@inproceedings{85136561e1c44e0cb626ea8943af0df4,
title = "Estimating systematic risk in real-world networks",
abstract = "Social, technical and business connections can all give rise to security risks. These risks can be substantial when individual compromises occur in combinations, and difficult to predict when some connections are not easily observed. A significant and relevant challenge is to predict these risks using only locally-derivable information. We illustrate by example that this challenge can be met if some general topological features of the connection network are known. By simulating an attack propagation on two large real-world networks, we identify structural regularities in the resulting loss distributions, from which we can relate various measures of a network{\textquoteright}s risks to its topology. While deriving these formulae requires knowing or approximating the connective structure of the network, applying them requires only locally-derivable information. On the theoretical side, we show that our risk-estimating methodology gives good approximations on randomly-generated scale-free networks with parameters approximating those in our study. Since many real-world networks are formed through preferential attachment mechanisms that yield similar scale-free topologies, we expect this methodology to have a wider range of applications to risk management whenever a large number of connections is involved.",
keywords = "Cyber-insurance, Internet, Networks, Security, Topology",
author = "Aron Laszka and Benjamin Johnson and Jens Grossklags and Mark Felegyhazi",
note = "Publisher Copyright: {\textcopyright} International Financial Cryptography Association 2014.; 18th International Conference on Financial Cryptography and Data Security, FC 2014 ; Conference date: 03-03-2014 Through 07-03-2014",
year = "2014",
doi = "10.1007/978-3-662-45472-5_27",
language = "English",
series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",
publisher = "Springer Verlag",
pages = "417--435",
editor = "Nicolas Christin and Reihaneh Safavi-Naini",
booktitle = "Financial Cryptography and Data Security - 18th International Conference, FC 2014, Revised Selected Papers",
}