Evaluating the risk of cyber-attacks is essential for companies. There is a growing need to develop and implement effective strategies for cyber security, data security, and privacy protection. With the rise in cyber threats, assessing the risk of a successful attack is increasingly important for companies and their customers. While quantitative loss data are seldom available, experts can provide qualitative evaluations of attack severity on an ordinal scale. Hence, the ordered response model, particularly the cumulative link model, is suitable for analyzing cyber risk. This model explains the experts’ assessments of the severity of a cyber-attack based on a set of explanatory variables describing the characteristics of the attack under consideration, including measures of the attack’s impact diffusion through a network structure. Additionally, a detailed analysis of a real dataset is offered, documenting major cyber-attacks worldwide from 2017-2018.
Ordered response models for cyber risk assessment / S. Facchinetti, S. Angela Osmetti, C. Tarantola - In: Programme and abstracts : CFE-CMStatistics 2024, 18th International Conference on Computational and Financial Econometrics (CFE 2024) and Computational and Methodological Statistics (CMStatistics 2024) / [a cura di] A. Colubi, E. Kontoghiorghes, M. Pitt. - London : ECOSTA Econometrics and Statistics, 2024. - ISBN 978-9925-7812-8-7. - pp. 144-144 (( CFE-CMStatistics London 2024.
Ordered response models for cyber risk assessment
S. Facchinetti;C. Tarantola
2024
Abstract
Evaluating the risk of cyber-attacks is essential for companies. There is a growing need to develop and implement effective strategies for cyber security, data security, and privacy protection. With the rise in cyber threats, assessing the risk of a successful attack is increasingly important for companies and their customers. While quantitative loss data are seldom available, experts can provide qualitative evaluations of attack severity on an ordinal scale. Hence, the ordered response model, particularly the cumulative link model, is suitable for analyzing cyber risk. This model explains the experts’ assessments of the severity of a cyber-attack based on a set of explanatory variables describing the characteristics of the attack under consideration, including measures of the attack’s impact diffusion through a network structure. Additionally, a detailed analysis of a real dataset is offered, documenting major cyber-attacks worldwide from 2017-2018.
| File | Dimensione | Formato | |
|---|---|---|---|
|
BoA.pdf
accesso aperto
Tipologia:
Publisher's version/PDF
Licenza:
Creative commons
Dimensione
7.15 MB
Formato
Adobe PDF
|
7.15 MB | Adobe PDF | Visualizza/Apri |
Pubblicazioni consigliate
I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.
