Research On Investment Decision Of Enterprises Information Security Considering The Relevance Of Information Assets

Under the background of continuous development of information and communication technology,extensive application of e-commerce and continuous deepening of enterprise informatization,new information security problems are gradually emerging,while the economics of information security is a new branch of economics to solve these problems.The main purpose of information security economics is to develop effective information security investment strategies for enterprises by analyzing the influencing factors,so as to improve the information security level of enterprises and reduce the expected cost.The relevance of enterprise information assets is a significant factor of information security economics,it refers to the mutual relationship of information assets between enterprises,which can directly affect the investment decision of enterprise information security.According to the correlation category of enterprise information assets,this paper makes an in-depth study of information security investment decisions of complementary enterprises,substitutable enterprises and enterprises based on information security sharing platform,the key parameters are analyzed,the optimal strategy of single decision and joint decision is analyzed,and the effective economic incentive mechanism and measures are proposed.The main work and innovation points are as follows.Firstly,the information security investment decision among complementary enterprises is studied.Based on the characteristics of "multi-enterprise" and "non-cooperative" modeling,combined with the variable of "probability of hacker invasion",which can stimulate enterprises to increase investment in information security and reduce cost,the game model of information security investment among complementary enterprises is constructed.On this basis,the optimal investment decisions in the case of independent decision-making and collaborative decision-making are studied,and the influences of the number of enterprises,the probability of network propagation and the probability of hacker invasion on enterprises in the two decision-making modes are analyzed.It is found that the information security level of collaborative decision-making is higher than that of independent decision-making,and the expected cost is lower than that of independent decision-making.The increase of the number of enterprises has a negative impact on the security investment of enterprises in the case of individual decision and collaborative decision.In collaborative decision-making,the optimal investment will increase with the increase of the probability of network propagation,which is contrary to the trend of individual decision.In collaborative decision-making,there is a minimum expected cost threshold,enterprise is not necessary to invest when it's lower than the the threshold.The proposed compensation mechanism and information sharing mechanism can improve the information security level and reduce the expected cost,which are effective economic incentive measures.Secondly,the information security investment decision among substitutable enterprises is studied.On the basis of content(1),the substitution enterprise information security investment decision model is constructed based on game theory,optimization theory and synergetic theory,the optimal investment decisions of individual decision and joint decision are analyzed,the enterprise information asset replacement rate,the number of enterprises and hacker invasion probability is taken into account.It is found that the substitution relationship between the enterprise groups implies the competition among the enterprise groups,which leads to the overinvestment of the enterprise groups in information security.The investment of optimal information security decreases with the increase of the number of enterprises,at this time,increasing the number of enterprises can reduce the investment until the number of enterprises reaches a threshold,when the number of enterprises exceeds the threshold,the optimal investment of enterprises is zero,and there is no need to invest.The optimal investment increases with the increase of hacker invasion probability and enterprise substitution rate,and the investment in non-cooperative cases is always greater than that in cooperative cases.Under the information sharing mechanism,substitutable enterprises can not only reduce the investment amount of information security,but also reduce the expected cost,which is an effective economic incentive measure.Thirdly,the information security investment decision of enterprises based on information sharing platform is studied.Based on evolutionary game theory,this paper constructs an evolutionary game model of information security investment among weakly related enterprises by combining the characteristics of "weak correlation" and "incomparability".On this basis,the cost of information sharing,spillover effect of information sharing and government subsidies is taken into account,the evolution path of information sharing of platform enterprises is simulated by Matlab when different influencing factors change,and the path to improve the efficiency of information sharing platform is proposed based on the research results.It is found that the low cost of information sharing can accelerate theevolution of enterprises to the stable direction of active cooperation strategy.When the spillover effect between enterprises is high,enterprises will eventually choose the sharing strategy,and under the same spillover effect,the cost of information sharing will affect the choice of enterprises,the lower the cost,the faster the change of enterprise cooperation intention.The cooperation willingness of enterprises increases with the increase of government support,while the excessive government support has a certain crowding out effect on the investment of enterprises,resulting in diminishing marginal effect,smaller effect on enterprises and lower change speed of cooperation willingness of enterprises.Under the same level of government support,enterprises with low input costs have less time to choose the sharing strategy than those with high input costs.In this paper,the enterprise information security investment decision-making problem under the correlation of information assets is studied in depth by theoretical proof and numerical experiment.There are three new information security investment decision-making models are constructed,and some innovative research results are obtained.The research in this paper enriches the theory of enterprise information security investment decision making,and provides reference for information security investment of complementary enterprises,substitutable enterprises and enterprises based on information sharing platform in reality,which is of great significance in both theory and practice.