A Strategic Analysis of Information Sharing Among Cyber Attackers

Hausken, Kjell

doi:10.4301/s1807-17752015000200004

Cited by 16 publications

(6 citation statements)

References 25 publications

(22 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The 2016 Guide to Cyber Threat Information Sharing, published by the US National Institute of Standards and Technology (NIST), describes the advantages of IS measures for improving cybersecurity 6 as follows: 5 Of course, hostile cyber actors also engage in IS, an interesting issue beyond the present scope. See Hausken (2015). 6 "Cybersecurity" describes the process of applying a "range of actions for the prevention, mitigation, investigation and handling of cyber threats and incidents, and for the reduction of their effects and of the damage caused by them prior, during and after their occurrence."…”

Section: Defining Information Sharingmentioning

confidence: 99%

Cyber Peace

2022

View full text Add to dashboard Cite

The international community is too often focused on responding to the latest cyber-attack instead of addressing the reality of pervasive and persistent cyber conflict. From ransomware against the city government of Baltimore to state-sponsored campaigns targeting electrical grids in Ukraine and the U.S., we seem to have relatively little bandwidth left over to ask what we can hope for in terms of 'peace' on the Internet, and how to get there. It's also important to identify the long-term implications for such pervasive cyber insecurity across the public and private sectors, and how they can be curtailed. This edited volume analyzes the history and evolution of cyber peace and reviews recent international efforts aimed at promoting it, providing recommendations for students, practitioners and policymakers seeking an understanding of the complexity of international law and international relations involved in cyber peace. This title is also available as Open Access on Cambridge Core.

show abstract

Section: Defining Information Sharingmentioning

confidence: 99%

Cyber Peace

2022

View full text Add to dashboard Cite

show abstract

“…Within information security, game theoretic research has focused on data survivability versus security in information systems [27], substitution and interdependence [28][29][30], returns on information security investment [31,32], and information sharing to prevent attacks [33][34][35][36][37]. See Do et al [38], Hausken and Levitin [39], and Roy et al [40] for reviews on game theoretic cybersecurity research.…”

Section: Information Securitymentioning

confidence: 99%

A Two-Period Game Theoretic Model of Zero-Day Attacks with Stockpiling

Wang

Welburn

Hausken

2020

Games

Self Cite

View full text Add to dashboard Cite

In a two-period game, Player 1 produces zero-day exploits for immediate deployment or stockpiles for future deployment. In Period 2, Player 1 produces zero-day exploits for immediate deployment, supplemented by stockpiled zero-day exploits from Period 1. Player 2 defends in both periods. The article illuminates how players strike balances between how to exert efforts in the two periods, depending on asset valuations, asset growth, time discounting, and contest intensities, and when it is worthwhile for Player 1 to stockpile. Eighteen parameter values are altered to illustrate sensitivity. Player 1 stockpiles when its unit effort cost of developing zero-day capabilities is lower in Period 1 than in Period 2, in which case it may accept negative expected utility in Period 1 and when its zero-day appreciation factor of stockpiled zero-day exploits from Period 1 to Period 2 increases above one. When the contest intensity in Period 2 increases, the players compete more fiercely with each other in both periods, but the players only compete more fiercely in Period 1 if the contest intensity in Period 1 increases.

show abstract

“…(2007) study the investment strategies in defense among defenders in interdependent security scenarios; Ghose et al . study information sharing linked to competition between cyber attackers; Nikoofal and Zhuang (2015), Zhuang et al . (2010), Zhuang et al .…”

Section: Current Information Sharing Architecturesmentioning

confidence: 99%

“…As we discussed, the main inhibitor preventing the private sectors from actively participating in an information sharing system is the concern of information leakage. Interestingly, when it turns to information sharing among cyber hackers, according to Hausken, “an important difference is that whereas two firms incur information leakage costs when sharing information about their vulnerabilities and security breaches, two hackers sharing information about a firm's vulnerabilities do not incur costs in the same manner.” Hausken also suggests that defenders compartmentalize the interaction of hackers with each other or design incentives to isolate them from each other since “hackers may cooperate through sharing information with each other about a firm's vulnerabilities.”…”

Section: Current Information Sharing Architecturesmentioning

confidence: 99%

Perspectives on Cybersecurity Information Sharing among Multiple Stakeholders Using a Decision‐Theoretic Approach

Devine

Zhuang

2017

Risk Analysis

View full text Add to dashboard Cite

The government, private sectors, and others users of the Internet are increasingly faced with the risk of cyber incidents. Damage to computer systems and theft of sensitive data caused by cyber attacks have the potential to result in lasting harm to entities under attack, or to society as a whole. The effects of cyber attacks are not always obvious, and detecting them is not a simple proposition. As the U.S. federal government believes that information sharing on cybersecurity issues among organizations is essential to safety, security, and resilience, the importance of trusted information exchange has been emphasized to support public and private decision making by encouraging the creation of the Information Sharing and Analysis Center (ISAC). Through a decision-theoretic approach, this article provides new perspectives on ISAC, and the advent of the new Information Sharing and Analysis Organizations (ISAOs), which are intended to provide similar benefits to organizations that cannot fit easily into the ISAC structure. To help understand the processes of information sharing against cyber threats, this article illustrates 15 representative information sharing structures between ISAC, government, and other participating entities, and provide discussions on the strategic interactions between different stakeholders. This article also identifies the costs of information sharing and information security borne by different parties in this public-private partnership both before and after cyber attacks, as well as the two main benefits. This article provides perspectives on the mechanism of information sharing and some detailed cost-benefit analysis.

show abstract

A Strategic Analysis of Information Sharing Among Cyber Attackers

Cited by 16 publications

References 25 publications

Cyber Peace

Cyber Peace

A Two-Period Game Theoretic Model of Zero-Day Attacks with Stockpiling

Perspectives on Cybersecurity Information Sharing among Multiple Stakeholders Using a Decision‐Theoretic Approach

Contact Info

Product

Resources

About