TY - GEN
T1 - An insider threat prediction model
AU - Kandias, Miltiadis
AU - Mylonas, Alexios
AU - Virvilis, Nikos
AU - Theoharidou, Marianthi
AU - Gritzalis, Dimitris
PY - 2010
Y1 - 2010
N2 - Information systems face several security threats, some of which originate by insiders. This paper presents a novel, interdisciplinary insider threat prediction model. It combines approaches, techniques, and tools from computer science and psychology. It utilizes real time monitoring, capturing the user's technological trait in an information system and analyzing it for misbehavior. In parallel, the model is using data from psychometric tests, so as to assess for each user the predisposition to malicious acts and the stress level, which is an enabler for the user to overcome his moral inhibitions, under the condition that the collection of such data complies with the legal framework. The model combines the above mentioned information, categorizes users, and identifies those that require additional monitoring, as they can potentially be dangerous for the information system and the organization.
AB - Information systems face several security threats, some of which originate by insiders. This paper presents a novel, interdisciplinary insider threat prediction model. It combines approaches, techniques, and tools from computer science and psychology. It utilizes real time monitoring, capturing the user's technological trait in an information system and analyzing it for misbehavior. In parallel, the model is using data from psychometric tests, so as to assess for each user the predisposition to malicious acts and the stress level, which is an enabler for the user to overcome his moral inhibitions, under the condition that the collection of such data complies with the legal framework. The model combines the above mentioned information, categorizes users, and identifies those that require additional monitoring, as they can potentially be dangerous for the information system and the organization.
KW - Information Security
KW - Insider Threat
KW - Prediction
KW - Taxonomy
UR - http://www.scopus.com/inward/record.url?scp=78049354490&partnerID=8YFLogxK
U2 - 10.1007/978-3-642-15152-1_3
DO - 10.1007/978-3-642-15152-1_3
M3 - Conference contribution
AN - SCOPUS:78049354490
SN - 3642151515
SN - 9783642151514
T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
SP - 26
EP - 37
BT - Trust, Privacy and Security in Digital Business - 7th International Conference, TrustBus 2010, Proceedings
T2 - 7th International Conference on Trust, Privacy and Security in Digital Business, TrustBus 2010
Y2 - 30 August 2010 through 31 August 2010
ER -