Using Financial Instruments to Transfer the Information Security Risks
For many individuals and organizations, cyber-insurance is the most practical and only way of handling a major financial impact of an information security event. However, the cyber-insurance market suffers from the problem of information asymmetry, lack of product diversity, illiquidity, high transa...
Main Authors: | , |
---|---|
Format: | Article |
Language: | English |
Published: |
MDPI AG
2016-05-01
|
Series: | Future Internet |
Subjects: | |
Online Access: | http://www.mdpi.com/1999-5903/8/2/20 |
id |
doaj-652c2a8093a64cbabde15e57c4257d8e |
---|---|
record_format |
Article |
spelling |
doaj-652c2a8093a64cbabde15e57c4257d8e2020-11-25T01:05:55ZengMDPI AGFuture Internet1999-59032016-05-01822010.3390/fi8020020fi8020020Using Financial Instruments to Transfer the Information Security RisksPankaj Pandey0Einar Snekkenes1Norwegian Information Security Lab., Gjøvik University College, Teknologivn 22, 2815 Gjøvik, NorwayNorwegian Information Security Lab., Gjøvik University College, Teknologivn 22, 2815 Gjøvik, NorwayFor many individuals and organizations, cyber-insurance is the most practical and only way of handling a major financial impact of an information security event. However, the cyber-insurance market suffers from the problem of information asymmetry, lack of product diversity, illiquidity, high transaction cost, and so on. On the other hand, in theory, capital market-based financial instruments can provide a risk transfer mechanism with the ability to absorb the adverse impact of an information security event. Thus, this article addresses the limitations in the cyber-(re)insurance markets with a set of capital market-based financial instruments. This article presents a set of information security derivatives, namely options, vanilla options, swap, and futures that can be traded at an information security prediction market. Furthermore, this article demonstrates the usefulness of information security derivatives in a given scenario and presents an evaluation of the same in comparison with cyber-insurance. In our analysis, we found that the information security derivatives can at least be a partial solution to the problems in the cyber-insurance markets. The information security derivatives can be used as an effective tool for information elicitation and aggregation, cyber risk pricing, risk hedging, and strategic decision making for information security risk management.http://www.mdpi.com/1999-5903/8/2/20information securityrisk managementfinancial instrumentsprediction marketshedgingderivativessecurity economics |
collection |
DOAJ |
language |
English |
format |
Article |
sources |
DOAJ |
author |
Pankaj Pandey Einar Snekkenes |
spellingShingle |
Pankaj Pandey Einar Snekkenes Using Financial Instruments to Transfer the Information Security Risks Future Internet information security risk management financial instruments prediction markets hedging derivatives security economics |
author_facet |
Pankaj Pandey Einar Snekkenes |
author_sort |
Pankaj Pandey |
title |
Using Financial Instruments to Transfer the Information Security Risks |
title_short |
Using Financial Instruments to Transfer the Information Security Risks |
title_full |
Using Financial Instruments to Transfer the Information Security Risks |
title_fullStr |
Using Financial Instruments to Transfer the Information Security Risks |
title_full_unstemmed |
Using Financial Instruments to Transfer the Information Security Risks |
title_sort |
using financial instruments to transfer the information security risks |
publisher |
MDPI AG |
series |
Future Internet |
issn |
1999-5903 |
publishDate |
2016-05-01 |
description |
For many individuals and organizations, cyber-insurance is the most practical and only way of handling a major financial impact of an information security event. However, the cyber-insurance market suffers from the problem of information asymmetry, lack of product diversity, illiquidity, high transaction cost, and so on. On the other hand, in theory, capital market-based financial instruments can provide a risk transfer mechanism with the ability to absorb the adverse impact of an information security event. Thus, this article addresses the limitations in the cyber-(re)insurance markets with a set of capital market-based financial instruments. This article presents a set of information security derivatives, namely options, vanilla options, swap, and futures that can be traded at an information security prediction market. Furthermore, this article demonstrates the usefulness of information security derivatives in a given scenario and presents an evaluation of the same in comparison with cyber-insurance. In our analysis, we found that the information security derivatives can at least be a partial solution to the problems in the cyber-insurance markets. The information security derivatives can be used as an effective tool for information elicitation and aggregation, cyber risk pricing, risk hedging, and strategic decision making for information security risk management. |
topic |
information security risk management financial instruments prediction markets hedging derivatives security economics |
url |
http://www.mdpi.com/1999-5903/8/2/20 |
work_keys_str_mv |
AT pankajpandey usingfinancialinstrumentstotransfertheinformationsecurityrisks AT einarsnekkenes usingfinancialinstrumentstotransfertheinformationsecurityrisks |
_version_ |
1725192468596523008 |