A state machine system for insider threat detection

A state machine system for insider threat detection

The risk from insider threats is rising significantly, yet the majority of organizations are ill-prepared to detect and mitigate them. Research has focused on providing rule-based detection systems or anomaly detection tools which use features indicative of malicious insider activity. In this paper...

Полное описание

Библиографические подробности
Главные авторы:	Zhang, H, Agrafiotis, I, Erola, A, Creese, S, Goldsmith, M
Формат:	Conference item
Опубликовано:	Springer, Cham 2019

Схожие документы

A Tripwire Grammar for Insider Threat Detection
по: Agrafiotis, I, и др.
Опубликовано: (2016)

Formalising policies for insider-threat detection: A tripwire grammar
по: Agrafiotis, I, и др.
Опубликовано: (2017)

Validating an insider threat detection system: A real scenario perspective
по: Agrafiotis, I, и др.
Опубликовано: (2016)

Insider-threat detection: Lessons from deploying the CITD tool in three multinational organisations
по: Erola, A, и др.
Опубликовано: (2022)

Smart insiders: exploring the threat from insiders using the Internet-of-Things
по: Nurse, J, и др.
Опубликовано: (2016)

Towards a conceptual model and reasoning structure for insider threat detection
по: Legg, P, и др.
Опубликовано: (2013)

A Bayesian approach to insider threat detection
по: Wall, A, и др.
Опубликовано: (2021)

A critical reflection on the threat from human insiders − its nature‚ industry perceptions‚ and detection approaches
по: Nurse, J, и др.
Опубликовано: (2014)

A system to calculate cyber-value-at-risk
по: Erola, A, и др.
Опубликовано: (2021)

Analysing cyber-insurance claims to design harm-propagation trees
по: Axon, L, и др.
Опубликовано: (2019)

Ransomware as a predator: modelling the systemic risk to prey
по: Axon, L, и др.
Опубликовано: (2023)

Modeling Advanced Persistent Threats to enhance anomaly detection techniques
по: Atapour, C, и др.
Опубликовано: (2018)

The data that drives cyber insurance: a study into the underwriting and claims processes
по: Nurse, JRC, и др.
Опубликовано: (2020)

Understanding insider threat: a framework for characterising attacks
по: Nurse, J, и др.
Опубликовано: (2014)

RicherPicture: Semi-automated cyber defence using context-aware data analytics
по: Erola, A, и др.
Опубликовано: (2017)

Reflecting on the Ability of Enterprise Security Policy to Address Accidental Insider Threat
по: Buckley, O, и др.
Опубликовано: (2014)

A new take on detecting insider threats: Exploring the use of hidden Markov Models
по: Rashid, T, и др.
Опубликовано: (2016)

An independent assessment of the procedural components of the Estonian internet voting system
по: Nurse, J, и др.
Опубликовано: (2016)

An assessment of the security and transparency procedural components of the Estonian internet voting system
по: Nurse, J, и др.
Опубликовано: (2017)

Control effectiveness: a capture-the-flag study
по: Erola, A, и др.
Опубликовано: (2021)

Cloud Computing: Insider Attacks on Virtual Machines During Migration
по: Duncan, A, и др.
Опубликовано: (2013)

Insider threat response and recovery strategies in financial services firms
по: Eggenschwiler, J, и др.
Опубликовано: (2016)

Applying Formal Methods to Detect and Resolve Ambiguities in Privacy Requirements.
по: Agrafiotis, I, и др.
Опубликовано: (2010)

Applying Formal Methods to Detect and Resolve Ambiguities in Privacy Requirements
по: Agrafiotis, I, и др.
Опубликовано: (2011)

Formalising Requirements for a Biobank Case Study Using a Logic for Consent and Revocation
по: Agrafiotis, I, и др.
Опубликовано: (2012)

Developing a Strategy for Automated Privacy Testing Suites
по: Agrafiotis, I, и др.
Опубликовано: (2012)

Insider Attacks in Cloud Computing
по: Duncan, A, и др.
Опубликовано: (2012)

A combined attack-tree and kill-chain approach to designing attack-detection strategies for malicious insiders in cloud computing
по: Duncan, A, и др.
Опубликовано: (2019)

Insider Threat Detection Using Machine Learning Approach
по: Bushra Bin Sarhan, и др.
Опубликовано: (2022-12-01)

Anomaly detection using pattern-of-life visual metaphors
по: Happa, J, и др.
Опубликовано: (2019)

Detecting insider threats
по: Lai, Rachel
Опубликовано: (2016)

Insider threat detection for specific threat scenarios
по: Tian Tian, и др.
Опубликовано: (2025-03-01)

Investigating the leakage of sensitive personal and organisational information in email headers
по: Nurse, J, и др.
Опубликовано: (2015)

Investigating the leakage of sensitive personal and organisational information in email headers
по: Nurse, J, и др.
Опубликовано: (2015)

The challenge of detecting sophisticated attacks: Insights from SOC Analysts
по: Akinrolabu, O, и др.
Опубликовано: (2018)

The attacker in ubiquitous computing environments: formalising the threat model
по: Roscoe, A, и др.
Опубликовано: (2003)

Reaching for informed revocation: shutting off the tap on personal data
по: Agrafiotis, I, и др.
Опубликовано: (2010)

Reaching for Informed Revocation: Shutting Off the Tap on Personal Data.
по: Agrafiotis, I, и др.
Опубликовано: (2009)

Tool for Insider Threat Detection in Corporative Information Systems
по: Victor Sergeevich Vedeneev, и др.
Опубликовано: (2014-02-01)

A pragmatic system-failure assessment and response model
по: Happa, J, и др.
Опубликовано: (2016)