Title :
The Insider Threat Security Architecture: A Framework for an Integrated, Inseparable, and Uninterrupted Self-Protection Mechanism
Author :
Jabbour, Ghassan Gus ; Menascé, Daniel A.
Author_Institution :
Volgenau Sch. of IT & Eng., George Mason Univ., Fairfax, VA, USA
Abstract :
Providing an uninterruptable self-protection mechanism that is totally integrated into and inseparable from the computing system that is being protected ensures a complete, affordable, and assured compliance with system security audits. This paper presents the insider threat security architecture (ITSA) and describes its various components. It presents a security scenario where privileged users can compromise the system that they protect and how that same scenario can be mitigated under the ITSA framework. It also describes the foundational premise that this framework is built upon. It draws the distinction between the proposed approach and the traditional most common approach to providing system protection. It emphasizes the unquestionable importance of making the self-protection mechanism as an integral part of the core components of the system that is being protected.
Keywords :
security of data; computing system; insider threat security architecture; system security audit; uninterruptable self-protection; Computer architecture; Computer hacking; Computer security; Data security; Information security; Management information systems; Mission critical systems; Monitoring; Protection; Software tools; Insider threat; autonomic systems; database systems; security policy;
Conference_Titel :
Computational Science and Engineering, 2009. CSE '09. International Conference on
Conference_Location :
Vancouver, BC
Print_ISBN :
978-1-4244-5334-4
Electronic_ISBN :
978-0-7695-3823-5
DOI :
10.1109/CSE.2009.278
