Difference between revisions of "Cybersecurity and Economic Incentives"

From Cybersecurity Wiki
Jump to navigation Jump to search
Line 15: Line 15:
==Key Words==  
==Key Words==  
[http://cyber.law.harvard.edu/cybersecurity/Glossary_of_Core_Ideas#Internet_Service_Providers internet service providers], [http://cyber.law.harvard.edu/cybersecurity/Glossary_of_Core_Ideas#Malware malware]
[http://cyber.law.harvard.edu/cybersecurity/Glossary_of_Core_Ideas#Malware malware], [http://cyber.law.harvard.edu/cybersecurity/Glossary_of_Core_Ideas#Interdependencies interdependencies]

Revision as of 18:56, 9 June 2010

Full Title of Reference

Cybersecurity and Economic Incentives

Full Citation

OECD, Cybersecurity and Economic Incentives, in Computer Viruses and Other Malicious Software (OECD, 2009). Purchase



Issues: Economics of Cybersecurity, Incentives

Key Words

malware, interdependencies


The past five years have witnessed the emergence of comprehensive efforts to improve the security of information systems and networks. A recent survey by the OECD (2005a) demonstrates that governments have developed national policy frameworks, as well as partnerships with the private sector and civil society, to combat cybercrime. Measures include Computer Security Incident Response Teams (CSIRTs), raising awareness, information sharing and education.

Additional Notes and Highlights

Accessible and pragmatic approach to security concerns, underlining the fact that, if the openness of the Internet makes end-points vulnerable to security threats, it is also this very openness that allows for growth in innovation and productivity, which has so far outweighed the costs associated with security risks. Comes back on earlier OECD works on security. Underlines that the current trend in research is to focus of the economic approaches to dealing with cybersecurity (rather critical of such trend). Outlines orientations for future research (fieldwork, importance of understanding the incentives of different Internet-market players).


 Increased focus on incentive structures
   OECD Guidelines and the Economics of Cybersecurity
 The economic perspective
   The problem with prevailing research methods