The Economic Impact of Cybersecurity
Understanding the economic
impact of cybersecurity issuesprevention, detection, mitigation, and
recoveryrequires models of economic relationships that support good
decision-making. However, realistic models must be based on data derived both
from the realities of investment in cybersecurity and consequences of actual
attacks. In this section, we describe the nature of the data needed, the actual
data available for use by modelers and decision makers, and the gap between
ideal and real.
For any organization,
understanding the nature of the cybersecurity threat requires knowing at least
the following elements:
number and types of assets
needing protection
number and types of
vulnerabilities that exist in a system
number and types of likely
threats to a system
Similarly, understanding the
realities of cyber attack also requires knowing the number and types of attacks
that can and do occur, and the costs associated with restoring the system to
its pre-attack state and then taking action to prevent future attacks.
Both the types of possible
attacks and the vulnerabilities of systems to potential cyber attacks are
fairly well understood. However, the larger direct and indirect consequences of
such attacks are still largely unknown. We may know that a system has been
slowed or stopped for a given number of days, but often we have no good sense
of the repercussions as other systems can no longer rely on the system for its
information or processing. For instance, an attack on a bank can have short-
and long-term effects on the travel and credit industries, which in turn can
affect food supply. This lack of understanding has consequences among
interconnected computers.
Related Topics
Privacy Policy, Terms and Conditions, DMCA Policy and Compliant
Copyright © 2018-2023 BrainKart.com; All Rights Reserved. Developed by Therithal info, Chennai.