| Autor: |
Pinto, C. Ariel, Keskin, Omer Faruk, Kucukkaya, Goksel, Poyraz, Omer Ilker, Alfaqiri, Abdulrahman, Tatar, Unal, Kucukozyigit, Ali Can |
| Přispěvatelé: |
Acquisition Research Program, Naval Postgraduate School (U.S.) |
| Rok vydání: |
2021 |
| Popis: |
Acquisition Research Program Sponsored Report Series Sponsored Acquisition Research & Technical Reports Cyber attacks continuously target organizations, however, the mitigation actions taken for defense are not sufficiently effective. Ability to compute the cost of attacks is crucial to assess the effectiveness of countermeasure investments. In this study, we developed a framework to have a well-informed decision-making process in cybersecurity acquisition by evaluating the business impact caused by the operability losses of assets. We tested the developed framework using various attack and mitigation scenarios. The findings suggest that using a simulation approach to calculate the business impact of cyber attacks provides the ability to support decision-making process. Approved for public release; distribution is unlimited. Approved for public release; distribution is unlimited. |
| Databáze: |
OpenAIRE |
| Externí odkaz: |
|
