TY - JOUR

T1 - The Navigation Metaphor in Security Economics

AU - Pieters, Wolter

AU - Barendse, Jeroen

AU - Ford, Margaret

AU - Heath, Claude

AU - Probst, Christian W.

AU - Verbij, Ruud

PY - 2016/5/25

Y1 - 2016/5/25

N2 - The navigation metaphor for cybersecurity merges security architecture models and security economics. By identifying the most efficient routes for gaining access to assets from an attacker's viewpoint, an organization can optimize its defenses along these routes. The well-understood concept of navigation makes it easier to motivate and explain security investment to a wide audience, encouraging strategic security decisions.

AB - The navigation metaphor for cybersecurity merges security architecture models and security economics. By identifying the most efficient routes for gaining access to assets from an attacker's viewpoint, an organization can optimize its defenses along these routes. The well-understood concept of navigation makes it easier to motivate and explain security investment to a wide audience, encouraging strategic security decisions.

KW - attack navigators

KW - attacker profiles

KW - cyberattacks

KW - e-commerce

KW - hackers

KW - Internet/Web technologies

KW - navigation

KW - security

KW - security economics

KW - security models

KW - visualization

UR - http://www.scopus.com/inward/record.url?scp=84973359544&partnerID=8YFLogxK

U2 - 10.1109/MSP.2016.47

DO - 10.1109/MSP.2016.47

M3 - Article

VL - 14

SP - 14

EP - 21

JO - IEEE Security and Privacy Magazine

JF - IEEE Security and Privacy Magazine

SN - 1540-7993

IS - 3

ER -