C-R-P-M-I: A framework to model cyber risk from phishing and mitigation through insurance
2018
- 257Usage
Metric Options: CountsSelecting the 1-year or 3-year option will change the metrics count to percentiles, illustrating how an article or review compares to other articles or reviews within the selected time period in the same journal. Selecting the 1-year option compares the metrics against other articles/reviews that were also published in the same calendar year. Selecting the 3-year option compares the metrics against other articles/reviews that were also published in the same calendar year plus the two years prior.
Example: if you select the 1-year option for an article published in 2019 and a metric category shows 90%, that means that the article or review is performing better than 90% of the other articles/reviews published in that journal in 2019. If you select the 3-year option for the same article published in 2019 and the metric category shows 90%, that means that the article or review is performing better than 90% of the other articles/reviews published in that journal in 2019, 2018 and 2017.
Citation Benchmarking is provided by Scopus and SciVal and is different from the metrics context provided by PlumX Metrics.
Example: if you select the 1-year option for an article published in 2019 and a metric category shows 90%, that means that the article or review is performing better than 90% of the other articles/reviews published in that journal in 2019. If you select the 3-year option for the same article published in 2019 and the metric category shows 90%, that means that the article or review is performing better than 90% of the other articles/reviews published in that journal in 2019, 2018 and 2017.
Citation Benchmarking is provided by Scopus and SciVal and is different from the metrics context provided by PlumX Metrics.
Metrics Details
- Usage257
- Abstract Views192
- Downloads65
Artifact Description
Increasing cyber-attacks and breaches lead to financial losses in organizations. Throughout this research-in-progress study, we propose the C-R-P-M-I framework to analyze the following – (i) likelihood of an expert hacker, (ii) likelihood of phishing attack on the firm, given that it has sufficiently invested in the preventive measures, (iii) likelihood of successful detection by the firm, and (iv) procure cyber insurance from 3rd party based on the possible risk-attitude of the organization - risk-averse, risk-neutral, and constant-risk. We assume that a firm with insurance enjoys more utility than the one without it. Additionally, we consider three separate function forms to represent the risk-attitudes –linear, quadratic, and logarithmic. In this manner, we outline a novel study in information security that computes the insurance premium to be paid by the firm depending on the intensity as well as the likelihood of attack, which was ignored by extant literature.
Bibliographic Details
Provide Feedback
Have ideas for a new metric? Would you like to see something else here?Let us know