Information security investment game with penalty parameter

3rd International Conference on Innovative Computing Information and Control, ICICIC'08

Volumn , Issue , 2008, Pages

  Sun, Wei ^a   Kong, Xiangwei ^a   He, Dequan ^a,b   You, Xingang ^a,b  

^a DALIAN UNIVERSITY OF TECHNOLOGY   (China)

^b INSTITUTE OF ELECTRONICS   (China)

Author keywords

[No Author keywords available]

Indexed keywords

COST BENEFIT ANALYSIS; DECISION MAKING; FINANCE; INFORMATION SERVICES; INVESTMENTS; LAWS AND LEGISLATION; TELECOMMUNICATION NETWORKS;

GAME MODELS; HARD PROBLEMS; INFORMATION SECURITY; INTERNATIONAL CONFERENCES; INVESTMENT COSTS; MIXED STRATEGIES; NASH EQUILIBRIUM;

GAME THEORY;

EID: 52449134487     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/ICICIC.2008.319     Document Type: Conference Paper

References (21)

1. Qiang Tian, "The global survey of information security 2007", Information Weekly, July, 5, 2007.
2. Basie von Solms, "Information Security - The Fourth Wave", Computers &Security, Elsevier Science, Netherlands, 2006, pp. 165-168.
3. Daniel Mellado, Eduardo Fernández-Medina, Mario Piattini, "A common criteria based security requirements engineering process for the development of secure information systems", Computer Standards & Interfaces, Elsevier Science, Netherlands, 2007, pp. 244-253.
4. G. Price, "Editorial for v.11 n.4 of the Information Security Technical Report: 'Windows Security Revisited'", Information Security Technical Report, Elsevier Science, Netherlands, 2006, pp. 159.
5. Ilan Oshri, Julia Kotlarsky, Corey Hirsch, "Information security in networkable Windows-based operating system devices: Challenges and solutions", Computers & Security, Elsevier Science, Netherlands, 2007, pp. 177-182.
6. Ross Anderson, "Why Information Security is Hard-An Economic Perspective", Proceedings of 17th Annual Computer Security Applications Conference, IEEE Computer Society, USA, 2001.
7. Howard Kunreuther, Geoffrey Heal, "Interdependent security", Journal of Risk and Uncertainty, Springer, Germany, 2003, pp. 231-249.
8. Hal R. Varian, "System reliability and free riding", Working paper, Economics of Information Security, University of California, Berkeley, CA. 2004.
9. Huseyin Cavusoglu, Birendra Mishra, Srinivasan Raghunathan, "A Model for Evaluating IT Security Investments", Communications of The ACM, ACM, USA, 2004, pp. 87-92.
10. Samuel N. Hamilton, Wendy L. Miller, Allen Ott, and O. Sami Saydjari, "The Role of Game Theory in Information Warfare", In 4th Information survivability workshop (ISW-2001/2002), Vancouver, Canada, 2002.
11. Kenneth J. Arrow, "Introductory remarks on the history of game theory", Games and Economic Behavior, Elsevier Science, Netherlands, 2003, pp. 15-18.
12. Joseph Y. Halpern, "A computer scientist looks at game theory", Games and Economic Behavior, Elsevier Science, Netherlands, 2003, pp. 114-131.
13. Dhillon, J. Backhouse, "Current directions in IS security research: towards socio-organizational perspectives", Information Systems Journal, Blackwell Publishing, UK, 2001, pp. 127-153.
14. Dhillon, J. Backhouse, "Information system security management in the new millennium", Communications of the ACM, ACM, USA, 2000, pp. 125-128.
15. Francesca Medda, "A game theory approach for the allocation of risks in transport public private partnerships", International Journal of Project Management, Elsevier Science, Netherlands, 2007, pp. 213-218.
16. Martin Shubik, "Game theory and experimental gaming", Handbook of Game Theory with Economic Applications, Elsevier Science, Netherlands, 2002, pp. 2327-2351.
17. McGraw, "Software security", IEEE Security & Privacy, IEEE, USA, 2004, pp. 80-83.
18. H.A. Kruger, W.D. Kearney, "A prototype for assessing information security awareness", Computers & Security, Elsevier Science, Netherlands, 2006, pp. 289-296.
19. Ajay S. Vinze, "Information security in the knowledge economy", International Journal of Human-Computer Studies, Elsevier Science, Netherlands, 2007, pp. 1-2.
20. Kerry-Lynn Thomson, Rossouw von Solms and Lynette Louw, "Cultivating an organizational information security culture", Computer Fraud & Security, Elsevier Science, Netherlands, 2006, pp. 7-11.
21. Phil Pinder, "Preparing Information Security for legal and regulatory compliance", Information Security Technical Report, Elsevier Science, Netherlands, 2006, pp. 32-38.