• DocumentCode
    1825106
  • Title

    An Active Defense Model and Framework of Insider Threats Detection and Sense

  • Author

    Zhang, Hongbin ; Ma, Jianfeng ; Wang, Yinchuan ; Pei, Qingqi

  • Author_Institution
    Minist. of Educ. KeyLab. of Comput. Network & Inf. Security, Xidian Univ., Xi´´an, China
  • Volume
    1
  • fYear
    2009
  • fDate
    18-20 Aug. 2009
  • Firstpage
    258
  • Lastpage
    261
  • Abstract
    Insider attacks is a well-known problem acknowledged as a threat as early as 1980s. The threat is attributed to legitimate users who take advantage of familiarity with the computational environment and abuse their privileges, can easily cause significant damage or losses. In this paper, we present an active defense model and framework of insider threat detection and sense. Firstly, we describe the hierarchical framework which deal with insider threat from several aspects, and subsequently, show a hierarchy-mapping based insider threats model, the kernel of the threats detection, sense and prediction. The experiments show that the model and framework could sense the insider threat in real-time effectively.
  • Keywords
    security of data; active defense model; hierarchy-mapping based insider threats model; insider threat sense; insider threats detection; Computer networks; Computer science education; Computer security; Electronic equipment; Fellows; Information security; Information systems; Monitoring; Systems engineering and theory; Systems engineering education; detection; insider threat; model; sense;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Information Assurance and Security, 2009. IAS '09. Fifth International Conference on
  • Conference_Location
    Xian
  • Print_ISBN
    978-0-7695-3744-3
  • Type

    conf

  • DOI
    10.1109/IAS.2009.315
  • Filename
    5284214
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=1825106