Til hovedinnhold
Norsk English

Differentiating Cyber Risk of Insurance Customers: The Insurance Company Perspective

Sammendrag

As a basis for offering policy and setting tariffs, cyber-insurance carriers need to assess the cyber risk of companies. This paper explores the challenges insurance companies face in assessing cyber risk, based on literature and interviews with representatives from insurers. The interview subjects represent insurance companies offering cyber-insurance in a market where this is a new and unknown product. They have limited historical data, with few examples of incidents leading to payout. This lack of experience and data, together with the need for an efficient sales process, highly impacts their approach to risk assessment. Two options for improving the ability to perform thorough yet efficient assessments of cyber risk are explored in this paper: basing analysis on reusable sector-specific risk models, and including managed security service providers (MSSPs) in the value chain.

Kategori

Vitenskapelig artikkel

Språk

Engelsk

Forfatter(e)

  • Inger Anne Tøndel
  • Fredrik Seehusen
  • Erlend Andreas Gjære
  • Marie Elisabeth Gaup Moe

Institusjon(er)

  • SINTEF Digital / Software Engineering, Safety and Security
  • SINTEF Digital / Sustainable Communication Technologies

År

2016

Publisert i

Lecture Notes in Computer Science (LNCS)

ISSN

0302-9743

Forlag

Springer

Årgang

9817

Side(r)

175 - 190

Vis denne publikasjonen hos Cristin