EconPapers    
Economics at your fingertips  

EconPapers Home
About EconPapers

Working Papers
Journal Articles
Books and Chapters
Software Components

Authors

JEL codes
New Economics Papers

Advanced Search


EconPapers FAQ
Archive maintainers FAQ
Cookies at EconPapers

Format for printing

The RePEc blog
The RePEc plagiarism page

 

Attack-Aware Cyber Insurance of Interdependent Computer Networks

Rui Zhang () and Quanyan Zhu ()
Additional contact information
Rui Zhang: Department of Electrical and Computer Engineering, Tandon School of Engineering, New York University, USA
Quanyan Zhu: Department of Electrical and Computer Engineering, Tandon School of Engineering, New York University, USA

No 16-18, Working Papers from NET Institute

Abstract: Cyber insurance is a valuable approach to mitigate further the cyber risk and its loss in addition to the deployment of technological cyber defense solutions such as intrusion detection systems and firewalls. An effective cyber insurance policy can reduce the number of successful cyber attacks by incentivizing the adoption of preventative measures and the implementation of best practices of the users. To study cyber insurance in a holistic manner, we first establish a bi-level game-theoretic model that nests a zero-sum game in a moral-hazard type of principal-agent game to capture complex interactions between a user, an attacker, and the insurer. The game framework provides an integrative view of the cyber insurance and enables a systematic design of incentive compatible and attack-aware insurance policy. The framework is further extended to study a network of users and their risk interdependencies. We completely characterize the equilibrium solutions of the bi-level game. Our analytical results provide a fundamental limit on insurability, predict the Peltzman effect, and reveal the principles of zero operating profit and the linear insurance policy of the insurer. We provide analytical results and numerical experiments to corroborate the analytical results and demonstrate the network effects as a result of the strategic interactions among three types of players.

Keywords: Cyber Insurance; Network Security; Moral Hazard; Information Asymmetry; Network Effects; Security Games; Mechanism Design (search for similar items in EconPapers)
JEL-codes: D80 D86 G22 (search for similar items in EconPapers)
Pages: 48 pages
Date: 2016-09
New Economics Papers: this item is included in nep-gth, nep-ias, nep-ict and nep-net
References: View references in EconPapers View complete reference list from CitEc
Citations:

Downloads: (external link)
http://www.netinst.org/Zhu_16-18.pdf (application/pdf)
no

Related works:
This item may be available elsewhere in EconPapers: Search for items with the same title.

Export reference: BibTeX RIS (EndNote, ProCite, RefMan) HTML/Text

Persistent link: https://EconPapers.repec.org/RePEc:net:wpaper:1618

Access Statistics for this paper

More papers in Working Papers from NET Institute
Bibliographic data for series maintained by Nicholas Economides ().

 
Share

RePEc
This site is part of RePEc and all the data displayed here is part of the RePEc data set.

Is your work missing from RePEc? Here is how to contribute.

Questions or problems? Check the EconPapers FAQ or send mail to .

Örebro UniversityEconPapers is hosted by the School of Business at Örebro University.

Page updated 2025-04-18
Handle: RePEc:net:wpaper:1618