By studying a panel dataset of distributed denial of service attack across 240 countriesover 5 years, we find that enforcing the Convention on Cybercrime had increasedthe intensity of attack by 43 to 52 percent. It did not significantly reducethe chance for a country to be selected for the attack. We conducted a batteryof identification and falsification tests to show that such increased attack intensityarose because of failure in marginal deterrence, instead of other theories such asbrutalization, stigmatization, or defiance, or general forms of endogeneity. We showthat raising the standard of proof of conviction is one way to facilitate marginaldeterrence, but it has the undesirable effect of raising the offense rate. We discussother possible solutions.
Marginal deterrence, Cyber attacks, Convention of Cybercrime
Law Enforcement and Corrections
Information Systems and Management
Workshop on Analytics for Business, Consumer and Social Insights (BCSI 2013). Singapore, August 2013.
Wiley: 24 months
City or Country
HUI, Kai-Lung; KIM, Seung-Hyun; and QIU-HONG WANG.
Marginal deterrence in the enforcement of law: Evidence from distributed denial of service attack. (2013). Workshop on Analytics for Business, Consumer and Social Insights (BCSI 2013). Singapore, August 2013.. Research Collection School Of Information Systems.
Available at: http://ink.library.smu.edu.sg/sis_research/3518
Creative Commons License
This work is licensed under a Creative Commons Attribution-Noncommercial-No Derivative Works 4.0 License.