Ioannisdis, C. and Pym, D. and Williams, J. and Gheyas, I. (2019) 'Resilience in information stewardship.', European journal of operational research., 274 (2). pp. 638-653.
Abstract
Information security is concerned with protecting the confidentiality, integrity, and availability of information systems. System managers deploy their resources with the aim of maintaining target levels of these attributes in the presence of reactive threats. Information stewardship is the challenge of maintaining the sustainability and resilience of the security attributes of (complex, interconnected, multi-agent) information ecosystems. In this paper, we present, in the tradition of public economics, a model of stewardship which addresses directly the question of resilience. We model attacker-target-steward behaviour in a fully endogenous Nash equilibrium setting. We analyse the occurrence of externalities across targets and assess the steward’s ability to internalise these externalities under varying informational assumptions. We apply and simulate this model in the case of a critical national infrastructure example.
| Item Type: | Article |
|---|---|
| Full text: | (AM) Accepted Manuscript Available under License - Creative Commons Attribution Non-commercial No Derivatives. Download PDF (984Kb) |
| Status: | Peer-reviewed |
| Publisher Web site: | https://doi.org/10.1016/j.ejor.2018.10.020 |
| Publisher statement: | © 2018 This manuscript version is made available under the CC-BY-NC-ND 4.0 license http://creativecommons.org/licenses/by-nc-nd/4.0/ |
| Date accepted: | 09 October 2018 |
| Date deposited: | 10 October 2018 |
| Date of first online publication: | 16 October 2018 |
| Date first made open access: | 16 October 2020 |
Save or Share this output
| Export: | |
| Look up in GoogleScholar |
