The Insider Threat Security Architecture: A Framework for an Integrated, Inseparable, and Uninterrupted Self-Protection Mechanism

Author

Jabbour, Ghassan Gus ; Menascé, Daniel A.

Author_Institution

Volgenau Sch. of IT & Eng., George Mason Univ., Fairfax, VA, USA

Volume

3

fYear

2009

fDate

29-31 Aug. 2009

Firstpage

244

Lastpage

251

Abstract

Providing an uninterruptable self-protection mechanism that is totally integrated into and inseparable from the computing system that is being protected ensures a complete, affordable, and assured compliance with system security audits. This paper presents the insider threat security architecture (ITSA) and describes its various components. It presents a security scenario where privileged users can compromise the system that they protect and how that same scenario can be mitigated under the ITSA framework. It also describes the foundational premise that this framework is built upon. It draws the distinction between the proposed approach and the traditional most common approach to providing system protection. It emphasizes the unquestionable importance of making the self-protection mechanism as an integral part of the core components of the system that is being protected.

Keywords

security of data; computing system; insider threat security architecture; system security audit; uninterruptable self-protection; Computer architecture; Computer hacking; Computer security; Data security; Information security; Management information systems; Mission critical systems; Monitoring; Protection; Software tools; Insider threat; autonomic systems; database systems; security policy;

fLanguage

English

Publisher

ieee

Conference_Titel

Computational Science and Engineering, 2009. CSE '09. International Conference on

Conference_Location

Vancouver, BC

Print_ISBN

978-1-4244-5334-4

Electronic_ISBN

978-0-7695-3823-5

Type

conf

DOI

10.1109/CSE.2009.278

Filename

5283555