English
Related papers

Related papers: Mind the Gap: Securely modeling cyber risk based o…

200 papers

Municipalities are vulnerable to cyberattacks with devastating consequences, but they lack key information to evaluate their own risk and compare their security posture to peers. Using data from 83 municipalities collected via a…

Cryptography and Security · Computer Science 2024-02-06 Avital Baral , Taylor Reynolds , Lawrence Susskind , Daniel J. Weitzner , Angelina Wu

In this paper we present a study on using novel data types to perform cyber risk quantification by estimating the likelihood of a data breach. We demonstrate that it is feasible to build a highly accurate cyber risk assessment model using…

Cryptography and Security · Computer Science 2025-06-10 Armin Sarabi , Manish Karir , Mingyan Liu

When undertaking cyber security risk assessments, we must assign numeric values to metrics to compute the final expected loss that represents the risk that an organization is exposed to due to cyber threats. Even if risk assessment is…

Computer Science and Game Theory · Computer Science 2017-12-19 Andrew Fielder , Sandra Konig , Emmanouil Panaousis , Stefan Schauer , Stefan Rass

Security practices in large organizations are notoriously difficult to assess. The challenge only increases when organizations turn to third parties to provide technology and business services, which typically require tight network…

Cryptography and Security · Computer Science 2019-05-23 Benjamin Edwards , Jay Jacobs , Stephanie Forrest

Key decision-makers in small and medium businesses (SMBs) often lack the awareness and knowledge to implement cybersecurity measures effectively. To gain a deeper understanding of how SMB executives navigate cybersecurity decision-making,…

Cryptography and Security · Computer Science 2025-06-13 Yuanhaur Chang , Oren Heller , Yaniv Shlomo , Iddo Bar-Noy , Ella Bokobza , Michal Grinstein-Weiss , Ning Zhang

Proactive cyber-risk assessment is gaining momentum due to the wide range of sectors that can benefit from the prevention of cyber-incidents by preserving integrity, confidentiality, and the availability of data. The rising attention to…

Methodology · Statistics 2024-07-11 Mario Angelelli , Serena Arima , Christian Catalano , Enrico Ciavolino

Cybersecurity risk is commonly expressed through impact and likelihood, yet likelihood remains difficult to estimate because cyber incidents are underreported, heterogeneous datasets are weakly comparable, and attacker behaviour changes…

The Internet of Things (IoT) triggers new types of cyber risks. Therefore, the integration of new IoT devices and services requires a self-assessment of IoT cyber security posture. By security posture this article refers to the…

We introduce a game-theoretic model to investigate the strategic interaction between a cyber insurance policyholder whose premium depends on her self-reported security level and an insurer with the power to audit the security level upon…

Cryptography and Security · Computer Science 2019-08-15 Sakshyam Panda , Daniel W Woods , Aron Laszka , Andrew Fielder , Emmanouil Panaousis

The importance of security metrics can hardly be overstated. Despite the attention that has been paid by the academia, government and industry in the past decades, this important problem stubbornly remains open. In this survey, we present a…

Cryptography and Security · Computer Science 2016-01-25 Marcus Pendleton , Richard Garcia-Lebron , Shouhuai Xu

Quantifying cyber risks is essential for organizations to grasp their vulnerability to threats and make informed decisions. However, current approaches still need to work on blending economic viewpoints to provide insightful analysis. To…

Cryptography and Security · Computer Science 2024-05-07 Muriel Figueredo Franco , Aiatur Rahaman Mullick , Santosh Jha

Cyber risk has become a critical financial threat in today's interconnected digital economy. This paper introduces a cyber-risk management framework for networked digital systems that combines the strategic behavior of players with…

Cryptography and Security · Computer Science 2026-01-26 Elisa Botteghi , Martino S. Centonze , Davide Pastorello , Daniele Tantari

Cyberattacks frequently target higher educational institutions, making cybersecurity awareness and resilience critical for students. However, limited research exists on cybersecurity awareness, attitudes, and resilience among students in…

Cryptography and Security · Computer Science 2024-11-06 Steve Goliath , Pitso Tsibolane , Dirk Snyman

Cyber risks are the most common risks encountered by a modern network system. However, it is significantly difficult to assess the joint cyber risk owing to the network topology, risk propagation, and heterogeneities of components. In this…

Social and Information Networks · Computer Science 2020-06-30 Gaofeng Da , Maochao Xu , Jingshi Zhang , Peng Zhao

In the dynamic cyber threat landscape, effective decision-making under uncertainty is crucial for maintaining robust information security. This paper introduces the Cyber Resilience Index (CRI), a threat-informed probabilistic approach to…

Cryptography and Security · Computer Science 2024-09-09 Lampis Alevizos , Vinh-Thong Ta

This paper is devoted to measuring the security of cyber networks under advanced persistent threats (APTs). First, an APT-based cyber attack-defense process is modeled as an individual-level dynamical system. Second, the dynamic model is…

Cryptography and Security · Computer Science 2017-07-13 Lu-Xing Yang , Pengdeng Li , Xiaofan Yang , Luosheng Wen , Yingbo Wu , Yuan Yan Tang

This paper examines how Canadian firms balance the benefits of technology adoption against the rising risk of cyber security breaches. We merge data from the 2021 Canadian Survey of Digital Technology and Internet Use and the 2021 Canadian…

General Economics · Economics 2026-04-28 Joann Jasiak , Peter MacKenzie , Purevdorj Tuvaandorj

Advanced AI systems offer substantial benefits but also introduce risks. In 2025, AI-enabled cyber offense has emerged as a concrete example. This technical report applies a quantitative risk modeling methodology (described in full in a…

Cyber risk refers to the risk of defacing reputation, monetary losses, or disruption of an organization or individuals, and this situation usually occurs by the unconscious use of cyber systems. The cyber risk is unhurriedly increasing day…

Cryptography and Security · Computer Science 2024-04-02 Fatama Tuz Johora , Md Shahedul Islam Khan , Esrath Kanon , Mohammad Abu Tareq Rony , Md Zubair , Iqbal H. Sarker

Recent high-profile cyber attacks exemplify why organizations need better cyber defenses. Cyber threats are hard to accurately predict because attackers usually try to mask their traces. However, they often discuss exploits and techniques…

Computation and Language · Computer Science 2019-02-05 Ashok Deb , Kristina Lerman , Emilio Ferrara
‹ Prev 1 2 3 10 Next ›