Towards a theory of insider threat assessment

被引：59

作者：

Chinchani, R ^{[1
]}

Iyer, A ^{[1
]}

Ngo, HQ ^{[1
]}

Upadhyaya, S ^{[1
]}

机构：

[1] SUNY Buffalo, Buffalo, NY 14260 USA

来源：

2005 INTERNATIONAL CONFERENCE ON DEPENDABLE SYSTEMS AND NETWORKS, PROCEEDINGS | 2005年

关键词：

D O I：

10.1109/DSN.2005.94

中图分类号：

TP3 [计算技术、计算机技术];

学科分类号：

0812 ;

摘要：

Insider attacks are a well-known problem acknowledged as a threat as early as 1980s. The threat is attributed to legitimate users who abuse their privileges, and given their familiarity and proximity to the computational environment, can easily cause significant damage or losses. Due to the lack of tools and techniques, security analysts do not correctly perceive the threat, and hence consider the attacks as unpreventable. In this paper, we present a theory of insider threat assessment. First, we describe a modeling methodology which captures several aspects of insider threat, and subsequently, show threat assessment methodologies to reveal possible attack strategies of an insider

引用

页码：108 / 117

页数：10

共 50 条

[21] Software Decoys for Insider Threat
Park, Younghee
Stolfo, Salvatore J.
7TH ACM SYMPOSIUM ON INFORMATION, COMPUTER AND COMMUNICATIONS SECURITY (ASIACCS 2012), 2012,
[22] Insider Threat Detection: A Review
Manoharan, Phavithra
Yin, Jiao
Wang, Him
Zhang, Yanchun
Ye, Wenjie
2024 INTERNATIONAL CONFERENCE ON NETWORKING AND NETWORK APPLICATIONS, NANA 2024, 2024, : 147 - 153
[23] Inside the Insider Threat (Introduction)
Bishop, Matt
Nance, Kara
Clark, Jason
PROCEEDINGS OF THE 50TH ANNUAL HAWAII INTERNATIONAL CONFERENCE ON SYSTEM SCIENCES, 2017, : 2637 - 2637
[24] Intelligence Analyses and the Insider Threat
Santos, Eugene, Jr.
Hien Nguyen
Yu, Fei
Kim, Keum Joo
Li, Deqing
Wilkinson, John T.
Olson, Adam
Russell, Jacob
Clark, Brittany
IEEE TRANSACTIONS ON SYSTEMS MAN AND CYBERNETICS PART A-SYSTEMS AND HUMANS, 2012, 42 (02): : 331 - 347
[25] Combating the insider cyber threat
Greitzer, Frank L.
Moore, Andrew P.
Cappelli, Dawn M.
Andrews, Dee H.
Carroll, Lynn A.
Hull, Thomas D.
IEEE SECURITY & PRIVACY, 2008, 6 (01) : 61 - 64
[26] An Insider Threat Prediction Model
Kandias, Miltiadis
Mylonas, Alexios
Virvilis, Nikos
Theoharidou, Marianthi
Gritzalis, Dimitris
TRUST, PRIVACY AND SECURITY IN DIGITAL BUSINESS, 2010, 6264 : 26 - 37
[27] Addressing the Insider Threat Introduction
Pfleeger, Shari Lawrence
Stolfo, Salvatore J.
IEEE SECURITY & PRIVACY, 2009, 7 (06) : 10 - 13
[28] Inside the Insider Threat (Introduction)
Bishop, Matt
Nance, Kara
Claycomb, William
PROCEEDINGS OF THE 49TH ANNUAL HAWAII INTERNATIONAL CONFERENCE ON SYSTEM SCIENCES (HICSS 2016), 2016, : 2728 - 2728
[29] Guarding Against the Insider Threat
Archuleta, Edmund G.
JOURNAL AMERICAN WATER WORKS ASSOCIATION, 2009, 101 (05): : 38 - +
[30] Honeypots: Catching the insider threat
Spitzner, L
19TH ANNUAL COMPUTER SECURITY APPLICATIONS CONFERENCE, PROCEEDINGS, 2003, : 170 - 179

← 1 2 3 4 5 →