ACM Portal
  Subscribe (Full Service)    Register (Limited Service, Free)    Login
  Search:   The ACM Digital Library   The Guide
  
ACM Home Page
Please provide us with feedback. Feedback
Using insurance to increase internet security
Full text PdfPdf (216 KB)
Source
Applications, Technologies, Architectures, and Protocols for Computer Communication archive
Proceedings of the 3rd international workshop on Economics of networked systems table of contents
Seattle, WA, USA
SESSION: Session 2 table of contents
Pages 43-48  
Year of Publication: 2008
ISBN:978-1-60558-179-8
Authors
Svetlana Radosavac  DoCoMo Communications Laboratories USA, Inc., Palo Lato, CA, USA
James Kempf  DoCoMo Communications Laboratories USA, Inc., Palo Alto, CA, USA
Ulaş C. Kozat  DoCoMo Communications Laboratories USA, Inc., Palo Alto, CA, USA
Sponsors
ACM: Association for Computing Machinery
SIGCOMM: ACM Special Interest Group on Data Communication
Publisher
ACM  New York, NY, USA
Bibliometrics
Downloads (6 Weeks): 13,   Downloads (12 Months): 105,   Citation Count: 0
Additional Information:

abstract   references   index terms   collaborative colleagues  

Tools and Actions: Request Permissions Request Permissions    Review this Article  
DOI Bookmark: Use this link to bookmark this Article: http://doi.acm.org/10.1145/1403027.1403037
What is a DOI?

ABSTRACT

Managing security risks in the Internet has so far mostly involved methods to reduce the risks and the severity of the damages. Those methods reduce but do not eliminate risk, and the question remains on how to handle the residual risk. Current schemes applied by Internet Service Providers (ISPs) penalize the users, who suffer from the consequences. In this paper, we take a new approach to the problem of Internet security and advocate managing the residual risk by buying insurance against it and consequently re-arranging the incentive chain. We first analyze the current state of the Internet and investigate if it is possible to alleviate the existing problems by introducing insurance schemes. By performing detailed analysis we define an insurance policy that can survive in a competitive market. Following that, we analyze the impact of insurance-based ISPs on the rest of the network and attempt to answer whether using insurance can increase the overall security of the system and provide incentive to other ISPs to implement such policies.


REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

 
1
J. Bolot and M. Lelarge. A New Perspective on Internet Security using Insurance. In Proc. of the IEEE Infocom, pp. 1948--1956, April 2008.
 
2
B. Hillier. The Economics of Asymmetric Insurance. Palgrave Macmillan, 1997.
 
3
R. A. Miura-Ko, B. Yolken, J. Mitchell, and N. Bambos. Security decision-making among interdependent organizations, 2008.
 
4
M. Rothschild and J. Stiglitz. Increasing risk: I. A Definition. Journal of Economic Theory, 2(3):225--243, 1970.

INDEX TERMS

Primary Classification:
  C. Computer Systems Organization
  C.2 COMPUTER-COMMUNICATION NETWORKS
      C.2.0 General
          Subjects: Security and protection (e.g., firewalls)


General Terms:
Economics, Security


Keywords:
correlated risk, ddos, economy, incentive, insurance, risk transfer, security

Collaborative Colleagues:
Svetlana Radosavac: colleagues
James Kempf: colleagues
Ulaş C. Kozat: colleagues

The ACM Portal is published by the Association for Computing Machinery. Copyright © 2009 ACM, Inc.
Terms of Usage   Privacy Policy   Code of Ethics   Contact Us

Useful downloads: Adobe Acrobat    QuickTime    Windows Media Player    Real Player