2010 年 30 巻 3 号 p. 109-121
Clarifying the disincentive factors and its structure impeding enterprises from implement information security measures contributes to promote information security. In this study, we conducted a questionnaire survey about disincentives that affect the implementation of information security measures. Using the answers from the 915 respondents, we conducted exploratory factor analysis and structural equation modeling (SEM) and came up with a disincentive structure concerning information security measures. Based on this structural model, we examined commonality and difference between the group of large enterprises and that of small and medium-sized enterprises in terms of information security disincentives.