An active defense model and framework of insider threats detection and sense

5th International Conference on Information Assurance and Security, IAS 2009

Volumn 1, Issue , 2009, Pages 258-261

  Zhang, Hongbin ^a,b   Ma, Jianfeng ^a   Wang, Yinchuan ^c   Pei, Qingqi ^a,c  

^a XIDIAN UNIVERSITY   (China)

^b HEBEI UNIVERSITY OF SCIENCE AND TECHNOLOGY   (China)

^c Institute of China Electronic System Engineering Company   (China)

Author keywords

Detection; Insider threat; Model; Sense

Indexed keywords

ACTIVE DEFENSE; COMPUTATIONAL ENVIRONMENTS; DETECTION; INSIDER ATTACK; INSIDER THREAT; LEGITIMATE USERS;

INTERACTIVE COMPUTER SYSTEMS;

NETWORK SECURITY;

EID: 74049154667     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/IAS.2009.315     Document Type: Conference Paper

References (11)

1. A. Iyer and H. Q. Ngo, "Towards a theory of insider threat assessment," in In Proceedings of the 2005 International Conference on Dependable Systems and Networks Yokohama, Japan: IEEE Computer Society, 2005, pp. 108-117.
2. M. Kemp, "Barbarians inside the gates: addressing internal security threats," Network Security, vol. 2005, pp. 11-13, 2005.
3. B. McKenna, "Danger of the insider threat," Infosecurity, vol. 4, pp. 5-5, 2007.
4. Marianthi, Spyros, Maria, and Evangelos, "The insider threat to information systems and the effectiveness of ISO17799," Computers & Security, vol. 24, pp. 472-484, 2005.
5. D. B. Parker, Fighting Computer Crime: A New Framework for Protecting Information: John Wiley & Sons, 1998.
6. S. Frank, "Can S.K.R.A.M. Support Quantified Risk Analysis of Computer Related Crime?," 2003.
7. E. E. Schultz, "A framework for understanding and predicting insider attacks," Computers & Security, vol. 21, pp. 526-531, 2002.
8. I. Ray and N. Poolsapassit, "Using Attack Trees to Identify Malicious Attacks from Authorized Insiders," in Computer Security - ESORICS 2005, 2005, pp. 231-246.
9. T. L. Saaty, The Analytic Hierarchy Process: Planning, Priority Setting, Resource Allocation. Texas: Mcgraw-Hill, 1988.
10. J. C. Birget, X. Zou, G. Noubir, and B. Ramamurthy, "Hierarchy-based access control in distributed environments," in 2001 IEEE International Conference on Communications. vol. 1 Helsinki IEEE Computer Society, 2001, pp. 229-233.
11. C. Xiu-Zhen, Z. Qing-Hua, GUAN Xiao-Hong, and L. Chen-Guang, "Quantitative Hierarchical Threat Evaluation Model for Network Security," Journal of Software, vol. 17, p. 885-897, 2006.