The Navigation Metaphor in Security Economics

Wolter Pieters, Jeroen Barendse, Margaret Ford, Claude P. R. Heath, Christian W. Probst, Ruud Verbij

Research output: Contribution to journalJournal articleResearchpeer-review

304 Downloads (Pure)

Abstract

The navigation metaphor for cybersecurity merges security architecture models and security economics. By identifying the most efficient routes for gaining access to assets from an attacker's viewpoint, an organization can optimize its defenses along these routes. The well-understood concept of navigation makes it easier to motivate and explain security investment to a wide audience, encouraging strategic security decisions.
Original languageEnglish
JournalI E E E Security & Privacy Magazine
Volume14
Issue number3
Pages (from-to)14-21
Number of pages8
ISSN1540-7993
DOIs
Publication statusPublished - 2016

Keywords

  • Electrical and Electronic Engineering
  • Computer Networks and Communications
  • Law
  • attack navigators
  • attacker profiles
  • cyberattacks
  • e-commerce
  • hackers
  • Internet/Web technologies
  • navigation
  • security
  • security economics
  • security models
  • visualization
  • COMPUTER
  • software architecture
  • decision making
  • security of data
  • strategic security decision
  • navigation metaphor
  • cybersecurity
  • security architecture model
  • access control
  • Biological system modeling
  • Economics
  • Computer security
  • Navigation
  • Electonic commerce
  • Web servuces
  • Modeling
  • Data security
  • Software engineering techniques

Cite this

Pieters, W., Barendse, J., Ford, M., Heath, C. P. R., Probst, C. W., & Verbij, R. (2016). The Navigation Metaphor in Security Economics. I E E E Security & Privacy Magazine, 14(3), 14-21. https://doi.org/10.1109/MSP.2016.47