Program

The Workshop on the Economics of Information Security (WEIS) is the leading forum for interdisciplinary scholarship on information security and privacy, combining expertise from the fields of economics, social science, business, law, policy, and computer science.

The WEIS 2023 program consists of the presentation and discussion of research papers. The papers have been selected in a rigorous peer-review process by an international program committee. Presenting authors are highlighted in bold.

As a recognition of the research work, there will be awards to the Best Paper (1000 CHF), Best Paper Presentation (750 CHF) and Best Poster Presentation (250 CHF).

Tuesday, July 4, 2023

7:00-9:00pm

Informal get-together on a panoramic terrace of Campus Biotech Innovation Park: Please register here (deadline Sunday July 2nd 8pm CET)

Wednesday, July 5, 2023

8:30-11:00am	CERN Visit Synchroton Data Center Atlas Experiment Control Center IdeaSquare Please register here (deadline Sunday July 2nd 8pm CET)
12:00-1:00pm	Registration
1:00-1:30pm	Welcome address Thomas Maillart, University of Geneva Jonas Haertle, Chief of the Office of the Executive Director, UNITAR
1:30-2:45pm	Session: Cyber Incidents and Insurance Chair: Mingyan Liu Time Dynamics of Cyber Risk Martin Eling, Rustam Ibragimov & Dingchen Ning M&A Effect on Data Breaches in Hospitals: 2010-2022 (WEIS'23 Best Paper) Nan Clement Does Decomposing Losses Improve Our Understanding of the Financial Impact of Data Breaches? Justin Theriot & Benjamin Gowan
2:45-3:00pm	Coffee Break
3:00-4:00pm	Panel: Incentivizing Cyber Resilience Dingchen Ning, Institute of Insurance Economics, University of Saint Gallen Tal Goldstein, Head of Strategy, Centre for Cybersecurity, World Economic Forum Dr.Thomas Maillart,University of Geneva Scott Stransky, Head of the Marsh McLennan Cyber Risk Intelligence Center. (Moderator)
4:00-4:15pm	Coffee Break
4:15-5:15pm	Session: Online Crime Chair: Tyler Moore Argot as a Trust Signal: Slang, Jargon & Reputation on a Large Cybercrime Forum Jack Hughes, Andrew Caines & Alice Hutchings You Can Tell a Cybercriminal by the Company they Keep: A Framework to Infer the Relevance of Underground Communities to the Threat Landscape Michele Campobasso, Radu Rădulescu, Sylvan Brons & Luca Allodi
7:00-10:00pm	Gala Dinner at United Nations Beach Club

Thursday, July 6, 2023

8:30-9:00am	Welcome Coffee
9:00-10:15am	Session: Open Source Security Chair: Susan Landau Enhancing Vulnerability Prioritization: Data-Driven Exploit Predictions with Community-Driven Insights Jay Jacobs, Sasha Romanosky, Octavian Suciu, Ben Edwards & Armin Sarabi A Theory of Open Source Security: The Spillover of Security Knowledge in Vulnerability Disclosures through Software Supply Chains Yu-Kai Lin & Weifeng Li Cyberattacks, Media Coverage and Municipal Finance Lefteris Andreadis, Elena Kalotychou, Christodoulos Louca, Christian Lundblad & Christos Makridis
10:15-10:45am	Rump Session Chair: Svetlana Abramova Participants are invited to give 5 minute talks on new ideas, reflections on presented work, ongoing research, research published recently in other venues, or entertaining perspectives. To reserve a slot, please sign up with the Rump Session Chair during the conference.
10:45-11:00am	Coffee Break
11:00-12:00pm	Panel: Open Source Intelligence and Information Security Stéphane Duguin, Cyber Peace Institute Kurt Nielsen, CEO & Co-Founder of Partisia Blockchain Gazmend Huskaj, Head of Cyber Security, GCSP Nicholas Niggli (Moderator)
12:00-1:30pm	Lunch
1:30-2:30pm	Session: Digital Sovereignty Chair: Ross Anderson Trade-offs in Automating Platform Regulatory Compliance By Algorithm: Evidence from the COVID-19 Pandemic Grazia Cecere, Clara Jean, Vincent Lefrere & Catherine Tucker Municipal Cyber Risk Jonathan Jensen & Fiona Paine
2:30-3:00pm	Coffee Break
3:00-4:00pm	Panel: Digital Sovereignty Mihoko Kumamoto, Director, UNITAR, Division for Prosperity Dr. Victoria Wang, Board member for SDG China Executive Committee Dr. Alain Mermoud, Head of the Technology Monitoring Team at the Cyber-Defence Campus (CYD) of armasuisse Science and Technology Vagisha Srivastava , PhD Candidate, Georgia Institute of Technology Dr. Jean-Marc Rickli, Head of Global and Emerging Risks, GSCP (Moderator)
4:00-4:15pm	Coffee Break
4:15-5:00pm	Session: Security Games Chair: Dann Arce Attackers and Defenders in Cybersecurity and their Optimal Investment Decisions Austin Ebel & Debasis Mitra Interdependent Security Games in the Stackelberg Style: How First-Mover Advantage Impacts Free-Riding and Security (Under-)Investment Ziyuan Huang, Parinaz Naghizadeh & Mingyan Liu
5:00-6:00pm	Poster Session The following posters will be presented at the workshop: A History of Cyber Risk Transfer Daniel W. Woods & Josephine Wolff A Typology Framework to Quantify Business Cyber Security Behavior: Analysis from the UK Cyber Security Breaches Survey Anna Cartwright & Edward Cartwright Consumer Insurance and Cyber Losses: Gaps, Coverage, and Pricing (WEIS'23 Best Poster) Margherita Marinetti, Rachiyta Jain & Daniel W. Woods Data and Statecraft: Why and How States Localize Data Sanghyun Han Measuring the Performance of Information Security Investments: An Empirical Analysis by Cybersecurity Sectors using Crunchbase Data Loïc Maréchal, Alain Mermoud, Dimitri Percia David & Mathias Humbert
7:00-10:00pm	Informal get-together at Halles de l'île (directions)

Friday, July 7, 2023

8:30-9:00am	Welcome Coffee
9:00-10:15am	Session: Future Economics of Security Chair: Rainer Böhme The Potential of Self-Regulation for Front-Running Prevention on DEXes (WEIS'23 Best Talk) Lioba Heimbach, Eric Schertenleib & Roger Wattenhofer Secure and Efficient Networks Oleh Stupak Birds of a Feather? A Comparative Analysis of DDoS Victimisation by IoT Botnet and Amplification Attacks Swaathi Vetrivel, Arman Noroozian, Daisuke Makita, Katsunari Yoshioka, Michel van Eeten & Carlos H. Gañán
10:15-10:45am	Rump Session Chair: Josephine Wolff Participants are invited to give 5 minute talks on new ideas, reflections on presented work, ongoing research, research published recently in other venues, or entertaining perspectives. To reserve a slot, please sign up with the Rump Session Chair during the conference.
10:45-11:00am	Coffee Break
11:00-12:00pm	Panel: Future Economics of Security Zeina Zakhour, Vice-president, Global CTO for Digital Security in Eviden, an Atos business Marieke Hood, Executive Director of Impact Translator, Geneva Science Diplomacy Anticipator (GESDA) Ben Segal, Honorary Staff Member, CERN Steve Ramsden, CISO and Head of Innovation at a large International Organization (Moderator)
12:00-12:30pm	Awards Ceremony & Closing Remarks
12:30-2:00pm	Lunch
2:00-5:30pm	Free Time
5:30pm	Start of the Digital Sovereignty Hackathon

Saturday, July 8, 2023

5:30pm

End of the Digital Sovereignty Hackathon

Sunday, July 9, 2023

8:30am - 9pm

Day trip to la Gruyere (Alps, Cheese, Chocolate and Castle) Please register here (deadline Friday July 7th 8pm CET)

The 22nd Workshop on the Economics of Information Security (Geneva, Switzerland)