Cybersecurity investments in a two-echelon supply chain with third-party risk propagation

Li Yanhui; Xu Lu

首页> 外文期刊>International Journal of Production Research >Cybersecurity investments in a two-echelon supply chain with third-party risk propagation

【24h】

Cybersecurity investments in a two-echelon supply chain with third-party risk propagation

机译：网络安全在双梯队供应链中投资，第三方风险传播

获取原文

获取原文并翻译 | 示例

掌桥外文数据库（机构版） >>

开具论文收录证明 >>

文献代查 >>

页面导航

摘要
著录项
相似文献
相关主题

摘要

Cybersecurity presents a monumental challenge for interconnected supply chains, as an attack on one node can compromise an entire business. In this paper, we propose a game theory model to investigate cybersecurity investments with third-party risk propagation in a two-echelon supply chain consisting of one retailer and n suppliers. The optimal investments and their responses to relevant security characteristics, such as intrinsic vulnerability, propagation probability, number of suppliers, and attack probability, are analysed and discussed both theoretically and numerically considering one-stage risk propagation. It is found that there are serious prisoners' dilemma and free-riding phenomena in such a scenario. To mitigate third-party risks and improve the investment efficiency, three coordination mechanisms, joint decision, security risk compensation, and security information sharing, are presented and compared numerically. The results indicate that joint decision-making and security risk compensation perform better on stimulating firms' investments and reducing expected costs both individually and collectively relative to security information sharing. Furthermore, the case of two-stage risk propagation is also supplemented and compared with one-stage case. Based on these findings, some management insights are recommended to cybersecurity managers in supply chains for designing more efficient cybersecurity mechanisms and investment strategies.

机译：网络安全对互联供应链提出了一个巨大的挑战，因为对一个节点的攻击可能会妥协整个业务。在本文中，我们提出了一种博弈论模型，调查网络安全投资，其中第三方风险传播在由一个零售商和N个供应商组成的双梯队供应链中。在理论上和数值上分析并讨论了对相关安全特性的最佳投资及其对相关安全特性的反应，例如内在漏洞，传播概率，供应商的数量和攻击概率以及讨论一级风险传播。有人发现，在这种情况下有严重的囚犯困境和搭便车现象。为了减轻第三方风险，提高投资效率，三个协调机制，联合决定，安全风险赔偿和安全信息共享，并在数值上进行比较。结果表明，联合决策和安全风险赔偿对刺激企业的投资和减少单独和集体的预期成本相对于安全信息共享，更好。此外，还补充了两阶段风险繁殖的情况，并与单级案例进行了补充。根据这些调查结果，建议使用一些管理层，以供应链中的网络安全管理员设计更有效的网络安全机制和投资策略。

著录项

来源
《International Journal of Production Research》 |2021年第4期|1216-1238|共23页
作者
Li Yanhui; Xu Lu;
展开▼
作者单位

Cent China Normal Univ Sch Informat Management Wuhan Peoples R China;

Cent China Normal Univ Sch Informat Management Wuhan Peoples R China;

展开▼
收录信息美国《科学引文索引》(SCI);美国《工程索引》(EI);
原文格式 PDF
正文语种 eng
中图分类
关键词
cybersecurity investment; third-party risk propagation; interdependent security; supply chain coordination;

机译：网络安全投资;第三方风险传播;相互依存的安全;供应链协调;

相似文献

外文文献
中文文献
专利

1. Analysis of leadership structures for two-echelon supply chains involving multiple risky suppliers [J] . Takuya TSUBOI, Tatsushi NISHI, Guoqing ZHANG Journal of Advanced Mechanical Design, Systems, and Manufacturing . 2018,第3期

机译：涉及多个风险供应商的两级供应链领导结构分析
2. Lower bounding inventory allocations for risk pooling in two-echelon supply chains [J] . Edirisinghe Chanaka, Atkins Derek International journal of production economics . 2017,第MAY期

机译：下限库存分配用于两级供应链中的风险汇总
3. To introduce competition or not to introduce competition: An analysis of corporate social responsibility investment collaboration in a two-echelon supply chain [J] . Transportation Research . 2020,第Jana期

机译：引入竞争还是不引入竞争：两级供应链中的企业社会责任投资协作分析
4. Analysis of Two-echelon Supply Chains with Risk-bias Participators [C] . Sun Hua, He Jianmin, Yang Haowei, International conference on intelligent computation technology and automation . 2008

机译：带有风险偏好参与者的两级供应链分析
5. Risk mitigation in the supply chain: Examining the role of IT investment to manage safety performance [D] . Cantor, David Edward 2006

机译：缓解供应链中的风险：检查IT投资在管理安全绩效中的作用
6. The rippled newsvendor: A new inventory framework for modeling supply chain risk severity in the presence of risk propagation [O] . Myles D. Garvey, Steven Carnovale -1

机译：涟漪的报贩：一种新的库存框架用于在存在风险传播的情况下对供应链风险严重性进行建模
7. Sustainability Investment of a Two-Echelon Supply Chain under Cap-and-Trade Regulation [O] . Yuyu Chen, Jianfei Gu 2021

机译：在CAP和贸易监管下双梯队供应链的可持续性投资

Cybersecurity investments in a two-echelon supply chain with third-party risk propagation

摘要

著录项

相似文献

相关主题

期刊订阅