An economic analysis of regulating security investments in the Internet

M. H R Khouzani, Soumya Sen, Ness B. Shroff

Research output: Chapter in Book/Report/Conference proceedingConference contribution

10 Scopus citations

Abstract

Regulating the ISPs to adopt more security measures has been proposed as an effective method in mitigating the threats of attacks in the Internet. However, economic incentives of the ISPs and the network effects of security measures can lead to an under-investment in their adoption. We study the potential gains in a network's social utility when a regulator implements a monitoring and penalizing mechanism on the outbound threat activities of autonomous systems (ASes). We then show how free-riding can render regulations futile if the subset of ASes under the regulator's authority is smaller than a threshold. Finally, we show how heterogeneity of the ASes affect the responses of the ISPs and discuss how the regulator can leverage such information to improve the overall effectiveness of different security policies.

Original languageEnglish (US)
Title of host publication2013 Proceedings IEEE INFOCOM 2013
Pages818-826
Number of pages9
DOIs
StatePublished - Sep 2 2013
Event32nd IEEE Conference on Computer Communications, IEEE INFOCOM 2013 - Turin, Italy
Duration: Apr 14 2013Apr 19 2013

Publication series

NameProceedings - IEEE INFOCOM
ISSN (Print)0743-166X

Other

Other32nd IEEE Conference on Computer Communications, IEEE INFOCOM 2013
CountryItaly
CityTurin
Period4/14/134/19/13

Fingerprint Dive into the research topics of 'An economic analysis of regulating security investments in the Internet'. Together they form a unique fingerprint.

  • Cite this

    Khouzani, M. H. R., Sen, S., & Shroff, N. B. (2013). An economic analysis of regulating security investments in the Internet. In 2013 Proceedings IEEE INFOCOM 2013 (pp. 818-826). [6566869] (Proceedings - IEEE INFOCOM). https://doi.org/10.1109/INFCOM.2013.6566869