مرکز منطقه ای اطلاع رساني علوم و فناوري - Extending the Gordon and Loeb Model for Information Security Investment

DocumentCode :

1958842

Title :

Extending the Gordon and Loeb Model for Information Security Investment

Author :

Willemson, Jan

Author_Institution :

Cybernetica, Tartu, Estonia

fYear :

2010

fDate :

15-18 Feb. 2010

Firstpage :

258

Lastpage :

261

Abstract :

In this paper we study the information security investment model proposed by Gordon and Loeb. We argue that the original model is missing at least one important restriction concerning monotonicity of the remaining vulnerability viewed as a function of original vulnerability level, and propose adding the respective condition. We present a new family of remaining vulnerability functions satisfying all the conditions and generalizing all the currently known example function families.

Keywords :

investment; security of data; Gordon-Loeb model; information security investment; monotonicity; vulnerability function; Availability; Calculus; Computer security; Cost function; Helium; Information security; Investments; Loss measurement; Protection; Time measurement; Gordon&Loeb model; information security investment;

fLanguage :

English

Publisher :

ieee

Conference_Titel :

Availability, Reliability, and Security, 2010. ARES '10 International Conference on

Conference_Location :

Krakow

Print_ISBN :

978-1-4244-5879-0

Type :

conf

DOI :

10.1109/ARES.2010.37

Filename :

5438086

Link To Document :

https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=1958842