Managing Information Risk and the Economics of Security: Difference between revisions
No edit summary |
No edit summary |
||
Line 11: | Line 11: | ||
==Categorization== | ==Categorization== | ||
Overview: [[Books]] | * Overview: [[Books]] | ||
* Threats and Actors: [[States]]; [[Financial Institutions and Networks]] | |||
* Issues: [[Cybercrime]]; [[Economics of Cybersecurity]]; [[Incentives]]; [[Information Sharing/Disclosure]]; [[Insurance]]; [Risk Management and Investment]] | |||
* Approaches: [[Deterrence]]; [[Regulation/Liability]] | |||
==Key Words== | ==Key Words== | ||
Line 25: | Line 27: | ||
[[Keyword_Index_and_Glossary_of_Core_Ideas#Patching | Patching]], | [[Keyword_Index_and_Glossary_of_Core_Ideas#Patching | Patching]], | ||
[[Keyword_Index_and_Glossary_of_Core_Ideas#Phishing | Phishing]], | [[Keyword_Index_and_Glossary_of_Core_Ideas#Phishing | Phishing]], | ||
[[Keyword_Index_and_Glossary_of_Core_Ideas#Risk_Modeling | Risk Modeling]], | |||
[[Keyword_Index_and_Glossary_of_Core_Ideas#SPAM | SPAM]], | [[Keyword_Index_and_Glossary_of_Core_Ideas#SPAM | SPAM]], | ||
[[Keyword_Index_and_Glossary_of_Core_Ideas#State_Affiliation | State Affiliation]], | [[Keyword_Index_and_Glossary_of_Core_Ideas#State_Affiliation | State Affiliation]], |
Revision as of 15:25, 28 June 2010
Full Title of Reference
Managing Information Risk and the Economics of Security
Full Citation
M. Eric Johnson, Managing Information Risk and the Economics of Security (2008). Purchase
Categorization
- Overview: Books
- Threats and Actors: States; Financial Institutions and Networks
- Issues: Cybercrime; Economics of Cybersecurity; Incentives; Information Sharing/Disclosure; Insurance; [Risk Management and Investment]]
- Approaches: Deterrence; Regulation/Liability
Key Words
Antivirus, Botnet, Cyber Crime, Cyber Security as an Externality, Disclosure Policy, Information Asymmetries, Malware, Notice and Take-down, Patching, Phishing, Risk Modeling, SPAM, State Affiliation, Tragedy of Commons, Transparency
Synopsis
The lifeblood of the global economy, information has become a source of growing risk as more firms maintain information online. With risks now fueled by sophisticated, organized, malicious groups, information security requires not only technology, but a clear understanding of potential risks, decision-making behaviors, and metrics for evaluating business and policy options.
This edited volume contributed by well-established researchers in the field worldwide presents the latest research on economics driving both the risks and the solutions. Covering the implications of policy within firms and across countries, this book provides managers and policy makers with new thinking on how to manage risk.
Additional Notes and Highlights
* Outline key points of interest