 Rational Theory of Information Security Battle: Economic Analysis of Preemptive BehaviorMakoto Goto and Ken-ichi Tatsumi No 303, Discussion paper series. A from Graduate School of Economics and Business Administration, Hokkaido University Abstract: We develop a model of a zero-sum information security game by introducing a reward function (called P-function) for cyber attackers into the models of Gordon and Leob (2002) and Tatsumi and Goto (2010). Then the preemptive behavior of cyber attackers or defenders is analyzed. The derivation of the optimal behavior is based on a real options theory and the properties are numerically calculated. Through our numerical analysis cyber attackers are turned out to be rational in the sense that they are very sensitive and quickly respond to both the monetary gain that they will obtain and the vulnerability of defenders. We further observe among others that, in many cases, defenders can optimally preempt. However, this is because attackers have no incentive to attack targets with a small monetary gain. Keywords: information security investment; preemptive behavior; threat; optimal timing; real options theory (search for similar items in EconPapers) Downloads: (external link) Related works: Export reference: BibTeX RIS (EndNote, ProCite, RefMan) HTML/Text Persistent link: https://EconPapers.repec.org/RePEc:hok:dpaper:303 Access Statistics for this paper More papers in Discussion paper series. A from Graduate School of Economics and Business Administration, Hokkaido University Contact information at EDIRC. |
Is your work missing from RePEc? Here is how to contribute.
Questions or problems? Check the EconPapers FAQ or send mail to .
EconPapers is hosted by the
School of Business at Örebro University.