Prospect Theory and Information Security Investment Decisions
نویسندگان
چکیده
Most articles that discuss the economics of security focus on the use of rational choice decision models for evaluating investment alternatives. However, security investment decisions involve risk and several researchers have noted that risk related decisions often violate the fundamental principles of rational choice decision models. Accordingly, we assert that problems exist with using these models to explain security investment decisions. Further, we believe that the development of prescriptive models to guide investment decisions requires a deeper understanding of the cognitive processes involved. To test these ideas, we introduce a study that uses prospect theory to analyze security practitioners’ investment decisions. The article includes a discussion of our methodology to electronically assess security practitioners’ preference patterns. Additionally, we discuss data collection efforts which are currently in-process and future plans to analyze the collected data. Interim analytical results of data received prior to AMCIS 2012 will be presented to conference attendees.
منابع مشابه
Framing Information Security Budget Requests to Maximize Investments
Nearly one in three security practitioners believe that the organization they work for under-funds information security efforts. Rational choice and economic models have been developed to help decision makers determine the optimal amount they should spend to protect a set of information assets. These models presume investment decisions are rationally made, despite long-standing behavioral and d...
متن کاملبررسی نقش پرتفوی رفتاری در تصمیمگیری سرمایهگذاران بورس اوراق بهادار تهران
More than 50 years ago Friedman and Savage stated that investors who purchase lottery tickets (risk taking behavior), buy insurance coverage (risk averse behavior) at the same time. They proposed an “S” shape utility function that features concave as loss and convex as winning. Eisenhauer and many other researchers have confirmed risk behavior as suggested by Friedman and Savage. Shefrin and St...
متن کاملLooking at Information Security through a Prospect Theory Lens
Traditional accounts of decision-making under uncertainty have taken the Von Neumann and Morgenstern approach of Expected Utility Theory that considers how decisions under uncertainty should be made. This prescriptive model states that, when faced with a choice, a rational decision maker will pick the prospect that offers the highest expected utility. But as has been demonstrated by Kahnemann a...
متن کاملBehavioral Finance 1.1 Prospect Theory and Decisions under Risk
Financial decisions can only be understood by considering individual behavior and its deviations from rational behavior. Financial markets are based on a multitude of decisions by individuals. Therefore it is only natural that decision theory plays a fundamental role in understanding financial markets. Probably the most important class of financial decisions are decisions under risk. They can b...
متن کاملInformation Security Investment with Different Information Types: A Two-Firm Analysis
We analyze information security investment decisions by two firms that possess imperfectly substitutable information assets. Information assets are imperfectly substitutable if information at each firm is valuable and becomes more valuable when combined. When compared to optimal investment decisions made by a central planner, we find diametrically opposite results in the case where these decisi...
متن کامل