An Active Data Leakage Prevention Model for Insider Threat

Author

Wu, Jiangjiang ; Zhou, Jie ; Ma, Jun ; Mei, Songzhu ; Ren, Jiangchun

Author_Institution

Dept. of Comput., Nat. Univ. of Defense Technol., Changsha, China

fYear

2011

fDate

22-23 Oct. 2011

Firstpage

39

Lastpage

42

Abstract

Insider threat has become the main vector of data leakage. Existing research on it mainly focuses on sensing and detection without defense capabilities. Meanwhile, traditional technologies for data leakage prevention rely on the terminal or boundary control which is difficult for data leakage in distributed environment. This paper presents an active data leakage prevention model for insider threat that combines trusted storage with virtual isolation technologies and expresses the protection requirements from the aspect of data object. We also show an implementation framework and give formal description as well as security properties proof. Finally, we give implementation strategies of dynamic isolation mechanisms.

Keywords

security of data; active data leakage prevention model; data object; defense capabilities; distributed environment; dynamic isolation mechanisms; formal description; insider threat; protection requirements; security properties; virtual isolation technologies; Computers; Containers; Data models; Distributed databases; Memory; Security; Virtual machining; active defense; data leakage prevention (DLP); insider threat; virtual isolation;

fLanguage

English

Publisher

ieee

Conference_Titel

Intelligence Information Processing and Trusted Computing (IPTC), 2011 2nd International Symposium on

Conference_Location

Hubei

Print_ISBN

978-1-4577-1130-5

Type

conf

DOI

10.1109/IPTC.2011.17

Filename

6103531