Show simple item record  

dc.contributor.authorChase, Jonathanen_NZ
dc.contributor.authorNiyato, Dusiten_NZ
dc.contributor.authorWang, Pingen_NZ
dc.contributor.authorChaisiri, Sivadonen_NZ
dc.contributor.authorKo, Ryan K.L.en_NZ
dc.date.accessioned2018-05-28T22:20:42Z
dc.date.available2017en_NZ
dc.date.available2018-05-28T22:20:42Z
dc.date.issued2017en_NZ
dc.identifier.citationChase, J., Niyato, D., Wang, P., Chaisiri, S., & Ko, R. K. L. (2017). A scalable approach to joint cyber insurance and security-as-a-service provisioning in cloud computing. IEEE Transactions on Dependable and Secure Computing, PP(99). https://doi.org/10.1109/TDSC.2017.2703626en
dc.identifier.issn1545-5971en_NZ
dc.identifier.urihttps://hdl.handle.net/10289/11869
dc.description.abstractAs computing services are increasingly cloud-based, corporations are investing in cloud-based security measures. The Security-asa- Service (SECaaS) paradigm allows customers to outsource security to the cloud, through the payment of a subscription fee. However, no security system is bulletproof, and even one successful attack can result in the loss of data and revenue worth millions of dollars. To guard against this eventuality, customers may also purchase cyber insurance to receive recompense in the case of loss. To achieve cost effectiveness, it is necessary to balance provisioning of security and insurance, even when future costs and risks are uncertain. To this end, we introduce a stochastic optimization model to optimally provision security and insurance services in the cloud. Since the model we design is a mixed integer problem, we also introduce a partial Lagrange multiplier algorithm that takes advantage of the total unimodularity property to find the solution in polynomial time. We also apply sensitivity analysis to find the exact tolerance of decision variables to parameter changes. We show the effectiveness of these techniques using numerical results based on real attack data to demonstrate a realistic testing environment, and find that security and insurance are interdependent.
dc.format.mimetypeapplication/pdf
dc.language.isoen
dc.publisherIEEE Computer Societyen_NZ
dc.rights© 2017 IEEE. This is the author's accepted version. Personal use of this material is permitted. However, permission to reprint/republish this material for advertising or promotional purposes or for creating new collective works for resale or redistribution to servers or lists, or to reuse any copyrighted component of this work in other works must be obtained from the IEEE.
dc.subjectcomputer scienceen_NZ
dc.subjectcloud computingen_NZ
dc.subjectcyber insuranceen_NZ
dc.subjectsecurity as a serviceen_NZ
dc.subjectpartial Lagrange multiplier methoden_NZ
dc.subjectsensitivity analysisen_NZ
dc.titleA scalable approach to joint cyber insurance and security-as-a-service provisioning in cloud computingen_NZ
dc.typeJournal Article
dc.identifier.doi10.1109/TDSC.2017.2703626en_NZ
dc.relation.isPartOfIEEE Transactions on Dependable and Secure Computingen_NZ
pubs.elements-id193929
pubs.issue99en_NZ
pubs.notesEarly Accessen_NZ
pubs.organisational-group/Waikato
pubs.organisational-group/Waikato/2018 PBRF
pubs.organisational-group/Waikato/FCMS
pubs.organisational-group/Waikato/FCMS/2018 PBRF - FCMS
pubs.organisational-group/Waikato/FCMS/Computer Science
pubs.publication-statusPublisheden_NZ
pubs.publisher-urlhttp://ieeexplore.ieee.org/document/7926340/?denieden_NZ
pubs.volumePPen_NZ


Files in this item

This item appears in the following Collection(s)

Show simple item record