1558-7959-34-1-123-Jacobs1","doi-asserted-by":"crossref","unstructured":"Jacobs,\n B.\n \n \n 2010.\n\t\t\t\t\tDeterrence and deterrability.\n\t\t\t\t\tCriminology48 (\n\t\t\t\t\t2):\n\t\t\t\t\t417\u2013\n\t\t\t\t\t441.\n\t\t\t\t\thttps:\/\/doi.org\/10.1111\/j.1745-9125.2010.00191.x","DOI":"10.1111\/j.1745-9125.2010.00191.x"},{"key":"2024082915322751000_i1558-7959-34-1-123-Johnston1","doi-asserted-by":"crossref","unstructured":"Johnston,\n A. C.,\n and\n\t\t\t\t\t\tWarkentinM.\n 2010.\n\t\t\t\t\tFear appeals and information security behaviors: An empirical study.\n\t\t\t\t\tMIS Quarterly34 (\n\t\t\t\t\t3):\n\t\t\t\t\t549\u2013\n\t\t\t\t\t566.\n\t\t\t\t\thttps:\/\/doi.org\/10.2307\/25750691","DOI":"10.2307\/25750691"},{"key":"2024082915322751000_i1558-7959-34-1-123-Johnston2","doi-asserted-by":"crossref","unstructured":"Johnston,\n A. C.,\n \n \n Warkentin\n M.,\n and\n\t\t\t\t\t\tSiponenM.\n 2015.\n\t\t\t\t\tAn enhanced fear appeal rhetorical framework: Leveraging threats to the human asset through sanctioning rhetoric.\n\t\t\t\t\tMIS Quarterly39 (\n\t\t\t\t\t1):\n\t\t\t\t\t113\u2013\n\t\t\t\t\t134.\n\t\t\t\t\thttps:\/\/doi.org\/10.25300\/MISQ\/2015\/39.1.06","DOI":"10.25300\/MISQ\/2015\/39.1.06"},{"key":"2024082915322751000_i1558-7959-34-1-123-Kankanhalli1","doi-asserted-by":"crossref","unstructured":"Kankanhalli,\n A.,\n \n \n Teo\n H.,\n \n \n Tan\n B.,\n and\n\t\t\t\t\t\tWeiK.\n 2003.\n\t\t\t\t\tAn integrative study of information systems security effectiveness.\n\t\t\t\t\tInternational Journal of Information Management23 (\n\t\t\t\t\t2):\n\t\t\t\t\t139\u2013\n\t\t\t\t\t154.\n\t\t\t\t\thttps:\/\/doi.org\/10.1016\/S0268-4012(02)00105-6","DOI":"10.1016\/S0268-4012(02)00105-6"},{"key":"2024082915322751000_i1558-7959-34-1-123-Landers1","doi-asserted-by":"crossref","unstructured":"Landers,\n R. N.,\n and\n\t\t\t\t\t\tBehrendT. S.\n 2015.\n\t\t\t\t\tAn inconvenient truth: Arbitrary distinctions between organizational, Mechanical Turk, and other convenience samples.\n\t\t\t\t\tIndustrial and Organizational Psychology: Perspectives on Science and Practice8 (\n\t\t\t\t\t2):\n\t\t\t\t\t142\u2013\n\t\t\t\t\t164.\n\t\t\t\t\thttps:\/\/doi.org\/10.1017\/iop.2015.13","DOI":"10.1017\/iop.2015.13"},{"key":"2024082915322751000_i1558-7959-34-1-123-Legge1","unstructured":"Legge,\n J.,\n and\n\t\t\t\t\t\tParkJ.\n 1994.\n\t\t\t\t\tPolicies to reduce alcohol-impaired driving: Evaluating elements of deterrence.\n\t\t\t\t\tSocial Science Quarterly75 (\n\t\t\t\t\t3):\n\t\t\t\t\t594\u2013\n\t\t\t\t\t606."},{"key":"2024082915322751000_i1558-7959-34-1-123-Lending1","doi-asserted-by":"crossref","unstructured":"Lending,\n D.,\n and\n\t\t\t\t\t\tStraubD.\n 1997.\n\t\t\t\t\tImpacts of an integrated information center on faculty end-users: A qualitative assessment.\n\t\t\t\t\tJournal of the American Society for Information Science48 (\n\t\t\t\t\t5):\n\t\t\t\t\t466\u2013\n\t\t\t\t\t471.\n\t\t\t\t\thttps:\/\/doi.org\/10.1002\/(SICI)1097-4571(199705)48:5<466:AID-ASI12>3.0.CO;2-X","DOI":"10.1002\/(SICI)1097-4571(199705)48:5<466::AID-ASI12>3.0.CO;2-X"},{"key":"2024082915322751000_i1558-7959-34-1-123-Limayem1","doi-asserted-by":"crossref","unstructured":"Limayem,\n M.,\n \n \n Hirt\n S. G.,\n and\n\t\t\t\t\t\tCheungC. M. K.\n 2007.\n\t\t\t\t\tHow habit limits the predictive power of intention: The case of information systems continuance.\n\t\t\t\t\tMIS Quarterly31 (\n\t\t\t\t\t4):\n\t\t\t\t\t705\u2013\n\t\t\t\t\t737.\n\t\t\t\t\thttps:\/\/doi.org\/10.2307\/25148817","DOI":"10.2307\/25148817"},{"key":"2024082915322751000_i1558-7959-34-1-123-Litman1","doi-asserted-by":"crossref","unstructured":"Litman,\n L.,\n \n \n Robinson\n J.,\n and\n\t\t\t\t\t\tAbberbockT.\n 2017.\n\t\t\t\t\tTurkPrime.com: A versatile crowdsourcing data acquisition platform for the behavioral sciences.\n\t\t\t\t\tBehavior Research Methods49 (\n\t\t\t\t\t2):\n\t\t\t\t\t433\u2013\n\t\t\t\t\t442.\n\t\t\t\t\thttps:\/\/doi.org\/10.3758\/s13428-016-0727-z","DOI":"10.3758\/s13428-016-0727-z"},{"key":"2024082915322751000_i1558-7959-34-1-123-Liu1","doi-asserted-by":"crossref","unstructured":"Liu,\n Q.,\n and\n\t\t\t\t\t\tVasarhelyiA.\n 2014.\n\t\t\t\t\tBig questions in AIS research: Measurement, information processing, data analysis, and reporting.\n\t\t\t\t\tJournal of Information Systems28 (\n\t\t\t\t\t1):\n\t\t\t\t\t1\u2013\n\t\t\t\t\t17.\n\t\t\t\t\thttps:\/\/doi.org\/10.2308\/isys-10395","DOI":"10.2308\/isys-10395"},{"key":"2024082915322751000_i1558-7959-34-1-123-McMullan1","doi-asserted-by":"crossref","unstructured":"McMullan,\n R.\n \n \n 2005.\n\t\t\t\t\tA multiple-item scale for measuring customer loyalty development.\n\t\t\t\t\tJournal of Services Marketing19 (\n\t\t\t\t\t7):\n\t\t\t\t\t470\u2013\n\t\t\t\t\t481.\n\t\t\t\t\thttps:\/\/doi.org\/10.1108\/08876040510625972","DOI":"10.1108\/08876040510625972"},{"key":"2024082915322751000_i1558-7959-34-1-123-Nunnally1","unstructured":"Nunnally,\n J. C.,\n and\n\t\t\t\t\t\tBernsteinI. H.\n 1994.\n\t\t\t\t\tPsychometric Theory.\n\t\t\t\t\tNew York, NY:\n\t\t\t\t\tMcGraw-Hill."},{"key":"2024082915322751000_i1558-7959-34-1-123-Peace1","doi-asserted-by":"crossref","unstructured":"Peace,\n A. G.,\n \n \n Galletta\n D. F.,\n and\n\t\t\t\t\t\tThongJ. Y. L.\n 2003.\n\t\t\t\t\tSoftware piracy in the workplace: A model and empirical test.\n\t\t\t\t\tJournal of Management Information Systems20 (\n\t\t\t\t\t1):\n\t\t\t\t\t153\u2013\n\t\t\t\t\t177.\n\t\t\t\t\thttps:\/\/doi.org\/10.1080\/07421222.2003.11045759","DOI":"10.1080\/07421222.2003.11045759"},{"key":"2024082915322751000_i1558-7959-34-1-123-Polites1","doi-asserted-by":"crossref","unstructured":"Polites,\n G. L.,\n and\n\t\t\t\t\t\tKarahannaE.\n 2012.\n\t\t\t\t\tShackled to the status quo: The inhibiting effects of incumbent system habit, switching costs, and inertia on new system acceptance.\n\t\t\t\t\tMIS Quarterly36 (\n\t\t\t\t\t1):\n\t\t\t\t\t21\u2013\n\t\t\t\t\t42.\n\t\t\t\t\thttps:\/\/doi.org\/10.2307\/41410404","DOI":"10.25300\/MISQ\/2012\/36.1.02"},{"key":"2024082915322751000_i1558-7959-34-1-123-Pope1","unstructured":"Pope,\n M. B.\n \n \n 2013.\n\t\t\t\t\tTime orientation, rational choice and deterrence: An information systems perspective.\n\t\t\t\t\tDissertation, Mississippi State University."},{"key":"2024082915322751000_i1558-7959-34-1-123-PricewaterhouseCoopersPwC1","unstructured":"PricewaterhouseCoopers (PwC).\n\t\t\t\t\t2014.\n\t\t\t\t\tGlobal state of information security survey 2015.\n\t\t\t\t\tAvailable at: https:\/\/www.htbridge.com\/events\/GISD2014\/key-findings-from-the-global-state-of-information-security-survey-2014.pdf"},{"key":"2024082915322751000_i1558-7959-34-1-123-Ringle1","doi-asserted-by":"crossref","unstructured":"Ringle,\n C. M.,\n \n \n Sarstedt\n M.,\n and\n\t\t\t\t\t\tStraubD. W.\n 2012.\n\t\t\t\t\tEditor's comments: A critical look at the use of PLS-SEM in MIS Quarterly.\n\t\t\t\t\tMIS Quarterly36 (\n\t\t\t\t\t1):\n\t\t\t\t\tiii\u2013\n\t\t\t\t\txiv.\n\t\t\t\t\thttps:\/\/doi.org\/10.2307\/41410402","DOI":"10.2307\/41410402"},{"key":"2024082915322751000_i1558-7959-34-1-123-Ringle2","unstructured":"Ringle,\n C. M.,\n \n \n Wende\n S.,\n and\n\t\t\t\t\t\tBeckerJ.\n 2015.\n\t\t\t\t\tSmartPLS 3. B\u00f6nningstedt: SmartPLS.\n\t\t\t\t\tAvailable at: http:\/\/www.smartpls.com"},{"key":"2024082915322751000_i1558-7959-34-1-123-Siponen1","doi-asserted-by":"crossref","unstructured":"Siponen,\n M.,\n and\n\t\t\t\t\t\tVanceA.\n 2010.\n\t\t\t\t\tNeutralization: New insights into the problem of employee information systems security policy violations.\n\t\t\t\t\tMIS Quarterly34 (\n\t\t\t\t\t3):\n\t\t\t\t\t487\u2013\n\t\t\t\t\t502.\n\t\t\t\t\thttps:\/\/doi.org\/10.2307\/25750688","DOI":"10.2307\/25750688"},{"key":"2024082915322751000_i1558-7959-34-1-123-Siponen2","doi-asserted-by":"crossref","unstructured":"Siponen,\n M.,\n \n \n Mahmood\n M. A.,\n and\n\t\t\t\t\t\tPahnilaS.\n 2014.\n\t\t\t\t\tEmployees' adherence to information security policies: An exploratory field study.\n\t\t\t\t\tInformation & Management51 (\n\t\t\t\t\t2):\n\t\t\t\t\t217\u2013\n\t\t\t\t\t224.\n\t\t\t\t\thttps:\/\/doi.org\/10.1016\/j.im.2013.08.006","DOI":"10.1016\/j.im.2013.08.006"},{"key":"2024082915322751000_i1558-7959-34-1-123-Sprouse1","doi-asserted-by":"crossref","unstructured":"Sprouse,\n J.\n \n \n 2011.\n\t\t\t\t\tA validation of Amazon Mechanical Turk for the collection of acceptability judgments in linguistic theory.\n\t\t\t\t\tBehavior Research Methods43 (\n\t\t\t\t\t1):\n\t\t\t\t\t155\u2013\n\t\t\t\t\t167.\n\t\t\t\t\thttps:\/\/doi.org\/10.3758\/s13428-010-0039-7","DOI":"10.3758\/s13428-010-0039-7"},{"key":"2024082915322751000_i1558-7959-34-1-123-Steinbart1","doi-asserted-by":"crossref","unstructured":"Steinbart,\n P. J.,\n \n \n Raschke\n R. L.,\n \n \n Gal\n G.,\n and\n\t\t\t\t\t\tDillaW. N.\n 2013.\n\t\t\t\t\tInformation security professionals' perceptions about the relationship between the information security and internal audit functions.\n\t\t\t\t\tJournal of Information Systems27 (\n\t\t\t\t\t2):\n\t\t\t\t\t65\u2013\n\t\t\t\t\t86.\n\t\t\t\t\thttps:\/\/doi.org\/10.2308\/isys-50510","DOI":"10.2308\/isys-50510"},{"key":"2024082915322751000_i1558-7959-34-1-123-Straub1","doi-asserted-by":"crossref","unstructured":"Straub,\n D. W.,\n and\n\t\t\t\t\t\tWelkeR. J.\n 1998.\n\t\t\t\t\tCoping with systems risk: Security planning models for management decision making.\n\t\t\t\t\tMIS Quarterly22 (\n\t\t\t\t\t4):\n\t\t\t\t\t441\u2013\n\t\t\t\t\t469.\n\t\t\t\t\thttps:\/\/doi.org\/10.2307\/249551","DOI":"10.2307\/249551"},{"key":"2024082915322751000_i1558-7959-34-1-123-Stults1","unstructured":"Stults,\n G.\n \n \n 2004.\n\t\t\t\t\tAn overview of Sarbanes-Oxley for the information security professional.\n\t\t\t\t\tAvailable at: https:\/\/www.sans.org\/reading-room\/whitepapers\/legal\/overview-sarbanes-oxley-information-security-professional-1426"},{"key":"2024082915322751000_i1558-7959-34-1-123-Tittel1","unstructured":"Tittel,\n E.\n \n \n 2008.\n\t\t\t\t\tABCs of IT Security for CPAs: A CPAs Introduction to IT Policies and Procedures.\n\t\t\t\t\tNew York, NY:\n\t\t\t\t\tAICPA IT Executive Committee."},{"key":"2024082915322751000_i1558-7959-34-1-123-Tittle1","unstructured":"Tittle,\n C.\n \n \n 1980.\n\t\t\t\t\tSanctions and Social Deviance: The Question of Deterrence.\n\t\t\t\t\tNew York, NY:\n\t\t\t\t\tPraeger."},{"key":"2024082915322751000_i1558-7959-34-1-123-Venkatesh1","doi-asserted-by":"crossref","unstructured":"Venkatesh,\n V.,\n \n \n Morris\n M. G.,\n \n \n Davis\n G. B.,\n and\n\t\t\t\t\t\tDavisF. D.\n 2003.\n\t\t\t\t\tUser acceptance of information technology: Toward a unified view.\n\t\t\t\t\tMIS Quarterly27 (\n\t\t\t\t\t3):\n\t\t\t\t\t425\u2013\n\t\t\t\t\t478.\n\t\t\t\t\thttps:\/\/doi.org\/10.2307\/30036540","DOI":"10.2307\/30036540"},{"key":"2024082915322751000_i1558-7959-34-1-123-Willison1","doi-asserted-by":"crossref","unstructured":"Willison,\n R.,\n and\n\t\t\t\t\t\tWarkentinM.\n 2013.\n\t\t\t\t\tBeyond deterrence: An expanded view of employee computer abuse.\n\t\t\t\t\tMIS Quarterly37 (\n\t\t\t\t\t1):\n\t\t\t\t\t1\u2013\n\t\t\t\t\t20.\n\t\t\t\t\thttps:\/\/doi.org\/10.25300\/MISQ\/2013\/37.1.01","DOI":"10.25300\/MISQ\/2013\/37.1.01"}],"container-title":["Journal of Information Systems"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/publications.aaahq.org\/jis\/article-pdf\/34\/1\/123\/9302\/i1558-7959-34-1-123.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"syndication"},{"URL":"https:\/\/publications.aaahq.org\/jis\/article-pdf\/34\/1\/123\/9302\/i1558-7959-34-1-123.pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,8,29]],"date-time":"2024-08-29T17:12:40Z","timestamp":1724951560000},"score":1,"resource":{"primary":{"URL":"https:\/\/publications.aaahq.org\/jis\/article\/34\/1\/123\/1142\/Impact-of-Deterrence-and-Inertia-on-Information"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2019,3,5]]},"references-count":57,"journal-issue":{"issue":"1","published-online":{"date-parts":[[2019,3,5]]},"published-print":{"date-parts":[[2020,3,1]]}},"URL":"https:\/\/doi.org\/10.2308\/isys-52400","relation":{},"ISSN":["1558-7959","0888-7985"],"issn-type":[{"value":"1558-7959","type":"electronic"},{"value":"0888-7985","type":"print"}],"subject":[],"published":{"date-parts":[[2019,3,5]]}}}