{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,5,7]],"date-time":"2026-05-07T17:46:06Z","timestamp":1778175966114,"version":"3.51.4"},"reference-count":86,"publisher":"Springer Science and Business Media LLC","issue":"5","license":[{"start":{"date-parts":[[2022,1,9]],"date-time":"2022-01-09T00:00:00Z","timestamp":1641686400000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2022,1,9]],"date-time":"2022-01-09T00:00:00Z","timestamp":1641686400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":["Inf Syst Front"],"published-print":{"date-parts":[[2023,10]]},"DOI":"10.1007\/s10796-021-10232-7","type":"journal-article","created":{"date-parts":[[2022,1,9]],"date-time":"2022-01-09T16:02:41Z","timestamp":1641744161000},"page":"1757-1778","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":14,"title":["Cyber-risk Management Framework for Online Gaming Firms: an Artificial Neural Network Approach"],"prefix":"10.1007","volume":"25","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-4473-102X","authenticated-orcid":false,"given":"Kalpit","family":"Sharma","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Arunabha","family":"Mukhopadhyay","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2022,1,9]]},"reference":[{"key":"10232_CR1","unstructured":"Alberts, C., & Dorofee, A. (2002). Managing Information Security Risks, Pearson Education (US). https:\/\/www.ebook.de\/de\/product\/3252338\/christopher_alberts_audrey_dorofee_managing_information_security_risks.html. Accessed 12 Oct 2021"},{"issue":"3","key":"10232_CR2","doi-asserted-by":"publisher","first-page":"219","DOI":"10.1016\/j.cose.2006.10.002","volume":"26","author":"OH Alhazmi","year":"2007","unstructured":"Alhazmi, O. H., Malaiya, Y. K., & Ray, I. (2007). Measuring, analyzing and predicting security vulnerabilities in software systems. Computers and Security, 26(3), 219\u2013228. https:\/\/doi.org\/10.1016\/j.cose.2006.10.002","journal-title":"Computers and Security"},{"key":"10232_CR3","unstructured":"Allende, H., Moraga, C., & Salas, R. (2002). Artificial neural networks in time series forecasting: a comparative analysis.\u00a0Kybernetika\u00a0(88), 685\u2013707"},{"issue":"4","key":"10232_CR4","doi-asserted-by":"publisher","first-page":"642","DOI":"10.1287\/mnsc.1070.0771","volume":"(54","author":"A Arora","year":"2008","unstructured":"Arora, A., Telang, R., & Xu, H. (2008). Optimal policy for software vulnerability disclosure. Management Science, (54(4), 642\u2013656. https:\/\/doi.org\/10.1287\/mnsc.1070.0771","journal-title":"Management Science"},{"key":"10232_CR5","unstructured":"Austin, R. D., & Darby, C. A. R. (2003). The myth of secure computing. Harvard Business Review (81:6), Harvard Business School Publication Corp., pp.\u00a0120\u2013126"},{"key":"10232_CR6","unstructured":"Avital, N., Zawoznik, A., Azaria, J., & Lambert, K. (2020). 2019 Global DDoS Threat Landscape Report: Imperva. Imperva Blog, Imperva, February. https:\/\/www.imperva.com\/blog\/2019-global-ddos-threat-landscape-report\/. Accessed 12 Oct 2021"},{"key":"10232_CR7","doi-asserted-by":"publisher","unstructured":"Balkanli, E., Zincir-Heywood, N., A., & Heywood, M. I. (2015). Feature selection for robust backscatter DDoS detection. In Proceedings - Conference on Local Computer Networks, LCN (Vol. 2015-Decem), IEEE, October, pp.\u00a0611\u2013618. https:\/\/doi.org\/10.1109\/LCNW.2015.7365905","DOI":"10.1109\/LCNW.2015.7365905"},{"key":"10232_CR8","doi-asserted-by":"publisher","first-page":"11","DOI":"10.1145\/1592761.1592780","volume":"52","author":"T Bandyopadhyay","year":"2009","unstructured":"Bandyopadhyay, T., Mookerjee, V. S., & Rao, R. C. (2009). Why IT managers don\u2019t go for cyber-insurance products. Communications of the ACM, 52, 11. https:\/\/doi.org\/10.1145\/1592761.1592780","journal-title":"Communications of the ACM"},{"issue":"4","key":"10232_CR9","doi-asserted-by":"publisher","first-page":"375","DOI":"10.1145\/162124.162127","volume":"25","author":"R Baskerville","year":"1993","unstructured":"Baskerville, R. (1993). Information systems security design methods: implications for information systems development. ACM Computing Surveys (CSUR), 25(4), 375\u2013414. https:\/\/doi.org\/10.1145\/162124.162127","journal-title":"ACM Computing Surveys (CSUR)"},{"key":"10232_CR10","unstructured":"Becker, G. (1990). The Economic Approach to Human Behavior. University of Chicago Press"},{"key":"10232_CR11","unstructured":"Bezsonoff, N. (2017). The state of DDoS attacks in 2017: neustar blog. The State of DDoS Attacks in 2017 | Neustar Blog, Neustar, October. https:\/\/www.home.neustar\/blog\/neustar-global-attacks-and-cyber-security-insight-report. Accessed 12 Oct 2021"},{"key":"10232_CR12","unstructured":"Biswas, B., & Mukhopadhyay, A. (2017). Phishing detection and loss computation hybrid model: a machine-learning approach. ISACA Journal (1), 22\u201329. https:\/\/www.isaca.org\/Journal\/archives\/2017\/Volume-1\/Pages\/phishing-detection-and-loss-computation-hybrid-model.aspx. Accessed 12 Oct 2021"},{"issue":"2","key":"10232_CR13","doi-asserted-by":"publisher","first-page":"276","DOI":"10.1108\/JEIM-05-2017-0069","volume":"31","author":"B Biswas","year":"2018","unstructured":"Biswas, B., & Mukhopadhyay, A. (2018). G-RAM framework for software risk assessment and mitigation strategies in organisations. Journal of Enterprise Information Management, 31(2), 276\u2013299. https:\/\/doi.org\/10.1108\/JEIM-05-2017-0069","journal-title":"Journal of Enterprise Information Management"},{"key":"10232_CR14","doi-asserted-by":"publisher","unstructured":"Biswas, B., Mukhopadhyay, A., Bhattacharjee, S., Kumar, A., & Delen, D. (2021). A text-mining based cyber-risk assessment and mitigation framework for critical analysis of online hacker forums.\u00a0Decision Support Systems, 113651. https:\/\/doi.org\/10.1016\/j.dss.2021.113651","DOI":"10.1016\/j.dss.2021.113651"},{"key":"10232_CR15","unstructured":"Biswas, B., Mukhopadhyay, A., & Dhillon, G. (2017). GARCH-based risk assessment and mean-variance-based risk mitigation framework for software vulnerabilities. In AMCIS 2017: A Tradition of Innovation - 23rd Americas Conference on Information Systems"},{"key":"10232_CR16","doi-asserted-by":"publisher","unstructured":"Biswas, B., Mukhopadhyay, A., & Gupta, G. (2018). \u2018Leadership in Action: How Top Hackers Behave\u2019 A big-data approach with text-mining and sentiment analysis. In Proceedings of the 51st Hawaii International Conference on System Sciences. https:\/\/doi.org\/10.24251\/hicss.2018.221","DOI":"10.24251\/hicss.2018.221"},{"key":"10232_CR17","doi-asserted-by":"crossref","unstructured":"Biswas, B., Pal, S., & Mukhopadhyay, A. (2016). AVICS-eco framework: an approach to attack prediction and vulnerability assessment in a cyber ecosystem. In AMCIS 2016: Surfing the IT Innovation Wave - 22nd Americas Conference on Information Systems","DOI":"10.2139\/ssrn.2792074"},{"key":"10232_CR18","unstructured":"Blau, A., Burt, A., Groysberg, B., & Yampolskiy, R. V. (2019). Cybersecurity, Harvard Business Review Press. https:\/\/www.ebook.de\/de\/product\/35460600\/harvard_business_review_alex_blau_andrew_burt_boris_groysberg_roman_v_yampolskiy_cybersecurity.html. Accessed 12 Oct 2021"},{"key":"10232_CR19","unstructured":"B\u00f6hme, R. (2005). Cyber-Insurance Revisited. In Workshop on the Economics of Information Security (WEIS), Harvard"},{"key":"10232_CR20","unstructured":"B\u00f6hme, R., & Kataria, G. (2006). Models and measures for correlation in cyber-insurance. In Workshop on the Economics of Information Security (WEIS). University of Cambridge"},{"key":"10232_CR21","unstructured":"B\u00f6hme, R., & Schwartz, G. (2006). Models and measures for correlation in cyber-insurance.\u00a02006 Workshop on the Economics of Information Security (WEIS), pp. 1\u201326"},{"issue":"4","key":"10232_CR22","doi-asserted-by":"publisher","first-page":"837","DOI":"10.25300\/MISQ\/2015\/39.4.5","volume":"(39","author":"SR Boss","year":"2015","unstructured":"Boss, S. R., Galletta, D. F., Lowry, P. B., Moody, G. D., & Polak, P. (2015). What do systems users have to fear? using fear appeals to engender threats and fear that motivate protective security behaviors. MIS Quarterly: Management Information Systems, (39(4), 837\u2013864. https:\/\/doi.org\/10.25300\/MISQ\/2015\/39.4.5","journal-title":"MIS Quarterly: Management Information Systems"},{"key":"10232_CR23","unstructured":"Brown, J. (2016). How amazon responded to the Dyn DDoS attack.\u00a0CIO Dive, October. https:\/\/www.ciodive.com\/news\/how-amazon-responded-to-the-dyn-ddos-attack\/429050. Accessed 12 Oct 2021"},{"key":"10232_CR24","doi-asserted-by":"publisher","unstructured":"Bulgurcu, B., Cavusoglu, H., & Benbasat, I. (2010). Information security policy compliance: an empirical study of rationality-based beliefs and information security awareness. MIS Quarterly: Management Information Systems (34:SPEC. ISSUE 3), pp.\u00a0523\u2013548. https:\/\/doi.org\/10.2307\/25750690","DOI":"10.2307\/25750690"},{"issue":"3","key":"10232_CR25","doi-asserted-by":"publisher","first-page":"431","DOI":"10.3233\/JCS-2003-11308","volume":"11","author":"K Campbell","year":"2003","unstructured":"Campbell, K., Gordon, L. A., Loeb, M. P., & Zhou, L. (2003). The economic cost of publicly announced information security breaches: empirical evidence from the stock market. Journal of Computer Security, 11(3), 431\u2013448. https:\/\/doi.org\/10.3233\/JCS-2003-11308","journal-title":"Journal of Computer Security"},{"key":"10232_CR26","unstructured":"Campbell, P. L., & Stamp, J. E. (2004). A Classification scheme for risk assessment methods. Sandia National Laboratories, Sandia Report"},{"key":"10232_CR27","doi-asserted-by":"publisher","unstructured":"Cavusoglu, H., Cavusoglu, H., & Jun, Z. (2008). Security patch management: share the burden or share the damage?\u00a0Management Science (54:4), INFORMS, pp.\u00a0657\u2013670. https:\/\/doi.org\/10.1287\/mnsc.1070.0794","DOI":"10.1287\/mnsc.1070.0794"},{"issue":"2","key":"10232_CR28","doi-asserted-by":"publisher","first-page":"198","DOI":"10.1287\/isre.1080.0180","volume":"(20","author":"H Cavusoglu","year":"2009","unstructured":"Cavusoglu, H., Raghunathan, S., & Cavusoglu, H. (2009). Configuration of and interaction between information security technologies: the case of firewalls and intrusion detection systems. Information Systems Research, (20(2), 198\u2013217. https:\/\/doi.org\/10.1287\/isre.1080.0180","journal-title":"Information Systems Research"},{"key":"10232_CR29","unstructured":"CCTA (1991). SSADM-CRAMM subject guide for SSADM Version 3 and CRAMM Version 2, London"},{"key":"10232_CR30","doi-asserted-by":"publisher","first-page":"4","DOI":"10.2307\/2094589","volume":"(44","author":"LE Cohen","year":"1979","unstructured":"Cohen, L. E., & Felson, M. (1979). Social change and crime rate trends: a routine activity approach. American Sociological Review, (44, 4. https:\/\/doi.org\/10.2307\/2094589","journal-title":"American Sociological Review"},{"key":"10232_CR31","doi-asserted-by":"publisher","unstructured":"Courtney, R. H. (1977). Security risk assessment in electronic data processing systems. In AFIPS Conference Proceedings - 1977 National Computer Conference, AFIPS 1977, pp.\u00a097\u2013104. https:\/\/doi.org\/10.1145\/1499402.1499424","DOI":"10.1145\/1499402.1499424"},{"issue":"5","key":"10232_CR32","doi-asserted-by":"publisher","first-page":"959","DOI":"10.1007\/s10796-017-9809-4","volume":"(21","author":"S Das","year":"2019","unstructured":"Das, S., Mukhopadhyay, A., Saha, D., & Sadhukhan, S. (2019). A Markov-Based Model for information security risk assessment in healthcare MANETs. Information Systems Frontiers, (21(5), 959\u2013977. https:\/\/doi.org\/10.1007\/s10796-017-9809-4","journal-title":"Information Systems Frontiers"},{"key":"10232_CR33","doi-asserted-by":"publisher","first-page":"0","DOI":"10.1023\/A:1018993831870","volume":"(78","author":"VS Desai","year":"1998","unstructured":"Desai, V. S., & Bharati, R. (1998). A comparison of linear regression and neural network methods for predicting excess returns on large stocks. Annals of Operations Research, (78, 0. https:\/\/doi.org\/10.1023\/A:1018993831870","journal-title":"Annals of Operations Research"},{"issue":"7","key":"10232_CR34","doi-asserted-by":"publisher","first-page":"125","DOI":"10.1145\/341852.341877","volume":"43","author":"G Dhillon","year":"2000","unstructured":"Dhillon, G., & Backhouse, J. (2000). Information system security management in the new millennium. Communications of the ACM, 43(7), 125\u2013128. https:\/\/doi.org\/10.1145\/341852.341877","journal-title":"Communications of the ACM"},{"issue":"3","key":"10232_CR35","doi-asserted-by":"publisher","first-page":"293","DOI":"10.1111\/j.1365-2575.2006.00219.x)","volume":"16","author":"G Dhillon","year":"2006","unstructured":"Dhillon, G., & Torkzadeh, G. (2006). Value-focused assessment of information system security in organizations. Information Systems Journal, 16(3), 293\u2013314. https:\/\/doi.org\/10.1111\/j.1365-2575.2006.00219.x)","journal-title":"Information Systems Journal"},{"key":"10232_CR36","unstructured":"Dowd, M., McDonald, J., & Schuh, J. (2006). The Art of Software Security Assessment: Identifying and Preventing Software Vulnerabilities. Addison-Wesley Professional"},{"key":"10232_CR37","doi-asserted-by":"publisher","DOI":"10.2139\/ssrn.918880","author":"K Dutta","year":"2011","unstructured":"Dutta, K., & Perry, J. (2011). A tale of tails: an empirical analysis of loss distribution models for estimating operational risk capital. SSRN Electronic Journal. https:\/\/doi.org\/10.2139\/ssrn.918880","journal-title":"SSRN Electronic Journal"},{"key":"10232_CR38","doi-asserted-by":"publisher","unstructured":"Geurts, M., Box, G. E. P., & Jenkins, G. M. (1977). Time series analysis: forecasting and control. Journal of Marketing Research, 14. Wiley. https:\/\/doi.org\/10.2307\/3150485","DOI":"10.2307\/3150485"},{"key":"10232_CR39","doi-asserted-by":"publisher","unstructured":"Gordon, L. A., Loeb, M. P., & Sohail, T. (2003). A framework for using insurance for cyber-risk management.\u00a0Communications of the ACM,\u00a046(3), 81\u201385, ACM. https:\/\/doi.org\/10.1145\/636772.636774","DOI":"10.1145\/636772.636774"},{"key":"10232_CR40","unstructured":"Gough, C. (2019). MMO Gaming - Statistics & Facts. https:\/\/www.statista.com\/topics\/2290\/mmo-gaming\/. Accessed 12 Oct 2021"},{"key":"10232_CR41","doi-asserted-by":"publisher","unstructured":"Guarro, S. B. (1987). Principles and procedures of the LRAM approach to information systems risk analysis and management. Computers and Security,\u00a06(6), 493\u2013504, Elsevier. https:\/\/doi.org\/10.1016\/0167-4048(87)90030-7","DOI":"10.1016\/0167-4048(87)90030-7"},{"key":"10232_CR42","unstructured":"Gujarati, D. (2009). Basic Econometrics. McGraw-Hill Irwin"},{"key":"10232_CR43","unstructured":"Hagan, M. T., H. B. Demuth, M. H. Beale and O. De Jes\u00fas (2014). Neural Network Design, Martin Hagan"},{"key":"10232_CR44","unstructured":"Han, J., Kamber, M., & Pei, J. (2017). Data Mining: Concepts and Techniques. Elsevier LTD"},{"key":"10232_CR45","doi-asserted-by":"crossref","first-page":"1","DOI":"10.4236\/jis.2011.21001","volume":"2","author":"HSB Herath","year":"2011","unstructured":"Herath, H. S. B., & Herath, T. C. (2011). Copula-based actuarial model for pricing cyber-insurance policies. Workshop on the Economics of Information Security, 2, 1","journal-title":"Workshop on the Economics of Information Security"},{"key":"10232_CR46","unstructured":"Hoffman, L. J., Michelman, E. H., & Clements, D. (1978). Securate - Security evaluation and analysis using fuzzy metrics.. In AFIPS Natl Comput Conf Expo Conf Proc, Vol. 47, 531\u2013540"},{"key":"10232_CR47","doi-asserted-by":"publisher","unstructured":"Hossack, I. B., Pollard, J. H., & Zehnwirth, B. (1999). Introductory statistics with applications in general insurance. Introductory Statistics with Applications in General Insurance. https:\/\/doi.org\/10.1017\/cbo9781139173322","DOI":"10.1017\/cbo9781139173322"},{"key":"10232_CR48","unstructured":"Johansmeyer, T. (2021). Cybersecurity insurance has a big problem.\u00a0Harvard Business Review, Harvard Business Review. https:\/\/hbr.org\/2021\/01\/cybersecurity-insurance-has-a-big-problem. Accessed 12 Oct 2021"},{"issue":"5","key":"10232_CR49","doi-asserted-by":"publisher","first-page":"726","DOI":"10.1287\/mnsc.1040.0357","volume":"51","author":"K Kannan","year":"2005","unstructured":"Kannan, K., & Telang, R. (2005). Market for software vulnerabilities? Think again. Management Science, 51(5), 726\u2013740. https:\/\/doi.org\/10.1287\/mnsc.1040.0357","journal-title":"Management Science"},{"issue":"2","key":"10232_CR50","doi-asserted-by":"publisher","first-page":"147","DOI":"10.1016\/j.cose.2004.07.004","volume":"24","author":"B Karabacak","year":"2005","unstructured":"Karabacak, B., & Sogukpinar, I. (2005). ISRAM: Information Security Risk Analysis Method. Computers & Security, 24(2), 147\u2013159. https:\/\/doi.org\/10.1016\/j.cose.2004.07.004","journal-title":"Computers & Security"},{"key":"10232_CR51","doi-asserted-by":"crossref","unstructured":"Kelleher, J. D., & Tierney, B. (2018). Data Science. MIT Press Ltd.\u00a0https:\/\/www.ebook.de\/de\/product\/30073177\/john_d_academic_leader_of_the_information_communication_and_entertainment_research_institute_technological_university_dublin_kelleher_brendan_lecturer_at_the_school_of_computing_dublin_institute_of_technology_tierney_data_science.html. Accessed 12 Oct 2021","DOI":"10.7551\/mitpress\/11140.001.0001"},{"key":"10232_CR52","unstructured":"Kesan, J. P., Majuca, R., & Yurcik, W. (2005). Cyberinsurance as a market-based solution to the problem of cybersecurity - a case study. In Fourth Workshop on the Economics of Information Security (Vol. 2), pp.\u00a097\u2013120"},{"key":"10232_CR53","unstructured":"Kesan, J., Yurcik, W., & Majuca, R. P. (2013). The economic case for cyberinsurance. Dissent (Vol. Aut \/ Win)"},{"key":"10232_CR54","doi-asserted-by":"publisher","DOI":"10.1023\/A:1007097906602","author":"PR Kleindorfer","year":"1999","unstructured":"Kleindorfer, P. R., & Kunreuther, H. (1999). The complementary roles of mitigation and insurance in managing catastrophic risks. Risk Analysis. https:\/\/doi.org\/10.1023\/A:1007097906602","journal-title":"Risk Analysis"},{"key":"10232_CR55","unstructured":"Krohn, J., Beyleveld, G., & Aglae, B. (2019). Deep learning illustrated: a visual, interactive guide to artificial intelligence.\u00a0Addison-Wesley Professional (Vol. 53), Addison Wesley Pub Co Inc. https:\/\/www.ebook.de\/de\/product\/33154294\/jon_krohn_grant_beyleveld_aglae_bassens_deep_learning_illustrated_a_visual_interactive_guide_to_artificial_intelligence.html. Accessed 12 Oct 2021"},{"key":"10232_CR56","unstructured":"Kunreuther, H. (1997). Managing catastrophic risks through insurance and mitigation. In 5th Alexander Howden Conference on \u201cFinancial Risk Management for Natural Catastrophes\u201d, Gold Coast, Australia, pp.\u00a01\u201331. https:\/\/core.ac.uk\/download\/pdf\/6649681.pdf"},{"issue":"2","key":"10232_CR57","doi-asserted-by":"publisher","first-page":"164","DOI":"10.1090\/qam\/10666","volume":"2","author":"K Levenberg","year":"1944","unstructured":"Levenberg, K. (1944). A method for the solution of certain non-linear problems in least squares. Quarterly of Applied Mathematics, 2(2), 164\u2013168. https:\/\/doi.org\/10.1090\/qam\/10666","journal-title":"Quarterly of Applied Mathematics"},{"issue":"1","key":"10232_CR58","doi-asserted-by":"publisher","first-page":"111","DOI":"10.25300\/MISQ\/2013\/37.1.05","volume":"37","author":"D Liu","year":"2013","unstructured":"Liu, D., Li, X., & Santhanam, R. (2013). Digital games and beyond: what happens when players compete? MIS Quarterly: Management Information Systems, 37(1), 111\u2013124. https:\/\/doi.org\/10.25300\/MISQ\/2013\/37.1.05","journal-title":"MIS Quarterly: Management Information Systems"},{"key":"10232_CR59","unstructured":"Majuca, R. P., Yurcik, W., & Kesan, J. P. (2006). The Evolution of Cyberinsurance. http:\/\/arxiv.org\/abs\/cs\/0601020. Accessed 12 Oct 2021"},{"key":"10232_CR60","doi-asserted-by":"crossref","unstructured":"McCarthy, B. (2002). New economics of sociological criminology. Annual Review of Sociology (28:1), Annual Reviews 4139 El Camino Way, PO Box 10139, Palo Alto, CA 94303-0139, USA, pp.\u00a0417\u2013442","DOI":"10.1146\/annurev.soc.28.110601.140752"},{"key":"10232_CR61","unstructured":"McKeay, M. (2017). Q4 2017 State of the Internet Security Report. Akamai Technologies. https:\/\/www.akamai.com\/us\/en\/multimedia\/documents\/state-of-the-internet\/q4-2017-state-of-the-internet-security-report.pdf. Accessed 12 Oct 2021"},{"key":"10232_CR62","doi-asserted-by":"publisher","unstructured":"Mukhopadhyay, A., Chakrabarti, B. B., Saha, D., & Mahanti, A. (2007). E-risk management through self insurance: an option model. In Proceedings of the Annual Hawaii International Conference on System Sciences, IEEE. https:\/\/doi.org\/10.1109\/HICSS.2007.192","DOI":"10.1109\/HICSS.2007.192"},{"issue":"5","key":"10232_CR63","doi-asserted-by":"publisher","first-page":"997","DOI":"10.1007\/s10796-017-9808-5","volume":"21","author":"A Mukhopadhyay","year":"2019","unstructured":"Mukhopadhyay, A., Chatterjee, S., Bagchi, K. K., Kirs, P. J., & Shukla, G. K. (2019). Cyber Risk Assessment and Mitigation (CRAM) framework using logit and probit models for cyber insurance. Information Systems Frontiers, 21(5), 997\u20131018. https:\/\/doi.org\/10.1007\/s10796-017-9808-5","journal-title":"Information Systems Frontiers"},{"key":"10232_CR64","doi-asserted-by":"publisher","unstructured":"Nguyen, D., & Widrow, B. (1990). Improving the learning speed of 2-layer neural networks by choosing initial values of the adaptive weights. In IJCNN. International Joint Conference on Neural Networks (pp.\u00a021\u201326). IEEE. https:\/\/doi.org\/10.1109\/ijcnn.1990.137819","DOI":"10.1109\/ijcnn.1990.137819"},{"key":"10232_CR65","doi-asserted-by":"publisher","unstructured":"O\u2019Reilly, P. D., Rigopoulos, K., Witte, G., & Feldman, L. (2018).\u00a02017 Annual Report: NIST\/ITL Cybersecurity, & Program. Gaithersburg, MD, September. https:\/\/doi.org\/10.6028\/NIST.SP.800-203","DOI":"10.6028\/NIST.SP.800-203"},{"key":"10232_CR66","unstructured":"Ozier, W. (1989). Risk quantification problems and bayesian decision support system solutions. Information Age (11:4). Westbury Subscription Services, pp.\u00a0229\u2013234. http:\/\/dl.acm.org\/citation.cfm?id=69134.69141. Accessed Oct 2021"},{"key":"10232_CR67","unstructured":"Nelder, J. A. (1989). Generalized Linear Models. Taylor & Francis Ltd.\u00a0https:\/\/www.ebook.de\/de\/product\/3601523\/p_university_of_chicago_chicago_illinois_usa_mccullagh_john_a_imperial_college_london_uk_nelder_generalized_linear_models.html. Accessed 12 Oct 2021"},{"issue":"1","key":"10232_CR68","doi-asserted-by":"publisher","first-page":"3","DOI":"10.1145\/1216370.1216373","volume":"39","author":"T Peng","year":"2007","unstructured":"Peng, T., Leckie, C., & Ramamohanarao, K. (2007). Survey of network-based defense mechanisms countering the DoS and DDoS problems. ACM Computing Surveys, 39(1), 3. https:\/\/doi.org\/10.1145\/1216370.1216373","journal-title":"ACM Computing Surveys"},{"issue":"1","key":"10232_CR69","doi-asserted-by":"publisher","first-page":"43","DOI":"10.2307\/41410405","volume":"36","author":"S Ransbotham","year":"2012","unstructured":"Ransbotham, S., Mitra, S., & Ramsey, J. (2012). Are markets for vulnerabilities effective? MIS Quarterly, 36(1), 43. https:\/\/doi.org\/10.2307\/41410405","journal-title":"MIS Quarterly"},{"key":"10232_CR70","unstructured":"Rejda, G. E. (2007). Principles of Risk Management and Insurance, 10th Edition, Pearson"},{"issue":"1","key":"10232_CR71","doi-asserted-by":"publisher","first-page":"93","DOI":"10.1080\/00223980.1975.9915803","volume":"91","author":"RW Rogers","year":"1975","unstructured":"Rogers, R. W. (1975). A protection motivation theory of fear appeals and attitude change1. The Journal of Psychology, 91(1), 93\u2013114. https:\/\/doi.org\/10.1080\/00223980.1975.9915803","journal-title":"The Journal of Psychology"},{"issue":"4","key":"10232_CR72","doi-asserted-by":"publisher","first-page":"1023","DOI":"10.1080\/07421222.2017.1394049","volume":"34","author":"S Samtani","year":"2017","unstructured":"Samtani, S., Chinn, R., Chen, H., & Nunamaker, J. F. (2017). Exploring emerging hacker assets and key hackers for proactive cyber threat intelligence. Journal of Management Information Systems, 34(4), 1023\u20131053. https:\/\/doi.org\/10.1080\/07421222.2017.1394049","journal-title":"Journal of Management Information Systems"},{"issue":"3","key":"10232_CR73","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1145\/2187671.2187673","volume":"44","author":"H Shahriar","year":"2012","unstructured":"Shahriar, H., & Zulkernine, M. (2012). Mitigating program security vulnerabilities. ACM Computing Surveys, 44(3), 1\u201346. https:\/\/doi.org\/10.1145\/2187671.2187673","journal-title":"ACM Computing Surveys"},{"key":"10232_CR74","unstructured":"Shani, T., & Imperva (2019). Imperva, June. https:\/\/www.imperva.com\/blog\/this-ddos-attack-unleashed-the-most-packets-per-second-ever-heres-why-thats-important\/. Accessed 12 Oct 2021"},{"key":"10232_CR75","unstructured":"Sharma, K., & Mukhopadhyay, A. (2020a). Cyber risk assessment and mitigation using logit and probit models for DDoS attacks. In 26th Americas Conference on Information Systems (AMCIS), 2020, Salt Lake City"},{"key":"10232_CR76","unstructured":"Sharma, K., & Mukhopadhyay, A. (2020b). Assessing the risk of cyberattacks in the online gaming industry: a data mining approach. ISACA Journal (2)"},{"key":"10232_CR77","unstructured":"Smith, D. (2014). Why hacker gang \u2018Lizard Squad\u2019 took down Xbox live and playstation network.\u00a0Business Insider, December. http:\/\/www.businessinsider.com\/why-hacker-gang-lizard-squad-took-down-xbox-live-and-playstation-network-2014-12. Accessed 12 Oct 2021"},{"issue":"3","key":"10232_CR78","doi-asserted-by":"publisher","first-page":"266","DOI":"10.1016\/s0167-4048(02)00313-9","volume":"21","author":"E Smith","year":"2002","unstructured":"Smith, E., & Eloff, J. H. P. (2002). A prototype for assessing information technology risks in health care. Computers & Security, 21(3), 266\u2013284. https:\/\/doi.org\/10.1016\/s0167-4048(02)00313-9","journal-title":"Computers & Security"},{"key":"10232_CR79","unstructured":"Stolen, K., Braber, F., den, Dimitrakos, T., Fredriksen, R., Gran, B. A., Houmb, S. H. \u2026 Aagedal, J. O. (2002). Model-Based Risk Assessment-the CORAS Approach"},{"key":"10232_CR80","unstructured":"Tanenbaum, A. S., & Wetherall, D. J. (2010). Computer Networks, (5th ed.), Pearson. https:\/\/www.amazon.com\/Computer-Networks-5th-Andrew-Tanenbaum\/dp\/0132126958?SubscriptionId=AKIAIOBINVZYXZQZ2U3A&tag=chimbori05-20&linkCode=xm2&camp=2025&creative=165953&creativeASIN=0132126958. Accessed 12 Oct 2021"},{"key":"10232_CR81","doi-asserted-by":"publisher","unstructured":"Tripathi, M., & Mukhopadhyay, A. (2020). Financial Loss Due to a Data Privacy Breach: an empirical analysis.\u00a0Journal of Organizational Computing and Electronic Commerce, 30(4), 381\u2013400. https:\/\/doi.org\/10.1080\/10919392.2020.1818521","DOI":"10.1080\/10919392.2020.1818521"},{"key":"10232_CR82","doi-asserted-by":"publisher","unstructured":"Wang, M., Lu, Y., & Qin, J. (2020). A dynamic MLP-based DDoS attack detection method using feature selection and feedback.\u00a0Computers & Security, 88, 101645. https:\/\/doi.org\/10.1016\/j.cose.2019.101645","DOI":"10.1016\/j.cose.2019.101645"},{"key":"10232_CR83","doi-asserted-by":"publisher","first-page":"242","DOI":"10.1016\/j.jbusres.2018.07.035","volume":"92","author":"SL Wu","year":"2018","unstructured":"Wu, S. L., & Hsu, C. P. (2018). Role of authenticity in Massively Multiplayer Online Role Playing Games (MMORPGs): determinants of virtual item purchase intention. Journal of Business Research, 92, 242\u2013249. https:\/\/doi.org\/10.1016\/j.jbusres.2018.07.035","journal-title":"Journal of Business Research"},{"issue":"1","key":"10232_CR84","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1145\/2522968.2522977","volume":"46","author":"A Yahyavi","year":"2013","unstructured":"Yahyavi, A., & Kemme, B. (2013). Peer-to-peer architectures for massively multiplayer online games. ACM Computing Surveys, 46(1), 1\u201351. https:\/\/doi.org\/10.1145\/2522968.2522977","journal-title":"ACM Computing Surveys"},{"issue":"1","key":"10232_CR85","doi-asserted-by":"publisher","first-page":"73","DOI":"10.25300\/MISQ\/2019\/13042","volume":"43","author":"WT Yue","year":"2019","unstructured":"Yue, W. T., Wang, Q. H., & Hui, K. L. (2019). See no evil, hear no evil? Dissecting the impact of online hacker forums. MIS Quarterly: Management Information Systems, 43(1), 73\u201395. https:\/\/doi.org\/10.25300\/MISQ\/2019\/13042","journal-title":"MIS Quarterly: Management Information Systems"},{"key":"10232_CR86","doi-asserted-by":"publisher","unstructured":"Zhang, Z., Nan, G., & Tan, Y. (2020). On-premises software: competition under security risk and product customization. Information systems research articles in advance.\u00a0Information Systems Research, 1\u201317. https:\/\/doi.org\/10.1287\/isre.2019.0919","DOI":"10.1287\/isre.2019.0919"}],"container-title":["Information Systems Frontiers"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/s10796-021-10232-7.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/article\/10.1007\/s10796-021-10232-7\/fulltext.html","content-type":"text\/html","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/s10796-021-10232-7.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2023,10,2]],"date-time":"2023-10-02T08:17:35Z","timestamp":1696234655000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/s10796-021-10232-7"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2022,1,9]]},"references-count":86,"journal-issue":{"issue":"5","published-print":{"date-parts":[[2023,10]]}},"alternative-id":["10232"],"URL":"https:\/\/doi.org\/10.1007\/s10796-021-10232-7","relation":{},"ISSN":["1387-3326","1572-9419"],"issn-type":[{"value":"1387-3326","type":"print"},{"value":"1572-9419","type":"electronic"}],"subject":[],"published":{"date-parts":[[2022,1,9]]},"assertion":[{"value":"6 December 2021","order":1,"name":"accepted","label":"Accepted","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"9 January 2022","order":2,"name":"first_online","label":"First Online","group":{"name":"ArticleHistory","label":"Article History"}},{"order":1,"name":"Ethics","group":{"name":"EthicsHeading","label":"Declarations"}},{"value":"The authors declare that there is no conflict of interest.","order":2,"name":"Ethics","group":{"name":"EthicsHeading","label":"Conflict of Interest"}}]}}