DSpace JSPUI
DSpace preserves and enables easy and open access to all types of digital content including text, images, moving images, mpegs and data sets
Learn More
Please use this identifier to cite or link to this item:
https://dair.nps.edu/handle/123456789/4504| Title: | Cybersecurity Acquisition Framework Based on Risk Management: Economics Perspective |
| Authors: | C. Ariel Pinto, Omer Faruk Keskin Goksel Kucukkaya, Omer Ilker Poyraz Abdulrahman Alfaqiri, Unal Tatar Ali Can Kucukozyigit |
| Keywords: | Cybersecurity Acquisition Framework Risk Management Economics Perspective |
| Issue Date: | 25-Aug-2021 |
| Publisher: | Acquisition Research Program |
| Citation: | Published--Unlimited Distribution |
| Series/Report no.: | Cost Estimation;ODU-CE-21-018 |
| Abstract: | Cyber attacks continuously target organizations, however, the mitigation actions taken for defense are not sufficiently effective. Ability to compute the cost of attacks is crucial to assess the effectiveness of countermeasure investments. In this study, we developed a framework to have a well-informed decision-making process in cybersecurity acquisition by evaluating the business impact caused by the operability losses of assets. We tested the developed framework using various attack and mitigation scenarios. The findings suggest that using a simulation approach to calculate the business impact of cyber attacks provides the ability to support decision-making process. |
| Description: | Cost Estimation / Sponsored Report |
| URI: | https://dair.nps.edu/handle/123456789/4504 |
| Appears in Collections: | Sponsored Acquisition Research & Technical Reports |
Files in This Item:
| File | Description | Size | Format | |
|---|---|---|---|---|
| ODU-CE-21-018.pdf | Technical Report | 1.17 MB | Adobe PDF | View/Open |
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.