Enhanced insider threat detection model that increases data availability

Qussai Yaseen; Brajendra Panda

doi:10.1007/978-3-642-19056-8_20

Enhanced insider threat detection model that increases data availability

Qussai Yaseen
, Brajendra Panda

University of Arkansas System

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

4 Scopus citations

Abstract

This paper demonstrates how to prevent or mitigate insider threats in relational databases. It shows how different order of accesses to the same data items may pose different levels of threat. Moreover, it states the conditions that are required to regard a data item as expired. In addition, it introduces the two different methods of executing insiders' tasks, and how to prevent insider threat in those. The models presented in this paper organize accesses to data items in a particular sequence so that the availability of data items is maximized and the expected threat is minimized to the lowest level. Furthermore, it determines when to give an insider an incorrect but acceptable value of a risky data item in order to prevent a possible threat.

Original language	English
Title of host publication	Distributed Computing and Internet Technology - 7th International Conference, ICDCIT 2011, Proceedings
Pages	267-277
Number of pages	11
DOIs	https://doi.org/10.1007/978-3-642-19056-8_20
State	Published - 2011
Externally published	Yes
Event	7th International Conference on Distributed Computing and Internet Technology, ICDCIT 2011 - Bhubaneshwar, India Duration: 9 Feb 2011 → 12 Feb 2011

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	6536 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	7th International Conference on Distributed Computing and Internet Technology, ICDCIT 2011
Country/Territory	India
City	Bhubaneshwar
Period	9/02/11 → 12/02/11

Keywords

Data Availability
Databases
Insider Threat
Knowledgebase

Access to Document

10.1007/978-3-642-19056-8_20

Cite this

Yaseen, Q., & Panda, B. (2011). Enhanced insider threat detection model that increases data availability. In Distributed Computing and Internet Technology - 7th International Conference, ICDCIT 2011, Proceedings (pp. 267-277). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 6536 LNCS). https://doi.org/10.1007/978-3-642-19056-8_20

@inproceedings{6eb9732a355844bc84ae5c63118476f5,

title = "Enhanced insider threat detection model that increases data availability",

abstract = "This paper demonstrates how to prevent or mitigate insider threats in relational databases. It shows how different order of accesses to the same data items may pose different levels of threat. Moreover, it states the conditions that are required to regard a data item as expired. In addition, it introduces the two different methods of executing insiders' tasks, and how to prevent insider threat in those. The models presented in this paper organize accesses to data items in a particular sequence so that the availability of data items is maximized and the expected threat is minimized to the lowest level. Furthermore, it determines when to give an insider an incorrect but acceptable value of a risky data item in order to prevent a possible threat.",

keywords = "Data Availability, Databases, Insider Threat, Knowledgebase",

author = "Qussai Yaseen and Brajendra Panda",

year = "2011",

doi = "10.1007/978-3-642-19056-8\_20",

language = "English",

isbn = "9783642190551",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

pages = "267--277",

booktitle = "Distributed Computing and Internet Technology - 7th International Conference, ICDCIT 2011, Proceedings",

note = "7th International Conference on Distributed Computing and Internet Technology, ICDCIT 2011 ; Conference date: 09-02-2011 Through 12-02-2011",

}

Yaseen, Q & Panda, B 2011, Enhanced insider threat detection model that increases data availability. in Distributed Computing and Internet Technology - 7th International Conference, ICDCIT 2011, Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 6536 LNCS, pp. 267-277, 7th International Conference on Distributed Computing and Internet Technology, ICDCIT 2011, Bhubaneshwar, India, 9/02/11. https://doi.org/10.1007/978-3-642-19056-8_20

Enhanced insider threat detection model that increases data availability. / Yaseen, Qussai; Panda, Brajendra.
Distributed Computing and Internet Technology - 7th International Conference, ICDCIT 2011, Proceedings. 2011. p. 267-277 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 6536 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Enhanced insider threat detection model that increases data availability

AU - Yaseen, Qussai

AU - Panda, Brajendra

PY - 2011

Y1 - 2011

N2 - This paper demonstrates how to prevent or mitigate insider threats in relational databases. It shows how different order of accesses to the same data items may pose different levels of threat. Moreover, it states the conditions that are required to regard a data item as expired. In addition, it introduces the two different methods of executing insiders' tasks, and how to prevent insider threat in those. The models presented in this paper organize accesses to data items in a particular sequence so that the availability of data items is maximized and the expected threat is minimized to the lowest level. Furthermore, it determines when to give an insider an incorrect but acceptable value of a risky data item in order to prevent a possible threat.

AB - This paper demonstrates how to prevent or mitigate insider threats in relational databases. It shows how different order of accesses to the same data items may pose different levels of threat. Moreover, it states the conditions that are required to regard a data item as expired. In addition, it introduces the two different methods of executing insiders' tasks, and how to prevent insider threat in those. The models presented in this paper organize accesses to data items in a particular sequence so that the availability of data items is maximized and the expected threat is minimized to the lowest level. Furthermore, it determines when to give an insider an incorrect but acceptable value of a risky data item in order to prevent a possible threat.

KW - Data Availability

KW - Databases

KW - Insider Threat

KW - Knowledgebase

UR - https://www.scopus.com/pages/publications/79951663740

U2 - 10.1007/978-3-642-19056-8_20

DO - 10.1007/978-3-642-19056-8_20

M3 - Conference contribution

AN - SCOPUS:79951663740

SN - 9783642190551

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 267

EP - 277

BT - Distributed Computing and Internet Technology - 7th International Conference, ICDCIT 2011, Proceedings

T2 - 7th International Conference on Distributed Computing and Internet Technology, ICDCIT 2011

Y2 - 9 February 2011 through 12 February 2011

ER -

Yaseen Q, Panda B. Enhanced insider threat detection model that increases data availability. In Distributed Computing and Internet Technology - 7th International Conference, ICDCIT 2011, Proceedings. 2011. p. 267-277. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-642-19056-8_20

Enhanced insider threat detection model that increases data availability

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this