Abstract
Cybersecurity breach probability functions describe how cybersecurity investments impact the actual vulnerability to cyberattacks through the probability of success of the attack. They essentially use mathematical models to make cyber-risk management choices. This paper provides an overview of the breach probability models that appear in the literature. For each of them, the form of the mathematical functions and their properties are described. The models exhibit a wide variety of functional relationships between breach probability and investments, including linear, concave, convex, and a mixture of the latter two. Each model describes a parametric family, with some models have a single parameter, and others have two. A sensitivity analysis completes the overview to identify the impact of the model parameters: the estimation of the parameters which have a larger influence on the breach probability is more critical and deserves greater attention.
Subject
Strategy and Management,Economics, Econometrics and Finance (miscellaneous),Accounting
Reference76 articles.
1. Risk analysis and big data;Safety and Reliability,2016
2. Pricing of cyber insurance premiums using a markov-based dynamic model with clustering structure;PLoS ONE,2021
3. Arcuri, Maria Cristina, Brogi, Marina, and Gandolfi, Gino (, January January). How does cyber crime affect firms? the effect of information security breaches on stock returns. Paper presented at First Italian Conference on Cybersecurity (ITASEC17), Venice, Italy.
4. Arnold, Roger A. (2008). Economics, Thomson South-Western. [8th ed.].
5. Aven, Terje (2011). Quantitative Risk Assessment: The Scientific Platform, Cambridge University Press.
Cited by
2 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献