Preventing Insider Information Leakage for Enterprises

Author

Abbadi, Imad M. ; Alawneh, Muntaha

Author_Institution

Group Technol. Services, Assoc. Newspapers, London

fYear

2008

fDate

25-31 Aug. 2008

Firstpage

99

Lastpage

106

Abstract

This paper proposes a novel mechanism for protecting sensitive information inside big organisations against unauthorised disclosure by insider or outsider adversaries. Protecting sensitive content from being disclosed to unauthorised parties is a major concern for big enterprises, such as government agencies, banks, clinics and corporations. This paper mainly focuses on preventing insider information leakage whilst allowing authorised users to have privileged access on sensitive information from inside or outside an organisational premises. In this paper we use location-based services to bind devices to an organisational predefined geographical locations, helping to ensure that each organisation owns and manages its own devices (where its sensitive content can ´only´ be accessed).

Keywords

information management; mobile computing; security of data; authorised users; enterprises; insider information leakage; location-based services; sensitive content; sensitive information; unauthorised disclosure; Authorization; Content management; Credit cards; Cryptography; Government; Group technology; Information security; Pressing; Protection; Universal Serial Bus; Information Leakage; Organisational Security; Share but protect;

fLanguage

English

Publisher

ieee

Conference_Titel

Emerging Security Information, Systems and Technologies, 2008. SECURWARE '08. Second International Conference on

Conference_Location

Cap Esterel

Print_ISBN

978-0-7695-3329-2

Electronic_ISBN

978-0-7695-3329-2

Type

conf

DOI

10.1109/SECURWARE.2008.14

Filename

4622568