What are the economic considerations in information security

Assignment Help Management Information Sys
Reference no: EM131411089

Module- Case: SECURITY VIA TECHNOLOGY

Case Assignment

1. Revisit Bruce Schneier's presentation in Module 2. This time, please focus on his discussions on cost/benefit analysis.

Schneier, B. (2008). What are the implications of spying? CCTV interview with Bruce Schneier. Retrieved from https://www.youtube.com/watch?v=Ar67N94NYr0

If you don't have access to the presentation, then simply read his article mentioned in Module 2. The article is:

Schneier, Bruce. The Psychology of Security. https://www.schneier.com/essay-155.html

The following article provides an example how such a cost/benefit analysis is considered.

Schneier, Bruce. Security at What Cost? National ID System Is Not Worth The $23 Billion Price Tag. https://www.schneier.com/essay-207.html.

The following article uses some typical accounting measurements for economics of information security.

Gordon, L. A., & Richardson, R. (2004). The New Economics of Information Security. Optimize. April, 83-86. (Trident Online Library: ProQuest)

The following article recaps what we talked about perceptions of security. More importantly, it discusses how people generally do not perceive gains and costs equally. When you conduct a cost/benefit analysis of security, you should keep that in mind.

West, R. (2008). The psychology of security. Communications of the ACM, Apr, 51(4), 34-40.

2. Incentive Design

The economics of information security is not only about cost/benefit analysis of implementing a security measure. Another major topic in economics is mechanism design, which provides principles and methods (like game theory) to help design incentive-compatible mechanisms that ensure participants are better off behaving honestly than dishonestly. See the following article to get a peek:

The Economist. (2007) Intelligent Design. Oct 18th, 2007. https://www.economist.com/finance/displaystory.cfm?story_id=9988840

To know more about the three Nobel Prize winners in 2007 economics division, surf https://nobelprize.org/nobel_prizes/economics/laureates/2007/ and check them out.

It is not easy to understand the revelation principle or the incentive-compatible design. I introduce you the concepts here for the purpose of making you aware of such a method. It takes time to learn how to design a game (a mechanism) that every party is better off by being honest.

Well, on a lighter note. Interestingly, a movie called "Mad Money" tells a story of three female employees of the Federal Reserve Bank stealing money that is about to be shredded. It is not a movie that I recommend to watch a second time, but it is entertaining enough to watch once. The movie is also a fit for the educational purpose here. I suggest you watch it once when you get a chance during this term, and pay special attention to the human factors -- especially the incentives of the thieves and the Chief Security Officer.

3. Other Economics Issues as to Security

As a matter of fact, there are many aspects in applying economics to information security. The following article has mentioned a list of authors that research economics of information security and provided a brief overview of their research:

Anderson R. and Schneier B., (2005) Economics of Information Security, IEEE Security and Privacy 3 (1), 2005, pp. 12-13. (Retrieved May 19, 2008).

To know more in depth, you can choose to view the video (optional):

Simonyi Konferencia 2011 - Economics of Information Security and Privacy. Retrieved from https://www.youtube.com/watch?v=fSfH80DY6S4
You are probably overwhelmed now with all these economics. I hope you also have broadened your views on security and have said "wow" to yourself that now you hold a much broader view on security and how to approach it from economic perspective.

Please write a 4- to 6-page paper discussing what you have learned:

What are the economic considerations of information security and its management?

In preparing your paper, you need to discuss the following issues, and support with arguments and evidence:

• What are the major economic considerations in information security and management?

• Are these economic considerations serving their purposes?

• Why do these economic measures help?

• Discuss economic mechanisms that can improve information security and management.

• Provide a comparative table of the economic measures that you discussed.

Assignment Expectations

Length: Minimum 4-6 pages excluding cover page and references (since a page is about 300 words, this is approximately 1,200-1,800 words).

Reference no: EM131411089

Questions Cloud

Discuss about the roman-byzantine period : Explore the website and then write approximately 300 words about a subject that you found to be of interest and why.
Explain method for collecting each of given types of sample : Researchers want to conduct a survey of students taking introductory statistics in the state. Explain a method for collecting each of the given types of samples:
Explain the process and write down the six numbers chosen : Use a computer random number generator or invent your own random mechanism to draw six numbers. Explain your process, and write down the six numbers chosen.
Is the collection of sets inspected a simple random sample : Is the collection of sets inspected a simple random sample, a stratified random sample, a cluster sample, or a systematic sample?
What are the economic considerations in information security : ITM 517- What are the major economic considerations in information security and management? Are these economic considerations serving their purposes? Why do these economic measures help?
Explain problems you see with leaving two systems in place : Identify any additional information you would need to recommend a solution. Explain any problems you see with leaving the two systems in place, and identify which system would be assigned for new employees.
In what ways have your horizons been expanded : GSBS 110- In what ways have your horizons been expanded in terms of relationships with others through social media or other digital communication? What, if anything, have you given up as a result?
Compare three input devices and three output devices : As a computer technician, you must be familiar with a wide range of Input/Output (I/O) devices including; keyboards, mice, monitors, biometric devices, projectors, cameras, and video or graphics cards. Compare three input devices and three output d..
Explain whether width of confidence interval would increase : Explain whether the width of a confidence interval would increase, decrease, or remain the same as a result of each of the given changes:

Reviews

Write a Review

 

Management Information Sys Questions & Answers

  What are the four steps in making a decision

What are the four types of decisions discussed?- Give an example of each.- What are the four steps in making a decision?

  Develop list of five to seven feature of your application

Develop a list of the top five to seven features of your application. Explain how those features pertain to your viral hook. Explain how those features will help increase wedding revenue.

  Identify the functionality of key code components

Identify the functionality of key code components such as what the functionality of "system.out.println" is along with other code components such as the calendar code and the semicolon.

  How does the group influence the state government

Discuss its connection or relationship to each of the two major political parties in your state. Analyze the interest group's relationship with the two major political parties by addressing these questions: How does the group influence the state gove..

  What factors behind huawei decision to enter canadian market

What were the factors behind Huawei's decision to enter the Canadian market? Use the PESTEL (political, economic, social, technological, environmental and legal) framework to analyze the external environment pertinent to Huawei's entry into Canada..

  Defines the monte carlo method

Assignment: Prepare a minimum 2 full-page paper (not including the title page, abstract, or references) that defines the Monte Carlo Method

  Describe benefit of reduced investment and proportional cost

Describe the benefit of Reduced Investment and Proportional Costs and explain the relationship of this benefit to the pay-for-use billing model.

  Develop a web-based student registration system

develop a Web-based student registration system

  Comparing walmart and amazon business models

Analyze the case study comparing Walmart and Amazon's business models and business strategies

  How should you proceed to make sure the solution requirement

How should you proceed to make sure the solution requirements are aligned when there is only an outdated strategic plan and no KPIs for the organization? Describe how you will proceed and explain the reasons for your approach.

  Advantages and disadvantages of using this type of layout

Review your textbook to discover the section on the four "layout types", and explain advantages and disadvantages of using this type of layout. Consider your own experience (as an employee or a customer) and think about a time that you experienced..

  Describe the operational components of planning

Taylor Inc. - Describe the operational components of planning, sourcing, making, and delivering.

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd