Title :
Estimating Potential IT Security Losses: An Alternative Quantitative Approach
Author :
Lee, Vincent C S ; Shao, Linyi
Author_Institution :
Monash Univ., Clayton, Vic.
Abstract :
In this article, we look at the potential relationship between the cost of IT security breaches and port-scan records - specifically, we postulate that the irregular movement of port-scan records is quite similar to stock exchange price dynamics, which have been partially satisfied with stochastic movement and Poisson arrival processing. By intuition, stochastic process methodology can emulate an enterprise´s information IT security situation. Our proposed generic approach provides a reasonable procedure to estimate and evaluate IT security risk through data mining of port-scan logs
Keywords :
cost-benefit analysis; data mining; information technology; security of data; stochastic processes; telecommunication security; IT security losses; IT security risk; Poisson arrival processing; data mining; enterprise information IT security; network-based information; network-centric open economy; port-scan record mining; stochastic process; stock exchange price dynamics; Computer security; Cost benefit analysis; Current measurement; Data security; Frequency estimation; Information analysis; Information security; Investments; Loss measurement; Risk management; jump diffusion process; port scan data; quantitative measuring of IT security loss;
Journal_Title :
Security & Privacy, IEEE
DOI :
10.1109/MSP.2006.151
