Title :
Differentiating User Authentication Graphs
Author :
Kent, Alexander D. ; Liebrock, Lorie M.
Abstract :
Authentication using centralized methods is a primary trust mechanism within most large-scale, enterprise computer networks. This paper proposes using graphs to represent user authentication activity within the network. Using this mechanism over a real enterprise network dataset, we find that non-privileged users and users with system administration privileges have distinguishable graph attributes in terms of size and complexity. In addition, we find that user authentication graphs provide intuitive insights into network user behavior. We believe that understanding these differences in even greater detail will lead to improved user behavior profiling and the elusive detection of authentication credential misuse.
Keywords :
authorisation; business communication; computer network security; graph theory; trusted computing; authentication credential misuse detection; centralized methods; enterprise computer networks; graph attributes; large-scale computer networks; network user behavior; nonprivileged users; real enterprise network dataset; system administration privileged users; trust mechanism; user authentication activity; user authentication graph differentiation; Authentication; Computers; Operating systems; Servers; Sociology; Statistics;
Conference_Titel :
Security and Privacy Workshops (SPW), 2013 IEEE
Conference_Location :
San Francisco, CA
Print_ISBN :
978-1-4799-0458-7
DOI :
10.1109/SPW.2013.38
