Team for Research in
Ubiquitous Secure Technology

When Information Improves Information Security
Jens Grossklags, Benjamin Johnson, Nicolas Christin

Citation
Jens Grossklags, Benjamin Johnson, Nicolas Christin. "When Information Improves Information Security". Proceedings of the Fourteenth International Conference on Financial Cryptography and Data Security (FC'10), January, 2010.

Abstract
This paper presents a formal, quantitative evaluation of the impact of bounded-rational security decision-making subject to limited information and externalities. We investigate a mixed economy of an individual rational expert and several naıve near-sighted agents. We further model three canonical types of negative externalities (weakest-link, best shot and total effort), and study the impact of two information regimes on the threat level agents are facing.

Electronic downloads

Citation formats  
  • HTML
    Jens Grossklags, Benjamin Johnson, Nicolas Christin. <a
    href="http://www.truststc.org/pubs/660.html"
    >When Information Improves Information
    Security</a>, Proceedings of the Fourteenth
    International Conference on Financial Cryptography and Data
    Security (FC'10), January, 2010.
  • Plain text
    Jens Grossklags, Benjamin Johnson, Nicolas Christin.
    "When Information Improves Information Security".
    Proceedings of the Fourteenth International Conference on
    Financial Cryptography and Data Security (FC'10), January,
    2010.
  • BibTeX
    @inproceedings{GrossklagsJohnsonChristin10_WhenInformationImprovesInformationSecurity,
        author = {Jens Grossklags and Benjamin Johnson and Nicolas
                  Christin},
        title = {When Information Improves Information Security},
        booktitle = {Proceedings of the Fourteenth International
                  Conference on Financial Cryptography and Data
                  Security (FC'10)},
        month = {January},
        year = {2010},
        abstract = {This paper presents a formal, quantitative
                  evaluation of the impact of bounded-rational
                  security decision-making subject to limited
                  information and externalities. We investigate a
                  mixed economy of an individual rational expert and
                  several naıve near-sighted agents. We further
                  model three canonical types of negative
                  externalities (weakest-link, best shot and total
                  effort), and study the impact of two information
                  regimes on the threat level agents are facing.},
        URL = {http://www.truststc.org/pubs/660.html}
    }
    

Posted by Nicolas Christin on 28 Mar 2010.
For additional information, see the Publications FAQ or contact webmaster at www truststc org.

Notice: This material is presented to ensure timely dissemination of scholarly and technical work. Copyright and all rights therein are retained by authors or by other copyright holders. All persons copying this information are expected to adhere to the terms and constraints invoked by each author's copyright.