Learning from early attempts to measure information security performance

Jing Zhang; Robin Berthier; Will Rhee; Michael Bailey; Partha Pal; Farnam Jahanian; William H. Sanders

Learning from early attempts to measure information security performance

Jing Zhang, Robin Berthier, Will Rhee, Michael Bailey, Partha Pal, Farnam Jahanian, William H. Sanders

Research output: Contribution to conference › Paper › peer-review

Abstract

The rapid evolution of threat ecosystems and the shifting focus of adversarial actions complicate efforts to assure security of an organization’s computer networks. Efforts to build a rigorous science of security, one consisting of sound and reproducible empirical evaluations, start with measures of these threats, their impacts, and the factors that influence both attackers and victims. In this study, we present a careful examination of the issue of account compromise at two large academic institutions. In particular, we evaluate different hypotheses that capture common perceptions about factors influencing victims (e.g., demographics, location, behavior) and about the effectiveness of mitigation efforts (e.g., policy, education). While we present specific and sometimes surprising results of this analysis at our institutions, our goal is to highlight the need for similar in-depth studies elsewhere.

Original language	English (US)
State	Published - 2012
Externally published	Yes
Event	5th Workshop on Cyber Security Experimentation and Test, CSET 2012 - Bellevue, United States Duration: Aug 6 2012 → …

Conference

Conference	5th Workshop on Cyber Security Experimentation and Test, CSET 2012
Country/Territory	United States
City	Bellevue
Period	8/6/12 → …

ASJC Scopus subject areas

Computer Networks and Communications
Safety, Risk, Reliability and Quality

Library availability

Discover UIUC Full Text

Cite this

@conference{675587685fec4d1ab7ca22e6c9aee14c,

title = "Learning from early attempts to measure information security performance",

abstract = "The rapid evolution of threat ecosystems and the shifting focus of adversarial actions complicate efforts to assure security of an organization{\textquoteright}s computer networks. Efforts to build a rigorous science of security, one consisting of sound and reproducible empirical evaluations, start with measures of these threats, their impacts, and the factors that influence both attackers and victims. In this study, we present a careful examination of the issue of account compromise at two large academic institutions. In particular, we evaluate different hypotheses that capture common perceptions about factors influencing victims (e.g., demographics, location, behavior) and about the effectiveness of mitigation efforts (e.g., policy, education). While we present specific and sometimes surprising results of this analysis at our institutions, our goal is to highlight the need for similar in-depth studies elsewhere.",

author = "Jing Zhang and Robin Berthier and Will Rhee and Michael Bailey and Partha Pal and Farnam Jahanian and Sanders, {William H.}",

year = "2012",

language = "English (US)",

}

TY - CONF

T1 - Learning from early attempts to measure information security performance

AU - Zhang, Jing

AU - Berthier, Robin

AU - Rhee, Will

AU - Bailey, Michael

AU - Pal, Partha

AU - Jahanian, Farnam

AU - Sanders, William H.

PY - 2012

Y1 - 2012

N2 - The rapid evolution of threat ecosystems and the shifting focus of adversarial actions complicate efforts to assure security of an organization’s computer networks. Efforts to build a rigorous science of security, one consisting of sound and reproducible empirical evaluations, start with measures of these threats, their impacts, and the factors that influence both attackers and victims. In this study, we present a careful examination of the issue of account compromise at two large academic institutions. In particular, we evaluate different hypotheses that capture common perceptions about factors influencing victims (e.g., demographics, location, behavior) and about the effectiveness of mitigation efforts (e.g., policy, education). While we present specific and sometimes surprising results of this analysis at our institutions, our goal is to highlight the need for similar in-depth studies elsewhere.

AB - The rapid evolution of threat ecosystems and the shifting focus of adversarial actions complicate efforts to assure security of an organization’s computer networks. Efforts to build a rigorous science of security, one consisting of sound and reproducible empirical evaluations, start with measures of these threats, their impacts, and the factors that influence both attackers and victims. In this study, we present a careful examination of the issue of account compromise at two large academic institutions. In particular, we evaluate different hypotheses that capture common perceptions about factors influencing victims (e.g., demographics, location, behavior) and about the effectiveness of mitigation efforts (e.g., policy, education). While we present specific and sometimes surprising results of this analysis at our institutions, our goal is to highlight the need for similar in-depth studies elsewhere.

UR - http://www.scopus.com/inward/record.url?scp=85084159833&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85084159833&partnerID=8YFLogxK

M3 - Paper

AN - SCOPUS:85084159833

T2 - 5th Workshop on Cyber Security Experimentation and Test, CSET 2012

Y2 - 6 August 2012

ER -

Learning from early attempts to measure information security performance

Abstract

Conference

ASJC Scopus subject areas

Library availability

Related links

Fingerprint

Cite this