The Navigation Metaphor in Security Economics

Wolter Pieters, Jeroen Barendse, Margaret Ford, Claude Heath, Christian W. Probst, Ruud Verbij

Research output: Contribution to journalArticlepeer-review

Abstract

The navigation metaphor for cybersecurity merges security architecture models and security economics. By identifying the most efficient routes for gaining access to assets from an attacker's viewpoint, an organization can optimize its defenses along these routes. The well-understood concept of navigation makes it easier to motivate and explain security investment to a wide audience, encouraging strategic security decisions.
Original languageEnglish
Pages (from-to)14-21
Number of pages8
JournalIEEE Security and Privacy Magazine
Volume14
Issue number3
DOIs
Publication statusPublished - 25 May 2016

Keywords

  • attack navigators
  • attacker profiles
  • cyberattacks
  • e-commerce
  • hackers
  • Internet/Web technologies
  • navigation
  • security
  • security economics
  • security models
  • visualization

Cite this