Cybersecurity Investment Guidance: Extensions of the Gordon and Loeb Model

HTML  XML Download Download as PDF (Size: 339KB)  PP. 15-28  
DOI: 10.4236/jis.2016.72002    2,834 Downloads   4,372 Views  Citations

ABSTRACT

Extensions of the Gordon-Loeb [1] and the Gordon-Loeb-Lucyshyn-Zhou [2] models are presented based on mathematical equivalency with a generalized homeland security model. The extensions include limitations on changes in the probability of attack, simultaneous effects on probability and loss, diversion of attack, and shared non-information defenses. Legal cases are then investigated to assess approximate magnitudes of external effects and the extent they are internalized by the legal system.

Share and Cite:

Farrow, S. and Szanton, J. (2016) Cybersecurity Investment Guidance: Extensions of the Gordon and Loeb Model. Journal of Information Security, 7, 15-28. doi: 10.4236/jis.2016.72002.

Copyright © 2024 by authors and Scientific Research Publishing Inc.

Creative Commons License

This work and the related PDF file are licensed under a Creative Commons Attribution 4.0 International License.