Zimmer, Ephraim ; Burkert, Christian ; Federrath, Hannes (2021)
Insiders Dissected: New Foundations and a Systematisation of the Research on Insiders.
In: Digital Threats: Research and Practice, 3 (1)
doi: 10.1145/3473674
Artikel, Bibliographie
Kurzbeschreibung (Abstract)
The insider threat is often cited as one of the most challenging threats for security practitioners. Even though this topic is receiving considerable attention, two main problems remain unsolved. First, research on insider threats is focusing on many different insiders without being able to actually identify and consistently entitle the key aspects of the insiders. As a result, this research can neither be identified by practitioners as being relevant for their real-world insider problems, nor can it be compared with other research targeting the same insider aspects. Second, a clear understanding of insiders is vital for analysing, which insider properties are responsible for the peculiarity of insider threats. In this article, a systematic approach to dissect the defining aspects of insiders is proposed, which includes specific allocatable insider characteristics. Additionally, the insider characteristics are extended toward insider types, which establish universal and unambiguous names for different insiders and which are related with each other to form a new and simple insider taxonomy. The new foundations on insiders allow the comparison of different insider research in a structured manner. Furthermore, the new approach facilitates the identification of specific features of insider threats in future work.
| Typ des Eintrags: | Artikel |
|---|---|
| Erschienen: | 2021 |
| Autor(en): | Zimmer, Ephraim ; Burkert, Christian ; Federrath, Hannes |
| Art des Eintrags: | Bibliographie |
| Titel: | Insiders Dissected: New Foundations and a Systematisation of the Research on Insiders |
| Sprache: | Englisch |
| Publikationsjahr: | 22 Oktober 2021 |
| Verlag: | ACM |
| Titel der Zeitschrift, Zeitung oder Schriftenreihe: | Digital Threats: Research and Practice |
| Jahrgang/Volume einer Zeitschrift: | 3 |
| (Heft-)Nummer: | 1 |
| Kollation: | 35 pp. |
| Veranstaltungsort: | New York, NY, USA |
| DOI: | 10.1145/3473674 |
| Kurzbeschreibung (Abstract): | The insider threat is often cited as one of the most challenging threats for security practitioners. Even though this topic is receiving considerable attention, two main problems remain unsolved. First, research on insider threats is focusing on many different insiders without being able to actually identify and consistently entitle the key aspects of the insiders. As a result, this research can neither be identified by practitioners as being relevant for their real-world insider problems, nor can it be compared with other research targeting the same insider aspects. Second, a clear understanding of insiders is vital for analysing, which insider properties are responsible for the peculiarity of insider threats. In this article, a systematic approach to dissect the defining aspects of insiders is proposed, which includes specific allocatable insider characteristics. Additionally, the insider characteristics are extended toward insider types, which establish universal and unambiguous names for different insiders and which are related with each other to form a new and simple insider taxonomy. The new foundations on insiders allow the comparison of different insider research in a structured manner. Furthermore, the new approach facilitates the identification of specific features of insider threats in future work. |
| Freie Schlagworte: | research systematisation, insider type, insider modelling, insider taxonomy, insider ontology, Insider definition |
| Zusätzliche Informationen: | Art.No.: 2 |
| Fachbereich(e)/-gebiet(e): | 20 Fachbereich Informatik 20 Fachbereich Informatik > Telekooperation DFG-Graduiertenkollegs DFG-Graduiertenkollegs > Graduiertenkolleg 2050 Privacy and Trust for Mobile Users |
| Hinterlegungsdatum: | 29 Okt 2021 06:26 |
| Letzte Änderung: | 29 Okt 2021 06:26 |
| PPN: | |
| Export: | |
| Suche nach Titel in: | TUfind oder in Google |
 |
Frage zum Eintrag |
Optionen (nur für Redakteure)
 |
Redaktionelle Details anzeigen |
Drucken
Impressum