Franqueira, Virginia N. L., Van Eck, Pascal (2008) Defense Against Insider Threat: A framework for Gathering Goal-based Requirements. In: CEUR Workshop Proceedings. CEUR Workshop Proceedings. . pp. 183-192. (KAR id:77204)
|
PDF
Publisher pdf
Language: English |
|
|
Click to download this file (547kB)
Preview
|
Preview |
|
This file may not be suitable for users of assistive technology.
Request an accessible format
|
|
| Official URL: http://ceur-ws.org/Vol-365/ |
|
Abstract
Insider threat is becoming comparable to outsider threat in frequency of security events. This is a worrying situation, since insider attacks have a high probability of success because insiders have authorized access and legitimate privileges. Despite their importance, insider threats are still not properly addressed by organizations. We contribute to reverse this situation by introducing a framework composed of a method for identification and assessment of insider threat risks and of two supporting deliverables for awareness of insider threat. The deliverables are: (i) attack strategies structured in four decomposition trees, and (ii) a matrix which correlates defense strategies, attack strategies and control principles. The method output consists of goal-based requirements for the defense against insiders.
| Item Type: | Conference or workshop item (Paper) |
|---|---|
| Uncontrolled keywords: | Modeling of Security, Risk Assessment, Insider Threat |
| Divisions: | Divisions > Division of Computing, Engineering and Mathematical Sciences > School of Computing |
| Depositing User: | Virginia Franqueira |
| Date Deposited: | 10 Oct 2019 16:47 UTC |
| Last Modified: | 16 Nov 2021 10:26 UTC |
| Resource URI: | https://kar.kent.ac.uk/id/eprint/77204 (The current URI for this page, for reference purposes) |
| Franqueira, Virginia N. L.: |
 https://orcid.org/0000-0003-1332-9115
|
- Link to SensusAccess
- Export to:
- RefWorks
- EPrints3 XML
- BibTeX
- CSV
- Depositors only (login required):
Download Statistics
Download Statistics
