Resilience in Information Stewardship

Ioannidis, Christos, Pym, David, Williams, Julian and Gheyas, Iffat (2018). Resilience in Information Stewardship. European Journal of Operational Research ,

Abstract

Information security is concerned with protecting the confidentiality, integrity, and availability of information systems. System managers deploy their resources with the aim of maintaining target levels of these attributes in the presence of reactive threats. Information stewardship is the challenge of maintaining the sustainability and resilience of the security attributes of (complex, interconnected, multi-agent) information ecosystems. In this paper, we present, in the tradition public economics, a model of stewardship which addresses directly the question of resilience. We model attacker-target-steward behaviour in a fully endogenous Nash equilibrium setting. We analyse the occurrence of externalities across targets and assess the steward’s ability to internalise these externalities under varying informational assumptions. We apply and simulate this model in the case of a critical national infrastructure example.

Publication DOI: https://doi.org/10.1016/j.ejor.2018.10.020
Divisions: Aston Business School > Economics finance & entrepreneurship
Aston Business School
Additional Information: © 2018, Elsevier. Licensed under the Creative Commons Attribution-NonCommercial-NoDerivatives 4.0 International http://creativecommons.org/licenses/by-nc-nd/4.0/
Full Text Link:
Related URLs: https://linking ... 377221718308737 (Publisher URL)
Published Online Date: 2018-10-16
Authors: Ioannidis, Christos
Pym, David
Williams, Julian
Gheyas, Iffat

Download

[img]

Version: Accepted Version

Access Restriction: Restricted to Repository staff only until 16 October 2020.

License: Creative Commons Attribution Non-commercial No Derivatives


Export / Share Citation


Statistics

Additional statistics for this record