The Navigation Metaphor in Security Economics

None, None; None, None; None, None; None, None; None, None; None, None

The Navigation Metaphor in Security Economics

Journal Article (2016)

Author(s)

Wolter Pieters (TU Delft - Technology, Policy and Management)

Jeroen Barendse (LUST)

Margaret Ford (Consult Hyperion)

Claude P R Heath (Royal Holloway University of London)

Christian W. Probst (Technical University of Denmark (DTU))

Ruud Verbij (KPMG Netherlands)

Research Group

Safety and Security Science

Security Visualization Navigation Cyberattacks E-commerce Hackers Attack navigators Attacker profiles Internet/Web technologies Security economics Security models

DOI related publication

https://doi.org/10.1109/MSP.2016.47 Final published version

To reference this document use

https://resolver.tudelft.nl/uuid:60b75166-7de8-49c4-be2a-9ddd1f956945

More Info

expand_more

Publication Year

2016

Language

English

Research Group

Safety and Security Science

Issue number

3

Volume number

14

Article number

7478534

Pages (from-to)

14-21

Downloads counter

283

Collections

Institutional Repository

Reuse Rights

Other than for strictly personal use, it is not permitted to download, forward or distribute the text or part of it, without the consent of the author(s) and/or copyright holder(s), unless the work is under an open content license such as Creative Commons.

Abstract

The navigation metaphor for cybersecurity merges security architecture models and security economics. By identifying the most efficient routes for gaining access to assets from an attacker's viewpoint, an organization can optimize its defenses along these routes. The well-understood concept of navigation makes it easier to motivate and explain security investment to a wide audience, encouraging strategic security decisions.

Files

SP_SPSI_2015_01_0016.R2_Pieter... (pdf)

(pdf | 0.457 Mb)

License info not available