Municipal cyber risk modeling using cryptographic computing to inform cyber policymaking

Municipalities are vulnerable to cyberattacks with devastating consequences, but they lack key information to evaluate their own risk and compare their security posture to peers. Using data from 83 municipalities collected via a cryptographically secure computation platform about their security posture, incidents, security control failures, and losses, we build data-driven cyber risk models and cyber security benchmarks for municipalities. We produce benchmarks of the security posture in a sector, the frequency of cyber incidents, forecasted annual losses for organizations based …

build computation computing consequences control cryptographic cs.cr cyber cyberattacks cyber risk data econ.gn failures incidents information key losses modeling municipalities own platform posture q-fin.ec risk risk modeling secure computation security security posture vulnerable