12th Annual Workshop on the Economics of Information Security
June 11-12, 2013 Georgetown University, Washington DC
CALL FOR PAPERS
Downloadable Call for Papers here (pdf).
Information security continues to grow in importance, as threats proliferate, privacy erodes, and attackers evolve. Cybersecurity fears and privacy concerns dominate headlines. Yet the security of information systems depends on more than just technology. Good security requires an understanding of the incentives and tradeoffs inherent to the behavior of systems and organizations.
As society's dependence on information technology has deepened, policy makers and business leaders have taken notice. Now more than ever, careful research is needed to accurately characterize threats and countermeasures, in both the public and private sectors.
The Workshop on the Economics of Information Security (WEIS) is the leading forum for interdisciplinary scholarship on information security, combining expertise from the fields of economics, social science, business, law, policy and computer science. Prior workshops have explored the role of incentives between attackers and defenders, identified market failures in Internet security, quantified risks of personal data disclosure, and assessed investments in cyber-defense. This workshop will build on past efforts using empirical and analytic tools to not only understand threats, but strengthen security and privacy through novel evaluations of available solutions.
We encourage economists, computer scientists, business school researchers, law scholars, security and privacy specialists, as well as industry experts to submit their research and attend the Workshop. Suggested topics include (but are not limited to) empirical and theoretical economic studies of:
- Optimal investment in information security
- Measurement and modeling of online crime
- Risk management and cyberinsurance
- Security standards and government regulation
- Privacy, confidentiality and anonymity
- Behavioral security and privacy
- Security metrics and organizational performance
- Psychology of risk and security
- Vulnerability discovery, disclosure, and patching
- Cyberwar strategy and game theory
- Incentives for information sharing, cooperation and coordination
Of particular interest this year are papers that can address the global problems of cybersecurity policy, including international conflict and coordination, government regulation and private sector solutions. A selection of papers accepted to this workshop will appear in an edited volume aimed to offer insights to policy makers, managers and practitioners, as well as the larger academic community.
Submissions due March 11, 2013
Notification of Acceptance April 23, 2013
Workshop June 11-12, 2013
Submitted manuscripts should represent significant and novel research contributions. Please note that WEIS has no formal formatting guidelines. Previous contributors spanned fields from economics and psychology to computer science and law, each with different norms and expectations about manuscript length and formatting. For questions, please contact the program chair Allan Friedman at [email protected]