BIROn - Birkbeck Institutional Research Online

    Model based analysis of insider threats

    Chen, T. and Han, Tingting and Kammueller, F. and Nemli, I. and Probst, C.W. (2016) Model based analysis of insider threats. In: UNSPECIFIED (ed.) Cyber Security And Protection Of Digital Services (Cyber Security), 2016 International Conference On. IEEE Computer Society. ISBN 9781509007097.

    [img] Text
    ci_extendedabstract_25.pdf - Author's Accepted Manuscript
    Restricted to Repository staff only

    Download (310kB) | Request a copy

    Abstract

    In order to detect malicious insider attacks it is important to model and analyse infrastructures and policies of organisations and the insiders acting within them. We extend formal approaches that allow modelling such scenarios by quantitative aspects to enable a precise analysis of security designs. Our framework enables evaluating the risks of an insider attack to happen quantitatively. The framework first identifies an insider’s intention to perform an inside attack, using Bayesian networks, and in a second phase computes the probability of success for an inside attack by this actor, using probabilistic model checking. We provide prototype tool support using Matlab for Bayesian networks and PRISM for the analysis of Markov decision processes, and validate the framework with case studies.

    Metadata

    Item Type: Book Section
    Additional Information: 13-14 June 2016.
    School: Birkbeck Schools and Departments > School of Business, Economics & Informatics > Computer Science and Information Systems
    Depositing User: Dr Tingting Han
    Date Deposited: 21 Apr 2016 13:38
    Last Modified: 30 Jul 2019 22:18
    URI: http://eprints.bbk.ac.uk/id/eprint/14964

    Statistics

    Downloads
    Activity Overview
    1Download
    145Hits

    Additional statistics are available via IRStats2.

    Archive Staff Only (login required)

    Edit/View Item Edit/View Item