In an increasingly digitalized world, where organizations are a ected by technological evolution, cyber attacks are multiplying rapidly. They have an impact on every class of business and no industry can consider itself immune to them. Quantitative loss data are rarely available while it is possible to obtain a qualitative evaluation, expressed on a rating scale, from experts of the sector. Hence, we focus on ordinal data models for cyber risk evaluation (rating) with particular emphasis on a mixture model taking into account the uncertainty in the process of scoring. We examine a set of data regarding cyber attacks that occurred worldwide before and during the pandemic due to Covid-19. The aim of our analysis is to investigate if Covid-19 has affected experts' uncertainty and assessment, and identify the relevant factors which influuence the severity of an attack.
Facchinetti, S., Iannario, M., Osmetti, S. A., Tarantola, C., Unfolding models for ordinal data in cyber risk assessment, <<ΠΑΝΕΛΛΗΝΙΟ ΣΥΝΈΔΡΙΟ ΣΤΑΤΙΣΤΙΚΉΣ-Proceedings of the 33rd Panhellenic Statistics Conference>>, 2021; (2021): 39-44 [https://hdl.handle.net/10807/219410]
Unfolding models for ordinal data in cyber risk assessment
Facchinetti, Silvia;Osmetti, Silvia Angela;
2021
Abstract
In an increasingly digitalized world, where organizations are a ected by technological evolution, cyber attacks are multiplying rapidly. They have an impact on every class of business and no industry can consider itself immune to them. Quantitative loss data are rarely available while it is possible to obtain a qualitative evaluation, expressed on a rating scale, from experts of the sector. Hence, we focus on ordinal data models for cyber risk evaluation (rating) with particular emphasis on a mixture model taking into account the uncertainty in the process of scoring. We examine a set of data regarding cyber attacks that occurred worldwide before and during the pandemic due to Covid-19. The aim of our analysis is to investigate if Covid-19 has affected experts' uncertainty and assessment, and identify the relevant factors which influuence the severity of an attack.I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.