The economics of information security investment

DOI Web Site Web Site 被引用文献13件

書誌事項

公開日
2002-11
権利情報
  • https://www.acm.org/publications/policies/copyright_policy#Background
DOI
  • 10.1145/581271.581274
公開者
Association for Computing Machinery (ACM)

この論文をさがす

説明

<jats:p>This article presents an economic model that determines the optimal amount to invest to protect a given set of information. The model takes into account the vulnerability of the information to a security breach and the potential loss should such a breach occur. It is shown that for a given potential loss, a firm should not necessarily focus its investments on information sets with the highest vulnerability. Since extremely vulnerable information sets may be inordinately expensive to protect, a firm may be better off concentrating its efforts on information sets with midrange vulnerabilities. The analysis further suggests that to maximize the expected benefit from investment to protect information, a firm should spend only a small fraction of the expected loss due to a security breach.</jats:p>

収録刊行物

被引用文献 (13)*注記

もっと見る

詳細情報 詳細情報について

問題の指摘

ページトップへ