A pattern for increased monitoring for intellectual property theft by departing insiders

ACM International Conference Proceeding Series

Volumn , Issue , 2011, Pages

  Moore, Andrew P ^a   Hanley, Michael ^a   Mundie, David ^a  

^a CARNEGIE MELLON UNIVERSITY   (United States)

Author keywords

Cyber security; Enterprise architecture; Information assurance; Information security; Insider threat; Organizational pattern; Security pattern

Indexed keywords

INDUSTRY; INTELLECTUAL PROPERTY; SECURITY OF DATA;

CYBER SECURITY; ENTERPRISE ARCHITECTURE; INFORMATION ASSURANCE; INSIDER THREAT; ORGANIZATIONAL PATTERN; SECURITY PATTERNS;

CRIME;

EID: 84899847671     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/2578903.2579157     Document Type: Conference Paper

References (8)

1. Buschmann, F.; Henney, K.; &Schmidt, D.C. Pattern-Oriented Software Architecture Volume 5: On Patterns and Pattern Languages. Wiley, 2007 (ISBN 978-0471486480).
2. Cappelli, D.M.; Moore, A.P.; Trzeciak, R.F.; and Shimeall, T.J. Common Sense Guide to Prevention and Detection of Insider Threat (3rd ed.). CERT Program, Software Engineering Institute, and CyLab of Carnegie Mellon, 2008.
3. Ellison, R.J.; Moore, A.P.; Bass, L.; Klein, M.; and Bachmann, F. Security and Survivability Reasoning Frameworks and Architectural Design Tactics (CMU/SEI-2004-TN-022). Software Engineering Institute, Carnegie Mellon University, 2004.
4. Hanley, M. "Candidate Technical Controls and Indicators of Insider Attack from Socio-Technical Models and Data." Proceedings of the 2010 NSA CAE Workshop on Insider Threat, November 2010.
5. Hanley, M.; Dean, T.; Schroeder, W.; Houy, M.; Trzeciak, R.F.; and Montelibano, J. An Analysis of Technical Observations in Insider Theft of Intellectual Property Cases (CMU/SEI-2011-TN-006). Software Engineering Institute, Carnegie Mellon University, 2011.
6. Moore, A.P.; Cappelli, D.M.; Caron, T.C.; Shaw, E.; Spooner, D.; and Trzeciak, R.F. "A Preliminary Model of Insider Theft of Intellectual Property." Journal of Wireless Mobile Networks, Ubiquitous Computing, and Dependable Applications 2, 1 (Special Issue Addressing Insider Threats and Information Leakage, 2011): 28-49.
7. Mundie, D.A. and Moore, A.P., "A Pattern for Trust Trap Mitigation," Proceedings of the 2011 Conference on Pattern Languages for Programs, forthcoming. NIST Special Publication 800-53, "Recommended Security Controls for Federal Information Systems and Organizations," Revision 3, August 2009. http://csrc.nist.gov/publications/nistpubs/800-53-Rev3/ sp800-53-rev3-final.pdf
8. Schumacher, M.; Fernandez-Buglioni, E.; Hybertson, D.; Buschmann, F.; and Sommerlad, P. Security Patterns: Integrating Security and Systems Engineering. John Wiley &Sons, Ltd, 2006.