| 基于网络安全保险的信息系统安全投资激励机制 |
| |
| 引用本文: | 顾建强,梅姝娥,仲伟俊.基于网络安全保险的信息系统安全投资激励机制[J].系统工程理论与实践,2015,35(4):1057-1062. |
| |
| 作者姓名: | 顾建强 梅姝娥 仲伟俊 |
| |
| 作者单位: | 东南大学 经济管理学院, 南京 211189 |
| |
| 基金项目: | 国家自然科学基金(71071033) |
| |
| 摘 要: | 网络互联环境下企业被黑客入侵的概率受其自身信息系统安全水平和整个网络安全水平的共同影响.通过研究企业非合作博弈下的个体最优选择的均衡结果和合作下的社会最优投资选择,发现非合作企业在信息系统安全投资时会忽略其他企业的边际外部成本或收益,这种负外部性特征会导致企业自我防御投资额低于社会最优投资水平,从而影响社会福利最大化的实现.为解决这种非合作下的安全投资不足问题,根据网络安全保险设计了一种信息系统安全投资激励机制.结果表明,适当的保险免赔额可以在一定程度上将这种负外部性内部化,进而改善了企业安全水平,并有效提高了社会福利.
|
| 关 键 词: | 保险 信息系统安全 自我防御投资 激励 |
| 收稿时间: | 2013-10-08 |
Cyber insurance as an incentive for information system security |
| |
| GU Jian-qiang,MEI Shu-e,ZHONG Wei-jun.Cyber insurance as an incentive for information system security[J].Systems Engineering —Theory & Practice,2015,35(4):1057-1062. |
| |
| Authors: | GU Jian-qiang MEI Shu-e ZHONG Wei-jun |
| |
| Institution: | School of Economics and Management, Southeast University, Nanjing 211189, China |
| |
| Abstract: | A firm's probability to incur loss (from being attacked) depends on both his security level and the network security level. We fully characterize equilibria of the noncooperative game, which give us the individually optimal security choices. And we also get the socially choices. After comparing these two equilibrium results, it is found that the nature of interdependent causes a negative externality that results in under-investment in self-defense relative to the socially efficient level by ignoring marginal external costs or benefits conferred on others. To solve the above mentioned problem, we design cyber insurance as an incentive for information system security investment. The key result is that limiting insurance coverage through deductibles can partially internalize this externality and thereby improve individual and social welfare. |
| |
| Keywords: | insurance information system security self-defense investment incentive |
| 本文献已被 CNKI 等数据库收录! |
| 点击此处可从《系统工程理论与实践》浏览原始摘要信息 |
| 点击此处可从《系统工程理论与实践》下载免费的PDF全文 |
|
