Practical management of malicious insider threat - An enterprise CSIRT perspective

Information Security Technical Report

Volumn 13, Issue 4, 2008, Pages 225-234

  Walker, Terrence ^a  

^a UNIVERSITY OF LONDON   (United Kingdom)

Author keywords

[No Author keywords available]

Indexed keywords

COMMAND AND CONTROL SYSTEMS; ELECTRONIC WARFARE; INFORMATION SYSTEMS; INTERNATIONAL COOPERATION; MILITARY ELECTRONIC COUNTERMEASURES; SECURITY OF DATA; SECURITY SYSTEMS; SEMICONDUCTOR QUANTUM DOTS; TECHNOLOGY;

ANDERSON; ANOMALY DETECTIONS; CASE STUDIES; COMMAND AND CONTROLS; COUNTER MEASURES; CURRENT STATES; DATA ANALYSIS; EMERGING TECHNOLOGIES; FIELD DATUMS; INCIDENT RESPONSES; INSIDER THREATS; MALICIOUS INSIDERS; MILITARY ALLIANCES; MILITARY ENVIRONMENTS; MILITARY SOURCES; MODERN MILITARIES; SECURITY THREATS; TECHNICAL EFFORTS;

QUALITY CONTROL;

EID: 57649220126     PISSN: 13634127     EISSN: None     Source Type: Journal    
DOI: 10.1016/j.istr.2008.10.013     Document Type: Article

References (13)

1. Anderson Robert H., Bozek Thomas, Longstaff Tom, Meitzler Wayne, Skroch Michael, Wyk Ken Van. Research on mitigating the insider threat to information systems - #2, RAND Conference Proceedings; 2000.
2. Army Regulation 25-2 Information Assurance. Available from: (2003). https://ia.gordon.army.mil/docs/AR25_2.asp (accessed October 2008)
3. Brackney Richard C., Anderson Robert H. Understanding the insider threat. In: Proceedings of a March 2004 Workshop, RAND; 2004.
4. Cappelli D.M., Trzeciak R.F., and Moore A.P. Insider threats in the SDLC, lessons learned from actual incidents of fraud, theft of sensitive information, and IT sabotage (2006), Software Engineering Institute, Carnegie Mellon University
5. Custers Keith. C-Bits bvba, 2008.
6. Killcrece Georgia, Kossakowski Klaus-Peter, Ruefle Robin, Zajicek Mark. Organizational models for computer security incident response teams (CSIRTs), CMU/SEI-2003-HB-001; 2003.
7. Gerber C. Plugs for Data Leaks, Published in the Military Information Technology. Online Edition Available from: (2008). http://www.military-information-technology.com/article.cfm?DocID=2323
8. Marty R. Applied security visualization (2009), Addison Wesley, Upper Saddle River, NJ, USA
9. Maybury Mark. Detecting malicious insiders in military networks; 2006.
10. Maybury M., Chase P., Cheiker B., Brackney D., Matzner S., Hetherington T., et al. Analysis and detection of malicious insiders; 2005.
11. Nicolett Mark, Williams Amrit T., Proctor Paul E., Magic quadrant for security information and event management, 1H06 Gartner RAS Core Research Note G00139431, 12 May, 2006.
12. NIST. Incident handling at BMDO. Available from: (2000). http://csrc.nist.gov/groups/SMA/fasp/documents/incident_response/BMDOInc Handling.htm (accessed October 2008)
13. Shaw Eric D., Ruby Keven G., Post Jerrold M. The Insider threat to information, Appendix E in 2000, Research on mitigating the insider threat to information systems - #2, RAND Conference Proceedings; 2000.