On the Role of Risk Perceptions in Cyber Insurance Contracts

by   Shutian Liu, et al.

Risk perceptions are essential in cyber insurance contracts. With the recent surge of information, human risk perceptions are exposed to the influences from both beneficial knowledge and fake news. In this paper, we study the role of the risk perceptions of the insurer and the user in cyber insurance contracts. We formulate the cyber insurance problem into a principal-agent problem where the insurer designs the contract containing a premium payment and a coverage plan. The risk perceptions of the insurer and the user are captured by coherent risk measures. Our framework extends the cyber insurance problem containing a risk-neutral insurer and a possibly risk-averse user, which is often considered in the literature. The explicit characterizations of both the insurer's and the user's risk perceptions allow us to show that cyber insurance has the potential to incentivize the user to invest more on system protection. This possibility to increase cyber security relies on the facts that the insurer is more risk-averse than the user (in a minimization setting) and that the insurer's risk perception is more sensitive to the changes in the user's actions than the user himself. We investigate the properties of feasible contracts in a case study on the insurance of a computer system against ransomware.


page 1

page 2

page 3

page 4


Mitigating Moral Hazard in Cyber Insurance Using Risk Preference Design

Cyber insurance is a risk-sharing mechanism that can improve cyber-physi...

FlipIn: A Game-Theoretic Cyber Insurance Framework for Incentive-Compatible Cyber Risk Management of Internet of Things

Internet of Things (IoT) is highly vulnerable to emerging Advanced Persi...

Probabilistic Framework For Loss Distribution Of Smart Contract Risk

Smart contract risk can be defined as a financial risk of loss due to cy...

Optimal Cyber Insurance Policy Design for Dynamic Risk Management and Mitigation

Recently, with the growing number of cyber-attacks and the constant lack...

Cyber Insurance

This chapter will first present a principal-agent game-theoretic model t...

Building Resilience in Cybersecurity – An Artificial Lab Approach

Based on classical contagion models we introduce an artificial cyber lab...

Contract-based Methodology for Developing Resilient Cyber-Infrastructure in the Industry 4.0 Era

As the industrial cyber-infrastructure become increasingly important to ...

Please sign up or login with your details

Forgot password? Click here to reset