2009
Managing Information Risk and the Economics of SecurityEditors:

• M. Eric Johnson
• …show all 1hide
  

ISBN: 978-0-387-09761-9 (Print) 978-0-387-09762-6  (Online)



Johnson, M. Eric (Ed.)


2009

ISBN 978-0-387-09762-6

  Immediately available per PDF-download (no DRM, watermarked)

About this book

• First book to primarily cover economic, behavioral, and legal factors that drive information security risks and solutions
•                                         Designed exclusively for managers, policy makers, and researchers focusing on economics of information security
  

The lifeblood of the global economy, information has become a source of growing risk as more firms maintain information online. With risks now fueled by sophisticated, organized, malicious groups, information security requires not only technology, but a clear understanding of potential risks, decision-making behaviors, and metrics for evaluating business and policy options.
Managing Information Risk and the Economics of Security, an edited volume contributed by well-established researchers in the field worldwide, presents the latest research on economics driving both the risks and the solutions. Covering the implications of policy within firms and across countries, this volume provides managers and policy makers with new thinking on how to manage risk.
Managing Information Risk and the Economics of Security is designed for managers, policy makers, and researchers focusing on economics of information security, as well as for advanced-level students in computer science, business management and economics.

Table of contents Preface.- Managing Information Risk and the Economics of Security .- Nonbanks and Risk in Retail Payments: EU and U.S..- Security Economics and European Policy.- BORIS –Business ORiented management of Information Security.- Productivity Space of Information Security in an Extension of the.- Gordon-Loeb's Investment Model.- Communicating the Economic Value of Security Investments: Value at.- Security Risk.- Modelling the Human and Technological Costs and Benefits of USB Memory.- Stick Security.- The Value of Escalation and Incentives in Managing Information Access.- Reinterpreting the Disclosure Debate for Web Infections.- The Impact of Incentives on Notice and Take-down.- Studying Malicious Websites and the Underground Economy on the Chinese.- Web.- Botnet Economics: Uncertainty Matters.- Cyber Insurance as an Incentive for Internet Security.- Conformity or Diversity: Social Implications of Transparency in Personal.- Data Processing.- Is Distributed Trust More Trustworthy?.- Index.

• Reviews
  

From the reviews:
"The book is a collection of recent, relevant papers by well-established researchers in the field of information security management. The book is well edited, the style and format is consistent, and the quality of production is high. There is a detailed table of contents and a simple index, typical of an edited collection of papers. The book will be useful to those interested in information security, particularly those involved in understanding and managing information risk." (David B. Henderson, ACM Computing Reviews, June, 2009)