Estimating the Global Cost of Cyber Risk: Methodology and Examples

Dreyer, Paul; Jones, Therese Marie; Klima, Kelly; Oberholtzer, Jenny; Strong, Aaron; Welburn, Jonathan W.; Winkelman, Zev

G2TT

来源类型	Report
规范类型	报告
DOI	https://doi.org/10.7249/RR2299
来源ID	RR-2299-WFHF
	Estimating the Global Cost of Cyber Risk: Methodology and Examples
	Paul Dreyer; Therese Marie Jones; Kelly Klima; Jenny Oberholtzer; Aaron Strong; Jonathan W. Welburn; Zev Winkelman
发表日期	2018-01-15
出版年	2018
页码	63
语种	英语
结论	Estimating the Global Cost of Cyber Risk: Methodology and Examples \| RAND Skip to page content Objective Analysis. Effective Solutions.
摘要	There is marked variability from study to study in the estimated direct and systemic costs of cyber incidents, which is further complicated by the considerable variation in cyber risk in different countries and industry sectors. This report shares a transparent and adaptable methodology for estimating present and future global costs of cyber risk that acknowledges the considerable uncertainty in the frequencies and costs of cyber incidents. Specifically, this methodology (1) identifies the value at risk by country and industry sector; (2) computes direct costs by considering multiple financial exposures for each industry sector and the fraction of each exposure that is potentially at risk to cyber incidents; and (3) computes the systemic costs of cyber risk between industry sectors using Organisation for Economic Co-operation and Development input, output, and value-added data across sectors in more than 60 countries. The report has a companion Excel-based modeling and simulation platform that allows users to alter assumptions and investigate a wide variety of research questions. The authors used a literature review and data to create multiple sample sets of parameters. They then ran a set of case studies to show the model's functionality and to compare the results against those in the existing literature. The resulting values are highly sensitive to input parameters; for instance, the global cost of cyber crime has direct gross domestic product (GDP) costs of $275 billion to $6.6 trillion and total GDP costs (direct plus systemic) of $799 billion to $22.5 trillion (1.1 to 32.4 percent of GDP).
目录	Chapter One Introduction Chapter Two Modeling the Costs of Cyber Risk Chapter Three Model Parameters Chapter Four Case Studies Chapter Five Conclusion and Next Steps Appendix A Estimating the Global Cost of Cyber Risk Calculator User Manual Appendix B Review of Model Assumptions Appendix C Module Y2 Sector-Exposure Relationship Appendix D Advisen Data Appendix E Characterizing Attackers and Perils Appendix F Potential Expert Elicitation Format
主题	Cyber Warfare ; Cybercrime ; Macroeconomics ; Modeling and Simulation
URL	https://www.rand.org/pubs/research_reports/RR2299.html
来源智库	RAND Corporation (United States)
引用统计
资源类型	智库出版物
条目标识符	http://119.78.100.153/handle/2XGU8XDN/523468
推荐引用方式 GB/T 7714	Paul Dreyer,Therese Marie Jones,Kelly Klima,et al. Estimating the Global Cost of Cyber Risk: Methodology and Examples. 2018.

条目包含的文件
文件名称/大小	资源类型	版本类型	开放类型	使用许可
RAND_RR2299.pdf（1441KB）	智库出版物		限制开放	CC BY-NC-SA	浏览
1516052438995.jpg（4KB）	智库出版物		限制开放	CC BY-NC-SA	浏览