Modeling and detecting anomalous topic access

IEEE ISI 2013 - 2013 IEEE International Conference on Intelligence and Security Informatics: Big Data, Emergent Threats, and Decision-Making in Security Informatics

Volumn , Issue , 2013, Pages 100-105

  Gupta, Siddharth ^a,d   Hanson, Casey ^a,d   Gunter, Carl A ^a,b,d   Frank, Mario ^a,e   Liebovitz, David ^b   Malin, Bradley ^c  

^a University of Illinois at Urbana Champaign   (United States)

^b NORTHWESTERN UNIVERSITY   (United States)

^c VANDERBILT UNIVERSITY   (United States)

^d UNIVERSITY OF ILLINOIS AT URBANA CHAMPAIGN   (United States)

^e UNIVERSITY OF CALIFORNIA   (United States)

Author keywords

Access Logs; Anomaly Detection; Data Mining; Electronic Health Records; Healthcare Security; Insider threats

Indexed keywords

ACCESS LOG; ANOMALY DETECTION; ANOMALY DETECTION FRAMEWORKS; DEVELOPING STRATEGY; ELECTRONIC HEALTH RECORD; INSIDER THREAT; K NEAREST NEIGHBOR (K NN) ALGORITHM; LATENT DIRICHLET ALLOCATIONS;

DATA MINING; FEATURE EXTRACTION; HEALTH CARE; SEMANTICS; STATISTICS;

INFORMATION SCIENCE;

EID: 84883420860     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/ISI.2013.6578795     Document Type: Conference Paper

References (13)

1. Y. Chen and B. Malin, "Detecting anomalous insiders in collaborative information systems," IEEE Transactions on Dependable and Secure Computing, vol. 9, no. 3, pp. 332-344, May 2012.
2. D. M. Blei, A. Y. Ng, and M. I. Jordan, "Latent dirichlet allocation," J. Mach. Learn. Res., vol. 3, pp. 993-1022, 2003.
3. K. Das, J. Schneider, and N. D., "Anomaly pattern detection in categorical datasets," KDD, pp. 169-176, 2008.
4. K. Wang and S. J. Stolfo, "One-class training for masquerade detection," 3rd IEEE Conference Data Mining Workshop on Data Mining for Computer Security, 2003.
5. R. A. Maxion, "Masquerade detection using enriched command lines," International Conference on Dependable Systems and Networks, pp. 5-14, 2003.
6. A. Garg and R. Rahalkar, "Profling users in gui based systems for masquerade detection," IEEE Workshop on Information Assurance United States Military Academy, pp. 48-54, 2006.
7. A. Boxwala, J. Kim, J. Grillo, and L. Ohno-Machado, "Using statistical and machine learning to help institutions detect suspicious access to electronic health records," Journal of the American Medical Informatics Association, vol. 18, no. 4, pp. 498-505, 2011.
8. J. Kim, J. M. Grillo, A. A. Boxwala, X. Jiang, R. B. Mandelbaum, B. A. Patel, D. Mikels, S. A. Vinterbo, and L. Ohno-Machado, "Anomaly and signature filtering improve classifier performance for detection of suspicious access to ehrs," Journal of the American Medical Informatics Association, p. 723731, 2011.
9. Y. Chen and B. Malin, "Detection of anomalous insiders in collaborative environments via relational analysis of access logs," pp. 63-74, 2011.
10. C. A. Gunter, D. M. Liebovitz, and B. Malin, "Experience-based access management: A life-cycle framework for identity and access management systems," IEEE Security & Privacy Magazine, vol. 9, no. 5, September/October 2011.
11. D. Fabbri and K. LeFevre, "Explaining accesses to electronic medical records using diagnosis information," Journal of the American Medical Informatics Association, vol. 20, no. 1, pp. 52-60, 2013.
12. [Online]. Available: http://www.cdc.gov/nchs/icd.htm
13. [Online]. Available: https://www.nlm.nih.gov/research/umls/rxnorm/