Paper Number
2041
Paper Type
Complete Research Paper
Abstract
The use of metaphors is crucial to advancing not only scientific fields but also in facilitating the development of knowledge and understanding in general. While metaphors facilitate the exchange of novel concepts and ideas, they can also be a hindrance if we do not critically question the root metaphors and the extent to which they apply and do not apply to the subjects we study in cybersecurity research. We find two metaphors to be seemingly popular in characterizing the human actor: (1) the “frightened animal” metaphor with traceable roots to fear-inducing theories, such as Deterrence Theory, and (2) the “weakest link” metaphor with traceable roots to Taylorism and scientific management. We revisit the roots of these two metaphors, critically examine their applicability to the subject matter in cybersecurity, and provide suggestions for improving the status quo.
Recommended Citation
Soliman, Wael and Järveläinen, Jonna, "Reconceptualizing the Human in the Loop: A Problematization of Taken-for-Granted Metaphors in Cybersecurity Research" (2024). ECIS 2024 Proceedings. 5.
https://aisel.aisnet.org/ecis2024/track02_general/track02_general/5
Reconceptualizing the Human in the Loop: A Problematization of Taken-for-Granted Metaphors in Cybersecurity Research
The use of metaphors is crucial to advancing not only scientific fields but also in facilitating the development of knowledge and understanding in general. While metaphors facilitate the exchange of novel concepts and ideas, they can also be a hindrance if we do not critically question the root metaphors and the extent to which they apply and do not apply to the subjects we study in cybersecurity research. We find two metaphors to be seemingly popular in characterizing the human actor: (1) the “frightened animal” metaphor with traceable roots to fear-inducing theories, such as Deterrence Theory, and (2) the “weakest link” metaphor with traceable roots to Taylorism and scientific management. We revisit the roots of these two metaphors, critically examine their applicability to the subject matter in cybersecurity, and provide suggestions for improving the status quo.
When commenting on articles, please be friendly, welcoming, respectful and abide by the AIS eLibrary Discussion Thread Code of Conduct posted here.