The Navigation Metaphor in Security Economics

Journal article (2016)

Authors

W. Pieters Safety and Security Science - TPM
Margaret Ford Consult Hyperion
Claude P R Heath Royal Holloway University of London
Christian W. Probst Technical University of Denmark
Ruud Verbij KPMG Netherlands
Research Group
Safety and Security Science (TPM) (TU Delft)
Copyright: © 2016 W. Pieters, Jeroen Barendse, Margaret Ford, Claude P R Heath, Christian W. Probst, Ruud Verbij
DOI: https://doi.org/10.1109/MSP.2016.47
Security Visualization Navigation Cyberattacks E-commerce Hackers Attack navigators Attacker profiles Internet/Web technologies Security economics Security models
More Info
expand_more

Published Date

2016

Language

English

Reuse Rights

Other than for strictly personal use, it is not permitted to download, forward or distribute the text or part of it, without the consent of the author(s) and/or copyright holder(s), unless the work is under an open content license such as Creative Commons.

Faculty

Technology, Policy and Management

Department

Values Technology and Innovation

Research Group

Safety and Security Science

Abstract

The navigation metaphor for cybersecurity merges security architecture models and security economics. By identifying the most efficient routes for gaining access to assets from an attacker's viewpoint, an organization can optimize its defenses along these routes. The well-understood concept of navigation makes it easier to motivate and explain security investment to a wide audience, encouraging strategic security decisions.