{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,6,19]],"date-time":"2025-06-19T04:08:55Z","timestamp":1750306135040,"version":"3.41.0"},"publisher-location":"New York, NY, USA","reference-count":54,"publisher":"ACM","license":[{"start":{"date-parts":[[2017,6,19]],"date-time":"2017-06-19T00:00:00Z","timestamp":1497830400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2017,6,19]]},"DOI":"10.1145\/3099012.3099013","type":"proceedings-article","created":{"date-parts":[[2017,10,20]],"date-time":"2017-10-20T13:04:26Z","timestamp":1508504666000},"page":"37-42","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":2,"title":["Towards a Multi-objective Optimization Model to Support Information Security Investment Decision-making"],"prefix":"10.1145","author":[{"given":"Eva","family":"Weish\u00e4upl","sequence":"first","affiliation":[{"name":"University of Regensburg, Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2017,6,19]]},"reference":[{"key":"e_1_3_2_1_1_1","doi-asserted-by":"publisher","DOI":"10.1109\/HICSS.2013.569"},{"key":"e_1_3_2_1_2_1","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2005.14"},{"key":"e_1_3_2_1_3_1","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2007.11"},{"key":"e_1_3_2_1_4_1","doi-asserted-by":"crossref","unstructured":"France Belanger Janine S Hiller and Wanda J Smith. 2002. Trustworthiness in Electronic Commerce: The Role of Privacy Security and Site Attributes. The journal of strategic Information Systems 11 3 (2002) 245--270.  France Belanger Janine S Hiller and Wanda J Smith. 2002. Trustworthiness in Electronic Commerce: The Role of Privacy Security and Site Attributes. The journal of strategic Information Systems 11 3 (2002) 245--270.","DOI":"10.1016\/S0963-8687(02)00018-5"},{"key":"e_1_3_2_1_5_1","doi-asserted-by":"publisher","DOI":"10.1109\/ARES.2006.46"},{"key":"e_1_3_2_1_6_1","doi-asserted-by":"publisher","DOI":"10.1145\/1042091.1042094"},{"key":"e_1_3_2_1_7_1","doi-asserted-by":"publisher","DOI":"10.1109\/ARES.2013.77"},{"key":"e_1_3_2_1_8_1","doi-asserted-by":"publisher","DOI":"10.1145\/581339.581370"},{"key":"e_1_3_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1109\/ARES.2007.78"},{"key":"e_1_3_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1287\/isre.1050.0041"},{"volume-title":"Decision Sciences: Theory and Practice","author":"Deb Kalyanmoy","key":"e_1_3_2_1_11_1"},{"volume-title":"The Economics of Information Security and Privacy","author":"Demetz Lukas","key":"e_1_3_2_1_12_1"},{"key":"e_1_3_2_1_13_1","unstructured":"eWeek. 2016. Spending on Information Security Expected to Rise in 2016. Article. (January 2016). http:\/\/www.eweek.com\/it-management\/spending-on-information-security-expected-to-rise-in-2016.html.  eWeek. 2016. Spending on Information Security Expected to Rise in 2016. Article. (January 2016). http:\/\/www.eweek.com\/it-management\/spending-on-information-security-expected-to-rise-in-2016.html."},{"key":"e_1_3_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.1145\/948005.948050"},{"key":"e_1_3_2_1_15_1","doi-asserted-by":"publisher","DOI":"10.17705\/1CAIS.02822"},{"key":"e_1_3_2_1_16_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.orl.2013.05.002"},{"key":"e_1_3_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.1057\/jors.2013.133"},{"key":"e_1_3_2_1_18_1","unstructured":"Gartner. 2011. Gartner Highlights Strategies for Dealing with the Increase in Advanced Targeted Threats. Press Release. (August 2011). http:\/\/www.gartner.com\/newsroom\/id\/1774514 http:\/\/www.gartner.com\/newsroom\/id\/1774514.  Gartner. 2011. Gartner Highlights Strategies for Dealing with the Increase in Advanced Targeted Threats. Press Release. (August 2011). http:\/\/www.gartner.com\/newsroom\/id\/1774514 http:\/\/www.gartner.com\/newsroom\/id\/1774514."},{"key":"e_1_3_2_1_19_1","unstructured":"Gartner. 2015. Gartner Says Worldwide Information Security Spending Will Grow Almost 4.7 Percent to Reach 75.4 Billion in 2015. Press Release. (September 2015). http:\/\/www.gartner.com\/newsroom\/id\/3135617 http:\/\/www.gartner.com\/newsroom\/id\/3135617.  Gartner. 2015. Gartner Says Worldwide Information Security Spending Will Grow Almost 4.7 Percent to Reach 75.4 Billion in 2015. Press Release. (September 2015). http:\/\/www.gartner.com\/newsroom\/id\/3135617 http:\/\/www.gartner.com\/newsroom\/id\/3135617."},{"key":"e_1_3_2_1_20_1","unstructured":"Gartner. 2016. Magic Quadrant for Enterprise Data Loss Prevention. Article. (January 2016). https:\/\/www.gartner.com\/doc\/reprints?id=1-2X96R6A&ct=160128&st=sb https:\/\/www.gartner.com\/doc\/reprints?id=1-2X96R6A&ct=160128&st=sb.  Gartner. 2016. Magic Quadrant for Enterprise Data Loss Prevention. Article. (January 2016). https:\/\/www.gartner.com\/doc\/reprints?id=1-2X96R6A&ct=160128&st=sb https:\/\/www.gartner.com\/doc\/reprints?id=1-2X96R6A&ct=160128&st=sb."},{"key":"e_1_3_2_1_21_1","doi-asserted-by":"publisher","DOI":"10.1145\/581271.581274"},{"key":"e_1_3_2_1_22_1","unstructured":"Lawrence A Gordon and Martin P Loeb. 2002. Return on Information Security Investments: Myths vs. Realities. Strategic finance 84 5 (2002) 26--31.  Lawrence A Gordon and Martin P Loeb. 2002. Return on Information Security Investments: Myths vs. Realities. Strategic finance 84 5 (2002) 26--31."},{"key":"e_1_3_2_1_23_1","doi-asserted-by":"publisher","DOI":"10.1007\/s10796-006-9010-7"},{"key":"e_1_3_2_1_24_1","unstructured":"Grant Thornton. 2015. Cyber Attacks Cost Global Business over 300bn. Press Release. (September 2015). http:\/\/www.grantthornton.global\/insights\/articles\/cyber-attacks-cost-global-business-over-300bn-a-year\/  Grant Thornton. 2015. Cyber Attacks Cost Global Business over 300bn. Press Release. (September 2015). http:\/\/www.grantthornton.global\/insights\/articles\/cyber-attacks-cost-global-business-over-300bn-a-year\/"},{"key":"e_1_3_2_1_25_1","doi-asserted-by":"publisher","DOI":"10.1145\/1391949.1391951"},{"key":"e_1_3_2_1_26_1","doi-asserted-by":"publisher","DOI":"10.2753\/MIS0742-1222250310"},{"key":"e_1_3_2_1_27_1","doi-asserted-by":"publisher","DOI":"10.4018\/jisp.2007100101"},{"key":"e_1_3_2_1_28_1","doi-asserted-by":"publisher","DOI":"10.1109\/CEC.2013.6557988"},{"key":"e_1_3_2_1_29_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.dss.2013.10.011"},{"key":"e_1_3_2_1_30_1","unstructured":"C Derrick Huang Qing Hu and Ravi S Behara. 2006. Economics of Information Security Investment in the Case of Simultaneous Attacks. (2006).  C Derrick Huang Qing Hu and Ravi S Behara. 2006. Economics of Information Security Investment in the Case of Simultaneous Attacks. (2006)."},{"key":"e_1_3_2_1_31_1","unstructured":"International Standard ISO\/IEC 27001: 2013. 2005. Information Technology--Security Techniques--Information Security Management Systems--Requirements. (2005).  International Standard ISO\/IEC 27001: 2013. 2005. Information Technology--Security Techniques--Information Security Management Systems--Requirements. (2005)."},{"key":"e_1_3_2_1_32_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.ijinfomgt.2008.02.002"},{"key":"e_1_3_2_1_33_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.csi.2007.10.013"},{"key":"e_1_3_2_1_34_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.im.2003.08.018"},{"volume-title":"Networking and Mobile Computing, 2009. WiCom'09. 5th International Conference on. IEEE, 1--3.","year":"2009","author":"Li Man","key":"e_1_3_2_1_35_1"},{"key":"e_1_3_2_1_36_1","unstructured":"Martin Ljungdahl and Michael Nordstr\u00f6m. 2016. Security Analysis of Machine Monitoring Sensor Communication. (2016).  Martin Ljungdahl and Michael Nordstr\u00f6m. 2016. Security Analysis of Machine Monitoring Sensor Communication. (2016)."},{"key":"e_1_3_2_1_37_1","doi-asserted-by":"publisher","DOI":"10.1109\/IV.2010.81"},{"key":"e_1_3_2_1_38_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-88908-3_2"},{"key":"e_1_3_2_1_40_1","unstructured":"Steve Purser. 2004. A Practical Guide to Managing Information Security. Artech House.   Steve Purser. 2004. A Practical Guide to Managing Information Security. Artech House."},{"key":"e_1_3_2_1_41_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.ress.2009.07.001"},{"key":"e_1_3_2_1_42_1","unstructured":"Robert Richardson and CSI Director. 2008. CSI Computer Crime and Security Survey. (2008).  Robert Richardson and CSI Director. 2008. CSI Computer Crime and Security Survey. (2008)."},{"key":"e_1_3_2_1_43_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.dss.2013.01.001"},{"key":"e_1_3_2_1_44_1","unstructured":"Andreas Schilling and Brigitte Werners. 2015. Optimal Information Security Expenditures Considering Budget Constraints.. In PACIS. 251.  Andreas Schilling and Brigitte Werners. 2015. Optimal Information Security Expenditures Considering Budget Constraints.. In PACIS. 251."},{"key":"e_1_3_2_1_45_1","doi-asserted-by":"crossref","unstructured":"Gary Stoneburner Alice Y Goguen and Alexis Feringa. 2002. Sp 800-30. Risk Management Guide for Information Technology Systems. (2002).  Gary Stoneburner Alice Y Goguen and Alexis Feringa. 2002. Sp 800-30. Risk Management Guide for Information Technology Systems. (2002).","DOI":"10.6028\/NIST.SP.800-30"},{"key":"e_1_3_2_1_46_1","doi-asserted-by":"publisher","DOI":"10.1142\/S0219622002000154"},{"key":"e_1_3_2_1_47_1","unstructured":"Xiaomeng Su. 2006. An Overview of Economic Approaches to Information Security Management. (2006).  Xiaomeng Su. 2006. An Overview of Economic Approaches to Information Security Management. (2006)."},{"key":"e_1_3_2_1_48_1","unstructured":"Hanna Toivanen. 2015. Case Study of Why Information Security Investment Fail? (2015).  Hanna Toivanen. 2015. Case Study of Why Information Security Investment Fail? (2015)."},{"key":"e_1_3_2_1_49_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2005.02.001"},{"key":"e_1_3_2_1_50_1","unstructured":"Assurance User and Audit Planning. 1995. An Introduction to Computer Security: The NIST Handbook. (1995).  Assurance User and Audit Planning. 1995. An Introduction to Computer Security: The NIST Handbook. (1995)."},{"key":"e_1_3_2_1_51_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.dss.2012.04.001"},{"volume-title":"Sensing and Control, 2008. ICNSC 2008. IEEE International Conference on. IEEE, 756--761","year":"2008","author":"Wang Zikai","key":"e_1_3_2_1_52_1"},{"key":"e_1_3_2_1_53_1","doi-asserted-by":"publisher","DOI":"10.1145\/859670.859675"},{"key":"e_1_3_2_1_54_1","doi-asserted-by":"crossref","unstructured":"John Wunder Adam Halbardier and David Waltermire. 2011. Specification for Asset Identification 1.1. US Department of Commerce National Institute of Standards and Technology.  John Wunder Adam Halbardier and David Waltermire. 2011. Specification for Asset Identification 1.1. US Department of Commerce National Institute of Standards and Technology.","DOI":"10.6028\/NIST.IR.7693"},{"key":"e_1_3_2_1_55_1","doi-asserted-by":"publisher","DOI":"10.5555\/2035368.2035388"}],"event":{"name":"SHCIS '17: Workshop on Security in Highly Connected IT Systems","acronym":"SHCIS '17","location":"Neuch\u00e2tel Switzerland"},"container-title":["Proceedings of the 4th Workshop on Security in Highly Connected IT Systems"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3099012.3099013","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3099012.3099013","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T03:37:16Z","timestamp":1750217836000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3099012.3099013"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2017,6,19]]},"references-count":54,"alternative-id":["10.1145\/3099012.3099013","10.1145\/3099012"],"URL":"https:\/\/doi.org\/10.1145\/3099012.3099013","relation":{},"subject":[],"published":{"date-parts":[[2017,6,19]]},"assertion":[{"value":"2017-06-19","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}