Insider theft of intellectual property for business advantage: A preliminary model

CEUR Workshop Proceedings

Volumn 469, Issue , 2009, Pages 1-21

  Moore, Andrew P ^c   Cappelli, Dawn M ^c   Caron, Thomas C ^a   Shaw, Eric ^b   Trzeciak, Randall F ^c  

^a CARNEGIE MELLON UNIVERSITY   (United States)

^b Clinical Psychologist at Consulting and Clinical Psychology Ltd   (United States)

^c CARNEGIE MELLON UNIVERSITY   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

CARNEGIE MELLON UNIVERSITY; CYBER-CRIMES; EMPIRICAL DATA; GROUP MODELING; PRELIMINARY MODEL; PROPRIETARY INFORMATION; SOFTWARE ENGINEERING INSTITUTES; SYSTEM DYNAMICS MODEL;

INTELLECTUAL PROPERTY; SECURITY SYSTEMS; SOFTWARE ENGINEERING;

CRIME;

EID: 84887229257     PISSN: 16130073     EISSN: None     Source Type: Conference Proceeding    
DOI: None     Document Type: Conference Paper

References (18)

1. Anderson, D. F., Cappelli, D. M., Gonzalez, J. J., Mojahedzadeh, M., Moore, A. P., Rich, E., et al. (July 2004). Preliminary System Dynamics Maps of the Insider Cyber- Threat Problem. Proceedings of the 22nd International Conference of the System Dynamics Society.
2. Band, S. R., Cappelli, D. M., Fischer, L. F., Moore, A. P., Shaw, E. D., & Trzeciak, R. F. (December 2006). Comparing Insider IT Sabotage and Espionage: A Model-Based Analysis. Carnegie Mellon University, Software Engineering Institute.
3. Cappelli, D. M., Moore, A. P., Trzeciak, R. F., & Shimeall, T. J. (September 2008). Common Sense Guide to Prevention and Detection of Insider Threat (3rd ed.). CERT Program, Software Engineering Institute, and CyLab of Carnegie Mellon.
4. Fischer, L. (2003). Characterizing Information Systems Insider Offenders. Pensacola, FL: International Military Testing Association Proceedings.
5. Gudaitis, T. (1998). The missing link in information security: Three Dimensional Profiling" (Vol. 1). Cyber Psychology and Behavior.
6. Herbig, K. L., & Wiskoff, M. (2002). Espionage Against the United States by American Citizens 1947-2001. Defense Personnel Security Research Center.
7. Meadows, D. L., Behrens, W. W., Meadows, D. H., Naill, R. F., Randers, J., & Zahn, E. K. (1974). Dynamics of Growth in a Finite World. Cambridge, MA: Wright Allen Press, Inc.
8. Moore, A. P., Cappelli, D. M., & Trzeciak, R. F. (2008). The "Big Picture" of Insider IT Sabotage Across U.S. Critical Infrastructures (Vol. Insider Attack and Cyber Secruity: Beyond the Hacker). (S. Stolfo, S. M. Bellovin, S. Hershkop, A. Keromytis, S. Sinclair, & S. W. Smith, Eds.) New York, NY: Springer Science+Business Media, LLC.
9. Parker, D. B. (1998). Fighting Computer Crime: A New Framework for Protecting Information. New York: John Wiley and Sons.
10. Sastry, M. A. (1998). Analyzing the research on self reinforcing processes in organization: Another approach to archetypes. Proceedings of the 16th International Conference of the System Dynamics Society. Quebec City, Canada.
11. Shaw, E., & Fischer, L. G. (2005). Ten Tales of Betrayal: The Threat to Corporate Infrastructure by Information Technology Insiders. Defense Technical Information Center.
12. Shaw, E., Ruby, K. G., & Post, J. M. (1998). The Insider Threat to Information Systems: The Psychology of the Dangerous Insider (Vols. 2-98). Security Awareness Bulletin.
13. Spafford, E. (2002). A Framework for Understanding and Predicting Insider Attacks (Vol. COMPSEC 2002). London: Elsevier Science Ltd.
14. Staw, B. M., & Ross, J. (1989). Understanding Behavior in Escalation Situations. Science, 246, 216-220.
15. Sterman, J. D. (2000). Business Dynamics: Systems Thinking and Modeling for a Complex World. New York, NY: McGraw-Hill.
16. Suler, J. (1997). The Bad Boys of Cyberspace: Deviant Behaviour in On-Line Multimedia Communities and Strategies for Managing It. http://www.rider.edu/~suler/psycyber/badboys.html.
17. Wood, B. (2002). An Insider Threat Model for Adversary Simulation.
18. RAND. Yin, R. K. (2003). Case Study Research. (3rd, Ed.) Thousand Oaks: Sage Publications.