Abstract
An economic perspective is essential but often neglected for understanding the state of cybersecurity, especially when security is increasingly viewed as a matter of national security. Analyze and learn the core economic principles of cybersecurity can help interpret many security phenomena and various challenges we are facing, as well as help to improve cybersecurity industry moving forward. In this paper, we will outline in greater detail the economic characteristics and principles plaguing cybersecurity: Invisibility of benefits, Trade-offs between security and other values, Asymmetries of defend and attack, Dynamic and uncertainty situations, social gains and losses. Then we discuss the pros and cons of the strategies that commonly used now to overcome these economic barriers in the cybersecurity context. Finally, we make several actionable policy recommendations for policy changes and market directions to improve cybersecurity.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
Savage, S., Schneider, F.B.: Security is not a commodity: the road forward for cybersecurity research: a white paper prepared for the computing community consortium committee of the computing research association. http://cra.org/ccc/resources/ccc-led-whitepapers/
Taddeo, M., Bosco, F.: We must treat cybersecurity as a public good. Here's why. World Economic Forum, Centre for Cybersecurity (2019)
The White House. Executive Order on Improving the Nation’s Cybersecurity (2021). https://www.whitehouse.gov/briefing-room/presidential-actions/2021/05/12/executive-order-on-improving-the-nations-cybersecurity/
Floridi, L.: The Fourth Revolution, How the Infosphere is Reshaping Human Reality. Oxford University Press, Oxford (2014)
Moore, T.: Introducing the economics of cybersecurity: principles and policy options. In: Proceedings Workshop Deterring Cyber Attacks: Informing Strategies and Developing Options for US Policy, Nat’l Academies Press (2010). www.cs.brown.edu/courses/csci1950-p/sources/lec27/Moore.pdf
Kobayashi, B.H.: An economic analysis of the private and social costs of the provision of cybersecurity and other public security goods. Supreme Court Econ. Rev. 14, 261–280 (2006)
Subramanian, V.: Quantum and the Future of Cryptography. National defense magazine (2021)
Chronopoulos, M., Panaousis, E., Grossklags, J.: An options approach to cybersecurity investment. IEEE Access 6, 12175–12186 (2018)
Lesk, M.: Cybersecurity and economics. IEEE Secur. Priv. 9, 76–79 (2011)
Anderson, R., Moore, T.: The economics of information security. Science 314(5799), 610–613 (2006)
Borchart, L.: The cybersecurity market is rapidly growing. highlights from a 2020 global market insights report on the growing cybersecurity market. https://techchannel.com/Trends/03/2021/cybersecurity-market-growing
World Economic Forum in collaboration with the University of Oxford. Future Series: Cybersecurity, emerging technology and systemic risk. https://www.weforum.org/reports/future-series-cybersecurity-emerging-technology-and-systemic-risk
Nissenbaum, H.: Where computer security meets national security. Ethics Inf. Technol. 7(2), 61–73 (2005). https://doi.org/10.1007/s10676-005-4582-3
Ford, K.: The future of cybersecurity is collaboration. https://www.cybergrx.com/resources/research-and-insights/blog/the-future-of-cybersecurity-is-collaboration
NSA Cybersecurity Collaboration Center. National Security Agency/Central Security Service. https://www.nsa.gov/About/Cybersecurity-Collaboration-Center/
Cybersecurity Policies. Shaping Europe’s digital future. European Commission. https://digital-strategy.ec.europa.eu/en/policies/cybersecurity-policies
Joint Statement of Intent Between the U.S. Department of Homeland Security and the Israel National Cyber Directorate. Homeland Security (2022). https://www.dhs.gov/news/2022/03/02/joint-statement-intent-between-us-department-homeland-security-and-israel-national
To counter cyber risks to critical sectors such as aviation we need international collaboration. World Economic Forum. https://www.weforum.org/agenda/2021/04/cybersecurity-aviation-international-regulation/
Johnson, C., Badger, L., Waltermire, D., Snyder, J., Skorupka, C.: Guide to cyber threat information sharing. NIST Special Publication 800-150
Baadsgaard, J.: Cybersecurity Laws & Regulations. https://www.ipohub.org/cybersecurity-laws-regulations/
Assaf, D.: Government intervention in information infrastructure protection. In: Goetz, E., Shenoi, S. (eds.) Critical Infrastructure Protection, vol. 253, pp. 29–39. Springer, Heidelberg (2008). https://doi.org/10.1007/978-0-387-75462-8_3
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2022 The Author(s), under exclusive license to Springer Nature Singapore Pte Ltd.
About this paper
Cite this paper
Xu, F., Xu, J. (2022). Economic Perspective of Cybersecurity: Principles and Strategies. In: Su, C., Sakurai, K. (eds) Science of Cyber Security - SciSec 2022 Workshops. SciSec 2022. Communications in Computer and Information Science, vol 1680. Springer, Singapore. https://doi.org/10.1007/978-981-19-7769-5_9
Download citation
DOI: https://doi.org/10.1007/978-981-19-7769-5_9
Published:
Publisher Name: Springer, Singapore
Print ISBN: 978-981-19-7768-8
Online ISBN: 978-981-19-7769-5
eBook Packages: Computer ScienceComputer Science (R0)