Description
The objective of this paper is invetigate the following questions: How do vulnerability exposures in software change with time? Are we capable of accurately predicting software risk for the future in terms of volatility growth? How do user firms diversify their software investments to optimize the risk exposure? Based on the threshold risk profile and IT budget, what diversification strategies can firms possibly adopt?
Recommended Citation
Biswas, Baidyanath; Mukhopadhyay, Arunabha; and Dhillon, Gurpreet, "GARCH-based Risk Assessment and Mean-Variance-based Risk Mitigation Framework for Software Vulnerabilities" (2017). AMCIS 2017 Proceedings. 26.
https://aisel.aisnet.org/amcis2017/TREOs/Presentations/26
GARCH-based Risk Assessment and Mean-Variance-based Risk Mitigation Framework for Software Vulnerabilities
The objective of this paper is invetigate the following questions: How do vulnerability exposures in software change with time? Are we capable of accurately predicting software risk for the future in terms of volatility growth? How do user firms diversify their software investments to optimize the risk exposure? Based on the threshold risk profile and IT budget, what diversification strategies can firms possibly adopt?