NSF-BSF: SaTC: CORE: Small: Evaluating Cybersecurity Precautions and Harms in Israeli Enterprises

NSF-BSF：SaTC：核心：小型：评估以色列企业的网络安全预防措施和危害

• 批准号: 2147505
• 负责人: Tyler Moore
• 金额: $ 49.45万
• 依托单位: University of Tulsa
• 依托单位国家: 美国
• 项目类别: Standard Grant
• 财政年份: 2022
• 资助国家: 美国
• 起止时间: 2022-04-01 至 2025-03-31
• 项目状态: 未结题
• 来源: https://www.nsf.gov/awardsearch/showAward?AWD_ID=2147505&HistoricalAwards=false
• 关键词: NSF; BSF; SaTC; CORE; Small

Even though organizations are investing heavily in cybersecurity, they often cannot answer basic questions about the effectiveness of their investments, such as which defenses reduce the risk of suffering an incident, and by how much. They struggle to accurately quantify the financial costs of the harms resulting from successful attacks. This project seeks to improve understanding of how firm-level cybersecurity practices affect these outcomes by focusing on the case of Israeli enterprises. By bringing together leading scholars in the economics of cybersecurity with the Israeli National Cyber Directorate (INCD), the project helps advance the cybersecurity of the state of Israel and its organizations. Moreover, it advances the scientific understanding of cyber risk management while serving as a model for future data collection and analysis undertaken in the U.S. and beyond. The project focuses on three key research objectives. First, a series of empirical analyses examine how exposure and security precautions of enterprises affect likelihood of experiencing a cyber incident. The analysis leverages data from detailed firm-level surveys carried out by Israelís Central Bureau of Statistics (CBS), complemented by external measurements of enterprise cyber hygiene gathered directly from public sources. The second research objective is to quantify the harms resulting from experiencing an incident. For this effort, the project analyzes data gathered by the Israeli CERT hotline that asks enterprise victims about the impacts resulting from ransomware attacks. Additionally, CBS survey questions involving harm are analyzed. The third research objective is to develop and analyze longitudinal cyber risk indicators. The project team collaborates with INCD and CBS to analyze longitudinal data obtained from readministering the survey in subsequent years.This award reflects NSF's statutory mission and has been deemed worthy of support through evaluation using the Foundation's intellectual merit and broader impacts review criteria.

即使组织在网络安全上进行大量投资，他们通常也无法回答有关投资有效性的基本问题，例如哪些防御措施降低了遭受事件的风险，以及多少。他们努力准确量化成功攻击造成的危害的财务成本。该项目旨在通过关注以色列企业的案例来提高对农场级网络安全实践如何影响这些结果的理解。通过与以色列国家网络局（INCD）汇集了网络安全经济学的领先学者，该项目有助于促进以色列及其组织的网络安全。此外，它在作为在美国及其他地区进行的未来数据收集和分析的模型的同时，提高了对网络风险管理的科学理解。该项目侧重于三个关键的研究目标。首先，一系列考试研究了企业的敞口和安全预防措施如何影响经历网络事件的可能性。该分析利用以色列中央统计局（CBS）进行的详细农场级调查的数据，该调查是由直接从公共来源收集的企业网络卫生的外部测量完成的。第二个研究目标是量化因事件而造成的危害。为了进行这项工作，该项目分析了以色列证书热线收集的数据，该数据询问企业违反勒索软件攻击所带来的影响。此外，分析了涉及危害的CBS调查问题。第三个研究目标是开发和分析纵向网络风险指标。该项目团队与INCD和CBS合作，分析了从随后几年重新启动调查获得的纵向数据。该奖项反映了NSF的法定任务，并通过使用该基金会的知识分子的优点和更广泛的影响来评估NSF的法定任务。

项目成果

Empirically evaluating the effect of security precautions on cyber incidents

实证评估安全预防措施对网络事件的影响

• DOI: 10.1016/j.cose.2023.103380
• 发表时间: 2023
• 期刊: Computers & Security
• 影响因子: 5.6
• 作者: Gandal, Neil;Moore, Tyler;Riordan, Michael;Barnir, Noa
• 通讯作者: Barnir, Noa

On Gaps in Enterprise Cyber Attack Reporting

• DOI: 10.1109/eurospw59978.2023.00030
• 发表时间: 2023-07
• 期刊: 2023 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW)
• 作者: Abulfaz Hajizada;T. Moore