{"id":"https://openalex.org/W2652675317","doi":"https://doi.org/10.1145/3099012.3099013","title":"Towards a Multi-objective Optimization Model to Support Information Security Investment Decision-making","display_name":"Towards a Multi-objective Optimization Model to Support Information Security Investment Decision-making","publication_year":2017,"publication_date":"2017-06-19","ids":{"openalex":"https://openalex.org/W2652675317","doi":"https://doi.org/10.1145/3099012.3099013","mag":"2652675317"},"language":"en","primary_location":{"id":"doi:10.1145/3099012.3099013","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3099012.3099013","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 4th Workshop on Security in Highly Connected IT Systems","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5068660278","display_name":"Eva Weish\u00e4upl","orcid":null},"institutions":[{"id":"https://openalex.org/I60668342","display_name":"University of Regensburg","ror":"https://ror.org/01eezs655","country_code":"DE","type":"education","lineage":["https://openalex.org/I60668342"]}],"countries":["DE"],"is_corresponding":true,"raw_author_name":"Eva Weish\u00e4upl","raw_affiliation_strings":["University of Regensburg, Germany"],"affiliations":[{"raw_affiliation_string":"University of Regensburg, Germany","institution_ids":["https://openalex.org/I60668342"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":1,"corresponding_author_ids":["https://openalex.org/A5068660278"],"corresponding_institution_ids":["https://openalex.org/I60668342"],"apc_list":null,"apc_paid":null,"fwci":1.0116,"has_fulltext":false,"cited_by_count":3,"citation_normalized_percentile":{"value":0.82766133,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":96},"biblio":{"volume":null,"issue":null,"first_page":"37","last_page":"42"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9961000084877014,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12423","display_name":"Software Reliability and Analysis Research","score":0.9921000003814697,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/information-security","display_name":"Information security","score":0.5952551960945129},{"id":"https://openalex.org/keywords/investment","display_name":"Investment (military)","score":0.5781049132347107},{"id":"https://openalex.org/keywords/order","display_name":"Order (exchange)","score":0.5307251214981079},{"id":"https://openalex.org/keywords/business","display_name":"Business","score":0.480328232049942},{"id":"https://openalex.org/keywords/task","display_name":"Task (project management)","score":0.4685077965259552},{"id":"https://openalex.org/keywords/information-security-management","display_name":"Information security management","score":0.4479944109916687},{"id":"https://openalex.org/keywords/investment-decisions","display_name":"Investment decisions","score":0.4403942823410034},{"id":"https://openalex.org/keywords/security-information-and-event-management","display_name":"Security information and event management","score":0.4320942759513855},{"id":"https://openalex.org/keywords/computer-security-model","display_name":"Computer security model","score":0.4203723073005676},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.3942777216434479},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.392413467168808},{"id":"https://openalex.org/keywords/risk-analysis","display_name":"Risk analysis (engineering)","score":0.39174994826316833},{"id":"https://openalex.org/keywords/cloud-computing-security","display_name":"Cloud computing security","score":0.27363526821136475},{"id":"https://openalex.org/keywords/finance","display_name":"Finance","score":0.20828190445899963},{"id":"https://openalex.org/keywords/economics","display_name":"Economics","score":0.15461879968643188},{"id":"https://openalex.org/keywords/behavioral-economics","display_name":"Behavioral economics","score":0.09562677145004272}],"concepts":[{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.5952551960945129},{"id":"https://openalex.org/C27548731","wikidata":"https://www.wikidata.org/wiki/Q88272","display_name":"Investment (military)","level":3,"score":0.5781049132347107},{"id":"https://openalex.org/C182306322","wikidata":"https://www.wikidata.org/wiki/Q1779371","display_name":"Order (exchange)","level":2,"score":0.5307251214981079},{"id":"https://openalex.org/C144133560","wikidata":"https://www.wikidata.org/wiki/Q4830453","display_name":"Business","level":0,"score":0.480328232049942},{"id":"https://openalex.org/C2780451532","wikidata":"https://www.wikidata.org/wiki/Q759676","display_name":"Task (project management)","level":2,"score":0.4685077965259552},{"id":"https://openalex.org/C148976360","wikidata":"https://www.wikidata.org/wiki/Q1662500","display_name":"Information security management","level":5,"score":0.4479944109916687},{"id":"https://openalex.org/C2778865806","wikidata":"https://www.wikidata.org/wiki/Q6060850","display_name":"Investment decisions","level":3,"score":0.4403942823410034},{"id":"https://openalex.org/C103377522","wikidata":"https://www.wikidata.org/wiki/Q3493999","display_name":"Security information and event management","level":4,"score":0.4320942759513855},{"id":"https://openalex.org/C121822524","wikidata":"https://www.wikidata.org/wiki/Q5157582","display_name":"Computer security model","level":2,"score":0.4203723073005676},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.3942777216434479},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.392413467168808},{"id":"https://openalex.org/C112930515","wikidata":"https://www.wikidata.org/wiki/Q4389547","display_name":"Risk analysis (engineering)","level":1,"score":0.39174994826316833},{"id":"https://openalex.org/C184842701","wikidata":"https://www.wikidata.org/wiki/Q370563","display_name":"Cloud computing security","level":3,"score":0.27363526821136475},{"id":"https://openalex.org/C10138342","wikidata":"https://www.wikidata.org/wiki/Q43015","display_name":"Finance","level":1,"score":0.20828190445899963},{"id":"https://openalex.org/C162324750","wikidata":"https://www.wikidata.org/wiki/Q8134","display_name":"Economics","level":0,"score":0.15461879968643188},{"id":"https://openalex.org/C109574028","wikidata":"https://www.wikidata.org/wiki/Q647525","display_name":"Behavioral economics","level":2,"score":0.09562677145004272},{"id":"https://openalex.org/C199539241","wikidata":"https://www.wikidata.org/wiki/Q7748","display_name":"Law","level":1,"score":0.0},{"id":"https://openalex.org/C187736073","wikidata":"https://www.wikidata.org/wiki/Q2920921","display_name":"Management","level":1,"score":0.0},{"id":"https://openalex.org/C79974875","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud computing","level":2,"score":0.0},{"id":"https://openalex.org/C17744445","wikidata":"https://www.wikidata.org/wiki/Q36442","display_name":"Political science","level":0,"score":0.0},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0},{"id":"https://openalex.org/C94625758","wikidata":"https://www.wikidata.org/wiki/Q7163","display_name":"Politics","level":2,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1145/3099012.3099013","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3099012.3099013","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 4th Workshop on Security in Highly Connected IT Systems","raw_type":"proceedings-article"},{"id":"pmh:oai:epub.uni-regensburg.de:35751","is_oa":false,"landing_page_url":null,"pdf_url":null,"source":{"id":"https://openalex.org/S4306401229","display_name":"University of Regensburg Publication Server (University of Regensburg)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I60668342","host_organization_name":"University of Regensburg","host_organization_lineage":["https://openalex.org/I60668342"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"acceptedVersion","is_accepted":true,"is_published":false,"raw_source_name":"","raw_type":"info:eu-repo/semantics/conferenceObject"}],"best_oa_location":null,"sustainable_development_goals":[{"score":0.75,"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions"}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":51,"referenced_works":["https://openalex.org/W32063464","https://openalex.org/W110007310","https://openalex.org/W147884860","https://openalex.org/W154279265","https://openalex.org/W638822873","https://openalex.org/W657731981","https://openalex.org/W802135910","https://openalex.org/W1482874976","https://openalex.org/W1910382642","https://openalex.org/W1967082215","https://openalex.org/W1998951587","https://openalex.org/W2006253146","https://openalex.org/W2011275423","https://openalex.org/W2014071948","https://openalex.org/W2021414657","https://openalex.org/W2021466400","https://openalex.org/W2029140979","https://openalex.org/W2036178246","https://openalex.org/W2039133158","https://openalex.org/W2041533584","https://openalex.org/W2052086751","https://openalex.org/W2053152462","https://openalex.org/W2056075452","https://openalex.org/W2059209509","https://openalex.org/W2072564252","https://openalex.org/W2078175444","https://openalex.org/W2078920065","https://openalex.org/W2081135753","https://openalex.org/W2091269090","https://openalex.org/W2096830520","https://openalex.org/W2101431131","https://openalex.org/W2102144719","https://openalex.org/W2104212850","https://openalex.org/W2111541221","https://openalex.org/W2111617027","https://openalex.org/W2115116730","https://openalex.org/W2132317998","https://openalex.org/W2133795641","https://openalex.org/W2143174928","https://openalex.org/W2143617741","https://openalex.org/W2146537463","https://openalex.org/W2149439200","https://openalex.org/W2155055334","https://openalex.org/W2162646360","https://openalex.org/W2369295637","https://openalex.org/W2462473310","https://openalex.org/W2504277771","https://openalex.org/W2622974182","https://openalex.org/W2626788661","https://openalex.org/W4235967258","https://openalex.org/W4285719527"],"related_works":["https://openalex.org/W2120971814","https://openalex.org/W2508914475","https://openalex.org/W4310892428","https://openalex.org/W4293770853","https://openalex.org/W2356973015","https://openalex.org/W2777401565","https://openalex.org/W2033357182","https://openalex.org/W2248314326","https://openalex.org/W4390655704","https://openalex.org/W2303053547"],"abstract_inverted_index":{"The":[0],"protection":[1],"of":[2,32,44,81],"assets,":[3],"including":[4],"IT":[5],"resources,":[6],"intellectual":[7],"property":[8],"and":[9,102,112],"business":[10],"processes,":[11],"against":[12],"security":[13,35,47,65,86,100,114],"attacks":[14],"has":[15],"become":[16],"a":[17,33],"challenging":[18],"task":[19],"for":[20,108],"organizations.":[21],"From":[22],"an":[23,59],"economic":[24],"perspective,":[25],"firms":[26],"need":[27],"to":[28,51,62,110],"minimize":[29],"the":[30,42,73,79,85,92,96,99,103],"probability":[31],"successful":[34],"incident":[36],"or":[37],"attack":[38],"while":[39,83],"staying":[40],"within":[41],"boundaries":[43],"their":[45,53],"information":[46,64],"budget":[48],"in":[49,68],"order":[50],"optimize":[52],"investment":[54,66,104,115],"strategy.":[55],"In":[56],"this":[57],"paper,":[58],"optimization":[60],"model":[61],"support":[63,91],"decision-making":[67],"organizations":[69,109],"is":[70],"proposed":[71],"considering":[72,95],"two":[74],"conflicting":[75],"objectives":[76],"(simultaneously":[77],"minimizing":[78],"costs":[80],"countermeasures":[82],"maximizing":[84],"level).":[87],"Decision":[88],"models":[89],"that":[90],"firms'":[93],"decisions":[94],"trade-off":[97],"between":[98],"level":[101],"allocation":[105],"are":[106],"beneficial":[107],"facilitate":[111],"justify":[113],"choices.":[116]},"counts_by_year":[{"year":2021,"cited_by_count":1},{"year":2019,"cited_by_count":2}],"updated_date":"2026-04-05T17:49:38.594831","created_date":"2025-10-10T00:00:00"}