NDLI: Detecting Threatening Behavior Using Bayesian Networks (2004)

Please wait, while we are loading the content...

Detecting Threatening Behavior Using Bayesian Networks (2004)

Content Provider	CiteSeerX
Author	Ghazi, Kathryn Laskey Laskey, Kathryn Alghamdi, Ghazi Wang, Xun Barbará, Daniel Shackelford, Tom Fitzgerald, Julie
Description	This paper presents an innovative use of human behavior models for detecting insider threats to information systems. While most work in information security concerns detecting and responding to intruders, violations of system security policy by authorized computer users present a major threat to information security. A promising approach to detection and response is to model behavior of normal users and threats, and apply sophisticated inference methods to detect patterns of behavior that deviate from normal behavior in ways suggesting a possible security threat. This paper presents an approach, based on multi-entity Bayesian networks, to modeling user queries and detecting situations in which users in sensitive positions may be accessing documents outside their assigned areas of responsibility. Such unusual access patterns might be characteristic of users attempting illegal activities such as disclosure of classified information. We present a scalable proof of concept behavior model, provide an experimental demonstration of its ability to detect unusual access patterns in simulated situations, and describe future plans to increase the realism and fidelity of the model.
File Format	PDF
Language	English
Publisher	BRIMS
Publisher Date	2004-01-01
Publisher Institution	Proceedings of the Conference on Behavioral Representation in Modeling and Simulation
Access Restriction	Open
Subject Keyword	Authorized Computer User Human Behavior Model Illegal Activity Promising Approach Classified Information Scalable Proof Information Security Possible Security Threat Concept Behavior Model Assigned Area Sophisticated Inference Method Multi-entity Bayesian Network Information System Sensitive Position Unusual Access Pattern Behavior Using Bayesian Network Information Security Concern Major Threat Innovative Use Future Plan Simulated Situation Insider Threat System Security Policy Normal Behavior User Query Normal User Experimental Demonstration
Content Type	Text
Resource Type	Article

Central Library (ISO-9001:2015 Certified)
Indian Institute of Technology Kharagpur
Kharagpur, West Bengal, India | PIN - 721302

See location in the Map
03222 282435
Mail: support@ndl.gov.in

Sl.	Authority	Responsibilities	Communication Details
1	Ministry of Education (GoI), Department of Higher Education	Sanctioning Authority	https://www.education.gov.in/ict-initiatives
2	Indian Institute of Technology Kharagpur	Host Institute of the Project: The host institute of the project is responsible for providing infrastructure support and hosting the project	https://www.iitkgp.ac.in
3	National Digital Library of India Office, Indian Institute of Technology Kharagpur	The administrative and infrastructural headquarters of the project	Dr. B. Sutradhar bsutra@ndl.gov.in
4	Project PI / Joint PI	Principal Investigator and Joint Principal Investigators of the project	Dr. B. Sutradhar bsutra@ndl.gov.in Prof. Saswat Chakrabarti will be added soon
5	Website/Portal (Helpdesk)	Queries regarding NDLI and its services	support@ndl.gov.in
6	Contents and Copyright Issues	Queries related to content curation and copyright issues	content@ndl.gov.in
7	National Digital Library of India Club (NDLI Club)	Queries related to NDLI Club formation, support, user awareness program, seminar/symposium, collaboration, social media, promotion, and outreach	clubsupport@ndl.gov.in
8	Digital Preservation Centre (DPC)	Assistance with digitizing and archiving copyright-free printed books	dpc@ndl.gov.in
9	IDR Setup or Support	Queries related to establishment and support of Institutional Digital Repository (IDR) and IDR workshops	idr@ndl.gov.in