A scalable approach to joint cyber insurance and Security-as-a-Service provisioning in cloud computing
As computing services are increasingly cloud-based, corporations are investing in cloud-based security measures. The Security-as-a-Service (SECaaS) paradigm allows customers to outsource security to the cloud, through the payment of a subscription fee. However, no security system is bulletproof, and...
Saved in:
| Main Authors: | , , , , |
|---|---|
| Format: | text |
| Language: | English |
| Published: |
Institutional Knowledge at Singapore Management University
2019
|
| Subjects: | |
| Online Access: | https://ink.library.smu.edu.sg/sis_research/7167 https://ink.library.smu.edu.sg/context/sis_research/article/8170/viewcontent/ScalableApproachJointCyberInsurance_av.pdf |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Institution: | Singapore Management University |
| Language: | English |
| id |
sg-smu-ink.sis_research-8170 |
|---|---|
| record_format |
dspace |
| spelling |
sg-smu-ink.sis_research-81702022-05-31T03:26:13Z A scalable approach to joint cyber insurance and Security-as-a-Service provisioning in cloud computing CHASE, Jonathan David NIYATO, Dusit WANG, Ping CHAISIRI, Sivadon KO, Ryan K. L. As computing services are increasingly cloud-based, corporations are investing in cloud-based security measures. The Security-as-a-Service (SECaaS) paradigm allows customers to outsource security to the cloud, through the payment of a subscription fee. However, no security system is bulletproof, and even one successful attack can result in the loss of data and revenue worth millions of dollars. To guard against this eventuality, customers may also purchase cyber insurance to receive recompense in the case of loss. To achieve cost effectiveness, it is necessary to balance provisioning of security and insurance, even when future costs and risks are uncertain. To this end, we introduce a stochastic optimization model to optimally provision security and insurance services in the cloud. Since the model we design is a mixed integer problem, we also introduce a partial Lagrange multiplier algorithm that takes advantage of the total unimodularity property to find the solution in polynomial time. We also apply sensitivity analysis to find the exact tolerance of decision variables to parameter changes. We show the effectiveness of these techniques using numerical results based on real attack data to demonstrate a realistic testing environment, and find that security and insurance are interdependent. 2019-07-01T07:00:00Z text application/pdf https://ink.library.smu.edu.sg/sis_research/7167 info:doi/10.1109/TDSC.2017.2703626 https://ink.library.smu.edu.sg/context/sis_research/article/8170/viewcontent/ScalableApproachJointCyberInsurance_av.pdf http://creativecommons.org/licenses/by-nc-nd/4.0/ Research Collection School Of Computing and Information Systems eng Institutional Knowledge at Singapore Management University Cloud computing cyber insurance security as a service partial Lagrange multiplier method sensitivity analysis Databases and Information Systems Information Security OS and Networks |
| institution |
Singapore Management University |
| building |
SMU Libraries |
| continent |
Asia |
| country |
Singapore Singapore |
| content_provider |
SMU Libraries |
| collection |
InK@SMU |
| language |
English |
| topic |
Cloud computing cyber insurance security as a service partial Lagrange multiplier method sensitivity analysis Databases and Information Systems Information Security OS and Networks |
| spellingShingle |
Cloud computing cyber insurance security as a service partial Lagrange multiplier method sensitivity analysis Databases and Information Systems Information Security OS and Networks CHASE, Jonathan David NIYATO, Dusit WANG, Ping CHAISIRI, Sivadon KO, Ryan K. L. A scalable approach to joint cyber insurance and Security-as-a-Service provisioning in cloud computing |
| description |
As computing services are increasingly cloud-based, corporations are investing in cloud-based security measures. The Security-as-a-Service (SECaaS) paradigm allows customers to outsource security to the cloud, through the payment of a subscription fee. However, no security system is bulletproof, and even one successful attack can result in the loss of data and revenue worth millions of dollars. To guard against this eventuality, customers may also purchase cyber insurance to receive recompense in the case of loss. To achieve cost effectiveness, it is necessary to balance provisioning of security and insurance, even when future costs and risks are uncertain. To this end, we introduce a stochastic optimization model to optimally provision security and insurance services in the cloud. Since the model we design is a mixed integer problem, we also introduce a partial Lagrange multiplier algorithm that takes advantage of the total unimodularity property to find the solution in polynomial time. We also apply sensitivity analysis to find the exact tolerance of decision variables to parameter changes. We show the effectiveness of these techniques using numerical results based on real attack data to demonstrate a realistic testing environment, and find that security and insurance are interdependent. |
| format |
text |
| author |
CHASE, Jonathan David NIYATO, Dusit WANG, Ping CHAISIRI, Sivadon KO, Ryan K. L. |
| author_facet |
CHASE, Jonathan David NIYATO, Dusit WANG, Ping CHAISIRI, Sivadon KO, Ryan K. L. |
| author_sort |
CHASE, Jonathan David |
| title |
A scalable approach to joint cyber insurance and Security-as-a-Service provisioning in cloud computing |
| title_short |
A scalable approach to joint cyber insurance and Security-as-a-Service provisioning in cloud computing |
| title_full |
A scalable approach to joint cyber insurance and Security-as-a-Service provisioning in cloud computing |
| title_fullStr |
A scalable approach to joint cyber insurance and Security-as-a-Service provisioning in cloud computing |
| title_full_unstemmed |
A scalable approach to joint cyber insurance and Security-as-a-Service provisioning in cloud computing |
| title_sort |
scalable approach to joint cyber insurance and security-as-a-service provisioning in cloud computing |
| publisher |
Institutional Knowledge at Singapore Management University |
| publishDate |
2019 |
| url |
https://ink.library.smu.edu.sg/sis_research/7167 https://ink.library.smu.edu.sg/context/sis_research/article/8170/viewcontent/ScalableApproachJointCyberInsurance_av.pdf |
| _version_ |
1770576250109165568 |