Add to ORKGThis paper studies investment in cybersecurity, where both the software vendor and the consumers can invest in security. In addition, the vendor can undertake attack-deterring and damage-control investments. I show that full liability, under which the vendor is liable for all damages, does not achieve efficiency and, in particular, the vendor underinvests in attack deterrence and overinvests in damage control. Instead, the joint use of an optimal standard, which establishes a minimum compliance framework, and partial liability can restore efficiency. This suggests that policies that encourage not only firms, but also consumers to invest in security might be desirable
Abstract. Insurance is based on the diversifiability of individual risks: if an insurance provider m...
With the continuing growth of the use of the Internet for business purposes, the consequences of a p...
With billions of dollars being spent on information security related products and services each year...
This paper studies investment in cybersecurity, where both the software vendor and the consumers can...
This paper examines investments in cybersecurity made by users and software providers with a focus o...
This paper develops a theory of sequential investments in cybersecurity in which the software vendor...
Cybersecurity has become a key factor that determines the success or failure of companies that rely ...
Abstract. In this paper we investigate how to optimally invest in cyber-security controls. We are pa...
The level of firms\u27 information security investment has recently become a critical issue in the m...
Several research works have proposed economic and financial models to determine the optimal amount o...
Losses due to cyber security incidents could be very significant for organisations. This fact forces...
The abundance of flawed software has been identified as the main cause of the poor security of compu...
The economics of information security has recently become a thriving and fast-moving discipline. Sys...
Information security is becoming an increasingly serious problem faced by many enterprises and organ...
With billions of dollars being spent on information security related products and services each year...
Abstract. Insurance is based on the diversifiability of individual risks: if an insurance provider m...
With the continuing growth of the use of the Internet for business purposes, the consequences of a p...
With billions of dollars being spent on information security related products and services each year...
This paper studies investment in cybersecurity, where both the software vendor and the consumers can...
This paper examines investments in cybersecurity made by users and software providers with a focus o...
This paper develops a theory of sequential investments in cybersecurity in which the software vendor...
Cybersecurity has become a key factor that determines the success or failure of companies that rely ...
Abstract. In this paper we investigate how to optimally invest in cyber-security controls. We are pa...
The level of firms\u27 information security investment has recently become a critical issue in the m...
Several research works have proposed economic and financial models to determine the optimal amount o...
Losses due to cyber security incidents could be very significant for organisations. This fact forces...
The abundance of flawed software has been identified as the main cause of the poor security of compu...
The economics of information security has recently become a thriving and fast-moving discipline. Sys...
Information security is becoming an increasingly serious problem faced by many enterprises and organ...
With billions of dollars being spent on information security related products and services each year...
Abstract. Insurance is based on the diversifiability of individual risks: if an insurance provider m...
With the continuing growth of the use of the Internet for business purposes, the consequences of a p...
With billions of dollars being spent on information security related products and services each year...