IDEAS home Printed from https://ideas.repec.org/p/cpr/ceprdp/13324.html
   My bibliography  Save this paper

Some Principles for Regulating Cyber Risk

Author

Listed:
  • Kashyap, Anil
  • Wetherilt, Anne

Abstract

We explain why cyber risk differs from other operational risks in the financial sector. The form of cyber shocks differs because of their intent, probability of success, possibility of a hidden phase and evolving form of the risks. The impact differs because problems can spread quickly and because uncertainty over the possibility of a hidden phase can impact responses. We explain why private incentives to attend to these risks may differ from societies’ preferences and develop six (micro- and macroprudential) regulatory principles to deal with cyber risk.

Suggested Citation

  • Kashyap, Anil & Wetherilt, Anne, 2018. "Some Principles for Regulating Cyber Risk," CEPR Discussion Papers 13324, C.E.P.R. Discussion Papers.
    • Handle: RePEc:cpr:ceprdp:13324
    as

    Download full text from publisher

    File URL: https://cepr.org/publications/DP13324
    Download Restriction: CEPR Discussion Papers are free to download for our researchers, subscribers and members. If you fall into one of these categories but have trouble downloading our papers, please contact us at subscribers@cepr.org
    ---><---

    As the access to this document is restricted, you may want to look for a different version below or search for a different version of it.

    Other versions of this item:

    References listed on IDEAS

    as
    1. Emanuel Kopp & Lincoln Kaffenberger & Christopher Wilson, 2017. "Cyber Risk, Market Failures, and Financial Stability," IMF Working Papers 2017/185, International Monetary Fund.
    Full references (including those not matched with items on IDEAS)

    Citations

    Blog mentions

    As found by EconAcademics.org, the blog aggregator for Economics research:
    1. Cyber Risk, Financial Stability and the Payments System
      by Steve Cecchetti and Kim Schoenholtz in Money, Banking and Financial Markets on 2020-07-26 15:50:41

    Citations

    Citations are extracted by the CitEc Project, subscribe to its RSS feed for this item.
    as


    Cited by:

    1. Francisco José Herrera Luque & José Munera López & Paul Williams, 2021. "Cyber risk as a threat to financial stability," Financial Stability Review, Banco de España, issue Spring.
    2. Thomas M. Eisenbach & Anna Kovner & Michael Junho Lee, 2022. "When It Rains, It Pours: Cyber Risk and Financial Conditions," Staff Reports 1022, Federal Reserve Bank of New York.
    3. Aldasoro, Iñaki & Gambacorta, Leonardo & Giudici, Paolo & Leach, Thomas, 2022. "The drivers of cyber risk," Journal of Financial Stability, Elsevier, vol. 60(C).
    4. Anil K Kashyap, 2020. "My Reflections on the FPC's Strategy," Journal of Money, Credit and Banking, Blackwell Publishing, vol. 52(S1), pages 63-75, October.
    5. José Ramón Martínez Resano, 2022. "Digital resilience and financial stability. The quest for policy tools in the financial sector," Financial Stability Review, Banco de España, issue NOV.
    6. Crosignani, Matteo & Macchiavelli, Marco & Silva, André F., 2023. "Pirates without borders: The propagation of cyberattacks through firms’ supply chains," Journal of Financial Economics, Elsevier, vol. 147(2), pages 432-448.
    7. Rey, Hélène & Jamilov, Rustam & Tahoun, Ahmed, 2021. "The Anatomy of Cyber Risk," CEPR Discussion Papers 16217, C.E.P.R. Discussion Papers.
    8. Facchinetti, Silvia & Osmetti, Silvia Angela & Tarantola, Claudia, 2023. "Network models for cyber attacks evaluation," Socio-Economic Planning Sciences, Elsevier, vol. 87(PB).
    9. Eisenbach, Thomas M. & Kovner, Anna & Lee, Michael Junho, 2022. "Cyber risk and the U.S. financial system: A pre-mortem analysis," Journal of Financial Economics, Elsevier, vol. 145(3), pages 802-826.
    10. José Ramón Martínez Resano, 2022. "Digital resilience and financial stability. The quest for policy tools in the financial sector," Financial Stability Review, Banco de España, issue Autumn.
    11. Anand, Kartik & Duley, Chanelle & Gai, Prasanna, 2022. "Cybersecurity and financial stability," Discussion Papers 08/2022, Deutsche Bundesbank.
    12. José Ramón Martínez Resano, 2022. "Digital resilience and financial stability. The quest for policy tools in the financial sector," Revista de Estabilidad Financiera, Banco de España, issue NOV.
    13. Boot, Arnoud & Hoffmann, Peter & Laeven, Luc & Ratnovski, Lev, 2021. "Fintech: what’s old, what’s new?," Journal of Financial Stability, Elsevier, vol. 53(C).
    14. Bertay, Ata & Huizinga, Harry, 2021. "Digital Transformation – Why Do Some Significant Banks Fall Behind," Other publications TiSEM b258b284-d868-4062-b11b-e, Tilburg University, School of Economics and Management.
    15. Francisco José Herrera Luque & José Munera López & Paul Williams, 2021. "Cyber risk as a threat to financial stability," Financial Stability Review, Banco de España, issue MAY.
    16. Francisco José Herrera Luque & José Munera López & Paul Williams, 2021. "Cyber risk as a threat to financial stability," Revista de Estabilidad Financiera, Banco de España, issue MAY.
    17. Bertay, Ata & Huizinga, Harry, 2021. "Why Do Some Significant Banks Fall Behind?," Other publications TiSEM 10694b73-0f21-477c-80fe-7, Tilburg University, School of Economics and Management.

    Most related items

    These are the items that most often cite the same works as this one and are cited by the same works as this one.
    1. José Ramón Martínez Resano, 2022. "Digital resilience and financial stability. The quest for policy tools in the financial sector," Financial Stability Review, Banco de España, issue NOV.
    2. Caporale, Guglielmo Maria & Kang, Woo-Young & Spagnolo, Fabio & Spagnolo, Nicola, 2020. "Non-linearities, cyber attacks and cryptocurrencies," Finance Research Letters, Elsevier, vol. 32(C).
    3. Antoine Bouveret, 2018. "Cyber Risk for the Financial Sector: A Framework for Quantitative Assessment," IMF Working Papers 2018/143, International Monetary Fund.
    4. Silvia Facchinetti & Paolo Giudici & Silvia Angela Osmetti, 2020. "Cyber risk measurement with ordinal data," Statistical Methods & Applications, Springer;Società Italiana di Statistica, vol. 29(1), pages 173-185, March.
    5. Aldasoro, Iñaki & Gambacorta, Leonardo & Giudici, Paolo & Leach, Thomas, 2022. "The drivers of cyber risk," Journal of Financial Stability, Elsevier, vol. 60(C).
    6. Alessandro Fedele & Cristian Roner, 2022. "Dangerous games: A literature review on cybersecurity investments," Journal of Economic Surveys, Wiley Blackwell, vol. 36(1), pages 157-187, February.
    7. Berger, Allen N. & Curti, Filippo & Mihov, Atanas & Sedunov, John, 2022. "Operational Risk is More Systemic than You Think: Evidence from U.S. Bank Holding Companies," Journal of Banking & Finance, Elsevier, vol. 143(C).
    8. Yin-Yee Leong & Yen-Chih Chen, 2020. "Cyber risk cost and management in IoT devices-linked health insurance," The Geneva Papers on Risk and Insurance - Issues and Practice, Palgrave Macmillan;The Geneva Association, vol. 45(4), pages 737-759, October.
    9. Lyócsa, Štefan & Molnár, Peter & Plíhal, Tomáš & Širaňová, Mária, 2020. "Impact of macroeconomic news, regulation and hacking exchange markets on the volatility of bitcoin," Journal of Economic Dynamics and Control, Elsevier, vol. 119(C).
    10. Yin-Yee Leong & Yen-Chih Chen, 0. "Cyber risk cost and management in IoT devices-linked health insurance," The Geneva Papers on Risk and Insurance - Issues and Practice, Palgrave Macmillan;The Geneva Association, vol. 0, pages 1-23.
    11. José Ramón Martínez Resano, 2022. "Digital resilience and financial stability. The quest for policy tools in the financial sector," Financial Stability Review, Banco de España, issue Autumn.
    12. Francisco José Herrera Luque & José Munera López & Paul Williams, 2021. "Cyber risk as a threat to financial stability," Revista de Estabilidad Financiera, Banco de España, issue MAY.
    13. Mouhamadou Sow & Christina Gehrke, 2019. "Evaluating Information Security System Effectiveness for Risk Management, Control, and Corporate Governance," Business and Economic Research, Macrothink Institute, vol. 9(1), pages 164-172, March.
    14. Paolo Giudici & Emanuela Raffinetti, 2021. "Cyber risk ordering with rank-based statistical models," AStA Advances in Statistical Analysis, Springer;German Statistical Society, vol. 105(3), pages 469-484, September.
    15. Franklin Allen & Xian Gu & Julapa Jagtiani, 2021. "A Survey of Fintech Research and Policy Discussion," Review of Corporate Finance, now publishers, vol. 1(3-4), pages 259-339, July.
    16. Crosignani, Matteo & Macchiavelli, Marco & Silva, André F., 2023. "Pirates without borders: The propagation of cyberattacks through firms’ supply chains," Journal of Financial Economics, Elsevier, vol. 147(2), pages 432-448.
    17. Md. Hamid Uddin & Md. Hakim Ali & Mohammad Kabir Hassan, 2020. "Cybersecurity hazards and financial system vulnerability: a synthesis of literature," Risk Management, Palgrave Macmillan, vol. 22(4), pages 239-309, December.
    18. Nataliia Zachosova, 2019. "Innovative Approach In The Estimatology Of Financial Institutions Economic Security: Possibilities Of Use In Management And Regulatory Activity Within The Means Of Provision Of The State Financial Sec," Baltic Journal of Economic Studies, Publishing house "Baltija Publishing", vol. 5(2).
    19. Pelin Berkmen & Ms. Kimberly Beaton & Mr. Dmitry Gershenson & Mr. Javier Arze del Granado & Kotaro Ishi & Miss Marie S Kim & Emanuel Kopp & Mrs. Marina V Rousset, 2019. "Fintech in Latin America and the Caribbean: Stocktaking," IMF Working Papers 2019/071, International Monetary Fund.
    20. José Ramón Martínez Resano, 2022. "Digital resilience and financial stability. The quest for policy tools in the financial sector," Revista de Estabilidad Financiera, Banco de España, issue NOV.

    More about this item

    Keywords

    Cyber risk; Stress test; Macroprudential regulation;
    All these keywords.

    JEL classification:

    • G18 - Financial Economics - - General Financial Markets - - - Government Policy and Regulation
    • G28 - Financial Economics - - Financial Institutions and Services - - - Government Policy and Regulation
    • L51 - Industrial Organization - - Regulation and Industrial Policy - - - Economics of Regulation
    • O33 - Economic Development, Innovation, Technological Change, and Growth - - Innovation; Research and Development; Technological Change; Intellectual Property Rights - - - Technological Change: Choices and Consequences; Diffusion Processes

    NEP fields

    This paper has been announced in the following NEP Reports:

    Statistics

    Access and download statistics

    Corrections

    All material on this site has been provided by the respective publishers and authors. You can help correct errors and omissions. When requesting a correction, please mention this item's handle: RePEc:cpr:ceprdp:13324. See general information about how to correct material in RePEc.

    If you have authored this item and are not yet registered with RePEc, we encourage you to do it here. This allows to link your profile to this item. It also allows you to accept potential citations to this item that we are uncertain about.

    If CitEc recognized a bibliographic reference but did not link an item in RePEc to it, you can help with this form .

    If you know of missing items citing this one, you can help us creating those links by adding the relevant references in the same way as above, for each refering item. If you are a registered author of this item, you may also want to check the "citations" tab in your RePEc Author Service profile, as there may be some citations waiting for confirmation.

    For technical questions regarding this item, or to correct its authors, title, abstract, bibliographic or download information, contact: the person in charge (email available below). General contact details of provider: https://www.cepr.org .

    Please note that corrections may take a couple of weeks to filter through the various RePEc services.

    IDEAS is a RePEc service. RePEc uses bibliographic data supplied by the respective publishers.