Economics at your fingertips  

Attack-Aware Cyber Insurance of Interdependent Computer Networks

Rui Zhang () and Quanyan Zhu ()
Additional contact information
Rui Zhang: Department of Electrical and Computer Engineering, Tandon School of Engineering, New York University, USA
Quanyan Zhu: Department of Electrical and Computer Engineering, Tandon School of Engineering, New York University, USA

No 16-18, Working Papers from NET Institute

Abstract: Cyber insurance is a valuable approach to mitigate further the cyber risk and its loss in addition to the deployment of technological cyber defense solutions such as intrusion detection systems and firewalls. An effective cyber insurance policy can reduce the number of successful cyber attacks by incentivizing the adoption of preventative measures and the implementation of best practices of the users. To study cyber insurance in a holistic manner, we first establish a bi-level game-theoretic model that nests a zero-sum game in a moral-hazard type of principal-agent game to capture complex interactions between a user, an attacker, and the insurer. The game framework provides an integrative view of the cyber insurance and enables a systematic design of incentive compatible and attack-aware insurance policy. The framework is further extended to study a network of users and their risk interdependencies. We completely characterize the equilibrium solutions of the bi-level game. Our analytical results provide a fundamental limit on insurability, predict the Peltzman effect, and reveal the principles of zero operating profit and the linear insurance policy of the insurer. We provide analytical results and numerical experiments to corroborate the analytical results and demonstrate the network effects as a result of the strategic interactions among three types of players.

Keywords: Cyber Insurance; Network Security; Moral Hazard; Information Asymmetry; Network Effects; Security Games; Mechanism Design (search for similar items in EconPapers)
JEL-codes: D80 D86 G22 (search for similar items in EconPapers)
Pages: 48 pages
Date: 2016-09
New Economics Papers: this item is included in nep-gth, nep-ias, nep-ict and nep-net
References: View references in EconPapers View complete reference list from CitEc

Downloads: (external link) (application/pdf)

Related works:
This item may be available elsewhere in EconPapers: Search for items with the same title.

Export reference: BibTeX RIS (EndNote, ProCite, RefMan) HTML/Text

Persistent link:

Access Statistics for this paper

More papers in Working Papers from NET Institute
Bibliographic data for series maintained by Nicholas Economides ().

Page updated 2024-04-17
Handle: RePEc:net:wpaper:1618