Economics of Information Security Special Interest Group
Latest updates
This area contains all of the latest information about this group.
- Outputs from the group can be downloaded from the resources area.
- Further information about the group can be found below.
Found 9 articles.
| Date: 13/2/2009 |
David Pym's slides from the meeting of the Economics of Information Security Special Interest Group on the 27th of January are now available to download.
| Date: 12/2/2009 |
The 2009 Workshop on the Economics of Information Security invites original research papers focused on any aspect of the economics of information security, including the economics of privacy. We encourage economists, computer scientists, psychologists, business and management school researchers, law scholars, security and privacy specialists, as well as industry experts, to submit their research and attend the Workshop. Suggested topics include (but are not limited to) empirical and theoretical economic studies of:
Models and optimality of investment strategies in information security
Privacy, confidentiality, and anonymity
Cyber-trust and reputation systems
Interdependent supply-chain security
Intellectual property protection
Information access and provisioning
Risk management and cyber-insurance
Security standards and regulation
Behavioral security and privacy
Cyber-terrorism policy
Organizational security and metrics
Psychological, social, and systemic aspects of risk and security
Phishing, spam, and cybercrime
Vulnerability discovery, disclosure, and patching
This year we should particularly like to encourage papers taking a whole-systems view of information security, encompassing people, technology, and economics.
Important dates and links
Submissions due - 28 February, 2009
Notification of acceptance - 10 April, 2009
Workshop - 24-25 June, 2009
Papers to be submitted online by 23:59 GMT on Saturday, 28 February, 2009, preferably in PDF format. The Submission site (iChair) may be found at the link below.
Submitted manuscripts should represent significant and novel research contributions. Please note that WEIS has no formal formatting guidelines. Previous contributors spanned fields from economics and psychology to computer science and law, each with different norms and expectations about manuscript length and formatting. Advisable rules of thumb include: using past WEIS accepted papers as templates and adhering to your community's publication standards.
We look forward to receiving your submissions and to seeing you in London.
Yvo Desmedt, Christos Ioannidis, David pym, Angela Sasse
| Date: 28/1/2009 |
Slides from the talk given by Mike Jerbic, at yesterday's meeting of the Economics of Information Security Special Interest Group, are now available from the link below.
| Page 1 of 3 |
About
Senior managers with responsibility for information and systems security face the following two problems:
- Poor economic understanding of how to formulate, resource, measure, and value security policies;
- Poor organizational understanding of the attitudes of users to both information and systems security and of their responses to imposed security policies.
The Cyber Security KTN has established an Economics Special Interest Group (SIG), chaired by Professor David Pym from HP Labs, to provide a forum within which the UK information security community may address these issues.
We invite participation from interested parties based in all types and sizes of organizations, public, private, charitable, and governmental.
Some possible initial activities:
- Identify specific issues, ideally across a range of complementary types of organizations, where economic analyses may be of use;
- Education: can we foster interaction between economic and technical aspects of systems security in education programmes (e.g., in MBAs, in Master's degrees in computer science and IT). PhD-level education?
- How can we build a viable community in this area?
- Can we hope to establish a data-sharing protocol in the community (no data, no economics, except at a conceptual level).
Some technical issues:
- Economics of corporate citizenship, in the security space?
- Systems/security interdependency: where do the costs lie?
If you would like to get involved with this SIG, please contact Karen Barnett (kbarnett@QinetiQ.com).
