Case Studies of an Insider Framework

13 years 11 months ago

Download www.cs.ucdavis.edu

Many groups are interested in the insider threat problem, but the model generally used by all of these groups is implicitly binary—one is either within a perimeter or not. There is another model, however, that employs a graduated approach to deﬁning insiders. This approach gives greater ﬂexibility for considering many threats that are not traditionally captured by a model, such as the impact of social engineering attacks. This new deﬁnition enables more accurate and useful security policies to be implemented so that well-deﬁned insiders can be deterred, detected, and analyzed. We examine the ﬂexibility of this model in this paper through case studies, showing how the model captures both traditional insiders and social engineering attacks.

Matt Bishop, Sophie Engle, Sean Peisert, Sean Whal

Real-time Traffic

Biometrics | HICSS 2009 | Insider Threat Problem | Model | Social Engineering Attacks | System Sciences |

claim paper

» Managing a New Computer Device Development in a Creative ISO 9001 Certified Company A Case...

» A framework for understanding and predicting insider attacks

» Formal Specification of Common Criteria Based Access Control Policy Model

» Rendering The First Star In The Universe A Case Study

» Introducing Usability Practices to OSS The Insiders Experience

» Evolutionary Optimization of Functionally Defined Shapes Case Study of Natural Optical Obj...

» Chameleon Context Awareness inside DBMSs

» Modeling insider attacks on group keyexchange protocols

Post Info
More Details (n/a)

Added	19 May 2010
Updated	19 May 2010
Type	Conference
Year	2009
Where	HICSS
Authors	Matt Bishop, Sophie Engle, Sean Peisert, Sean Whalen, Carrie Gates

Comments (0)

Sciweavers

Case Studies of an Insider Framework

Biometrics | HICSS 2009 | Insider Threat Problem | Model | Social Engineering Attacks | System Sciences |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers