TU Darmstadt / ULB / TUbiblio

Insiders Dissected: New Foundations and a Systematisation of the Research on Insiders

Zimmer, Ephraim ; Burkert, Christian ; Federrath, Hannes (2021)
Insiders Dissected: New Foundations and a Systematisation of the Research on Insiders.
In: Digital Threats: Research and Practice, 3 (1)
doi: 10.1145/3473674
Artikel, Bibliographie

Kurzbeschreibung (Abstract)

The insider threat is often cited as one of the most challenging threats for security practitioners. Even though this topic is receiving considerable attention, two main problems remain unsolved. First, research on insider threats is focusing on many different insiders without being able to actually identify and consistently entitle the key aspects of the insiders. As a result, this research can neither be identified by practitioners as being relevant for their real-world insider problems, nor can it be compared with other research targeting the same insider aspects. Second, a clear understanding of insiders is vital for analysing, which insider properties are responsible for the peculiarity of insider threats. In this article, a systematic approach to dissect the defining aspects of insiders is proposed, which includes specific allocatable insider characteristics. Additionally, the insider characteristics are extended toward insider types, which establish universal and unambiguous names for different insiders and which are related with each other to form a new and simple insider taxonomy. The new foundations on insiders allow the comparison of different insider research in a structured manner. Furthermore, the new approach facilitates the identification of specific features of insider threats in future work.

Typ des Eintrags: Artikel
Erschienen: 2021
Autor(en): Zimmer, Ephraim ; Burkert, Christian ; Federrath, Hannes
Art des Eintrags: Bibliographie
Titel: Insiders Dissected: New Foundations and a Systematisation of the Research on Insiders
Sprache: Englisch
Publikationsjahr: 22 Oktober 2021
Verlag: ACM
Titel der Zeitschrift, Zeitung oder Schriftenreihe: Digital Threats: Research and Practice
Jahrgang/Volume einer Zeitschrift: 3
(Heft-)Nummer: 1
Kollation: 35 pp.
Veranstaltungsort: New York, NY, USA
DOI: 10.1145/3473674
Kurzbeschreibung (Abstract):

The insider threat is often cited as one of the most challenging threats for security practitioners. Even though this topic is receiving considerable attention, two main problems remain unsolved. First, research on insider threats is focusing on many different insiders without being able to actually identify and consistently entitle the key aspects of the insiders. As a result, this research can neither be identified by practitioners as being relevant for their real-world insider problems, nor can it be compared with other research targeting the same insider aspects. Second, a clear understanding of insiders is vital for analysing, which insider properties are responsible for the peculiarity of insider threats. In this article, a systematic approach to dissect the defining aspects of insiders is proposed, which includes specific allocatable insider characteristics. Additionally, the insider characteristics are extended toward insider types, which establish universal and unambiguous names for different insiders and which are related with each other to form a new and simple insider taxonomy. The new foundations on insiders allow the comparison of different insider research in a structured manner. Furthermore, the new approach facilitates the identification of specific features of insider threats in future work.

Freie Schlagworte: research systematisation, insider type, insider modelling, insider taxonomy, insider ontology, Insider definition
Zusätzliche Informationen:

Art.No.: 2

Fachbereich(e)/-gebiet(e): 20 Fachbereich Informatik
20 Fachbereich Informatik > Telekooperation
DFG-Graduiertenkollegs
DFG-Graduiertenkollegs > Graduiertenkolleg 2050 Privacy and Trust for Mobile Users
Hinterlegungsdatum: 29 Okt 2021 06:26
Letzte Änderung: 29 Okt 2021 06:26
PPN:
Export:
Suche nach Titel in: TUfind oder in Google
Frage zum Eintrag Frage zum Eintrag

Optionen (nur für Redakteure)
Redaktionelle Details anzeigen Redaktionelle Details anzeigen