Honor among thieves: A common's analysis of cybercrime economies

eCrime Researchers Summit, eCrime

Volumn , Issue , 2013, Pages

  Afroz, Sadia ^a   Garg, Vaibhav ^a   McCoy, Damon ^b   Greenstadt, Rachel ^a  

^a DREXEL UNIVERSITY   (United States)

^b GEORGE MASON UNIVERSITY   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

COLLECTIVE ACTION; COMMON-POOL RESOURCES; ECONOMIC FRAMEWORK; GOVERNANCE MODELS; NETWORK SIZE; NEW MEMBERS; SMALL-WORLD EFFECT; TECHNICAL INNOVATION;

COMPUTER CRIME;

EID: 84900794599     PISSN: 21591237     EISSN: 21591245     Source Type: Conference Proceeding    
DOI: 10.1109/eCRS.2013.6805778     Document Type: Conference Paper

References (46)

1. M. Motoyama, D. McCoy, K. Levchenko, S. Savage, and G. Voelker, "An analysis of underground forums," in Proceedings of the 2011 SIGCOMM Conference on Internet Measurement. ACM, 2011, pp. 71-80.
2. T. Dietz, E. Ostrom, and P. C. Stern, "The struggle to govern the commons," Science, vol. 302, no. 5652, pp. 1907-1912, 2003.
3. T. Moore, R. Clayton, and R. Anderson, "The economics of online crime," The Journal of Economic Perspectives, vol. 23, no. 3, pp. 3-20, 2009.
4. A. Smith, An Inquiry into the Nature and Causes of the Wealth of Nations. London, U.K. Methuen and Co, 1776.
5. R. H. Coase, "The nature of the firm," Economica, vol. 4, no. 16, pp. 386-405, 1937.
6. R. Thomas and J. Martin, "The underground economy priceless," USENIX; login, vol. 31, no. 6, pp. 7-16, 2006.
7. G. S. Becker and G. J. Stigler, "Law enforcement, malfeasance, and compensation of enforcers," The Journal of Legal Studies, vol. 3, no. 1, pp. 1-18, 1974.
8. C. Kanich, C. Kreibich, K. Levchenko, B. Enright, G. M. Voelker, V. Paxson, and S. Savage, "Spamalytics an empirical analysis of spam marketing conversion," Communications of the ACM, vol. 52, no. 9, pp. 99-107, 2009.
9. E. Ostrom, J. Burger, C. B. Field, R. B. Norgaard, and D. Policansky, "Revisiting the commons local lessons, global challenges," Science, vol. 284, no. 5412, pp. 278-282, 1999.
10. A. R. Poteete and E. Ostrom, "Heterogeneity, group size and collective action The role of institutions in forest management," Development and change, vol. 35, no. 3, pp. 435-461, 2004.
11. R. Anderson and T. Moore, "The economics of information security," Science, vol. 314, no. 5799, pp. 610-613, 2006.
12. D. S. Wall, "Policing cybercrimes Situating the public police in networks of security within cyberspace," Police Practice and Research, vol. 8, no. 2, pp. 183-205, 2007.
13. R. B̈ohme and T. Moore, "The iterated weakest link," Security &Privacy, IEEE, vol. 8, no. 1, pp. 53-55, 2010.
14. R. Anderson, C. Barton, R. B̈ohme, R. Clayton, M. van Eeten, M. Levi, T. Moore, and S. Savage, "Measuring the cost of cybercrime," in Proceedings of the Workshop on the Economics of Information Security. Springer, 2012.
15. T. Moore and R. Clayton, "An empirical analysis of the current state of phishing attack and defence," in Workshop on the Economics of Information Security, 2007.
16. T. Holz, M. Engelberth, and F. Freiling, "Learning more about the underground economy A case-study of keyloggers and dropzones," Computer Security-ESORICS 2009, pp. 1-18, 2009.
17. A. Rege, "What's love got to do with it? exploring online dating scams and identity fraud," International Journal of Cyber Criminology, vol. 3, no. 2, pp. 494-512, 2009.
18. A. Blum, B. Wardman, T. Solorio, and G. Warner, "Lexical feature based phishing url detection using online learning," in Proceedings of the 3rd ACM Workshop on Artificial Intelligence and Security. ACM, 2010, pp. 54-60.
19. M. Christodorescu, S. Jha, S. A. Seshia, D. Song, and R. E. Bryant, "Semantics-aware malware detection," in Symposium on Security and Privacy. IEEE, 2005, pp. 32-46.
20. A. Juels, S. Stamm, and M. Jakobsson, "Combating click fraud via premium clicks," in Proceedings of 16th USENIX Security Symposium on USENIX Security Symposium. USENIX Association, 2007, pp. 1-10.
21. P. J. Nero, B. Wardman, H. Copes, and G. Warner, "Phishing Crime that pays," in eCrime Researchers Summit. IEEE, 2011, pp. 1-10.
22. I. P. Png, C.-Y. Wang, and Q.-H. Wang, "The deterrent and displacement effects of information security enforcement International evidence," Journal of Management Information Systems, vol. 25, no. 2, pp. 125-144, 2008.
23. V. Garg, N. Husted, and J. Camp, "The smuggling theory approach to organized digital crime," in eCrime Researchers Summit. IEEE, 2011, pp. 1-7.
24. J. Caballero, C. Grier, C. Kreibich, and V. Paxson, "Measuring pay-per-install the commoditization of malware distribution," in Proceedings of the 20th USENIX conference on Security, ser. SEC'11. Berkeley, CA, USA USENIX Association, 2011, pp. 13-13. [Online]. Available http //dl.acm.org/citation.cfm?id=2028067.2028080
25. T. C. Schelling, "Economics and criminal enterprise," Public Interest, vol. 7, 1967.
26. A. R. Dick, "When does organized crime pay? a transaction cost analysis," International Review of Law and Economics, vol. 15, 1995.
27. Y. Benkler, "Coase's penguin, or, linux and the nature of the firm," The Yale Law Journal, vol. 112, no. 3, 2002.
28. L. J. Camp, "Reconceptualizing the role of security user," Daedalus, vol. 140, no. 4, pp. 93-107, 2011.
29. B. R. Jones, "Comment Virtual neighborhood watch Open source software and community policing against cybercrime," The Journal of Criminal Law and Criminology, pp. 601-629, 2007.
30. M. L. Rustad, "Private enforcement of cybercrime on the electronic frontier," S. Cal. Interdisc. LJ, vol. 11, p. 63, 2001.
31. L. Huey, J. Nhan, and R. Broll, "uppity civilians and cybervigilantes The role of the general public in policing cybercrime," Criminology and Criminal Justice, vol. 13, no. 1, pp. 81-97, 2013.
32. R. Wash, "Folk models of home computer security," in Proceedings of the Sixth Symposium on Usable Privacy and Security. ACM, 2010, p. 11.
33. Z. Dong, V. Garg, L. J. Camp, and A. Kapadia, "Pools, clubs and security designing for a party not a person," in Proceedings of the 2012 workshop on New security paradigms. ACM, 2012, pp. 77-86.
34. V. Garg, S. Patil, A. Kapadia, and L. J. Camp, "Peer produced privacy protection," in International Symposium on Technology and Society. IEEE, 2013.
35. V. Garg and S. Nilizadeh, "Craigslist scams and community composition Investigating online fraud victimization," in Proceedings of the International Workshop on Cyber Crime. IEEE, 2013.
36. T. C. Pratt, K. Holtfreter, and M. D. Reisig, "Routine online activity and internet fraud targeting Extending the generality of routine activity theory," Journal of Research in Crime and Delinquency, vol. 47, no. 3, pp. 267-296, 2010.
37. C. Herley and D. Florencio, "A profitless endeavor phishing as tragedy of the commons," in Proceedings of the 2008 workshop on New security paradigms. ACM, 2009, pp. 59-70.
38. C. Herley, "Small world Collisions among attackers in a finite population," in Proceedings of the Workshop on the Economics of Information Security, 2013.
39. K. Levchenko, A. Pitsillidis, N. Chachra, B. Enright, M. F́elegyh́azi, C. Grier, T. Halvorson, C. Kanich, C. Kreibich, H. Liu et al., "Click trajectories End-to-end analysis of the spam value chain," in Symposium on Security and Privacy. IEEE, 2011, pp. 431-446.
40. H. Garrett, "The tragedy of the commons," Science, vol. 162, no. 3859, pp. 1243-1248, 1968.
41. V. Garg and L. J. Camp, "Ex ante vs. ex post Economically efficient sanctioning regimes for online risks," in Telecommunications Policy Research Conference. SSRN, 2013.
42. Z. Li, Q. Liao, and A. Striegel, "Botnet economics uncertainty matters," in Managing Information Risk and the Economics of Security. Springer, 2009, pp. 245-267.
43. V. Latora and M. Marchiori, "Economic small-world behavior in weighted networks," The European Physical Journal BCondensed Matter and Complex Systems, vol. 32, no. 2, pp. 249-263, 2003.
44. P. V. Singh, "The small-world effect The influence of macrolevel properties of developer collaboration networks on opensource project success," ACM Transactions Software Engineering Methodology, vol. 20, no. 2, pp. 61-627, 2010.
45. B. Uzzi and J. Spiro, "Collaboration and creativity The small world problem," American Journal of Sociology, vol. 111, no. 2, pp. 447-504, 2005.
46. D. J. Watts and S. H. Strogatz, "Collective dynamics of smallworldnetworks," nature, vol. 393, no. 6684, pp. 440-442, 1998.