Skip to main content
SpringerLink
Log in

A Frame-Based Approach to Generating Insider Threat Test Suite on Cloud File-Sharing

  • Conference paper
  • First Online:
Mobile Internet Security (MobiSec 2017)

Part of the book series: Communications in Computer and Information Science ((CCIS,volume 971))

Included in the following conference series:

  • 378 Accesses

Abstract

Insider threat has attracted considerable attention in security industry. It is difficult to detect insiders, because they know organization’s security countermeasures and usually hide their tracks in their normal activities. For evaluating insider detection algorithm on specific organization, it is important to generate a test suite with the corresponding normal activities. However, it is costly and time consuming to generate tailor-made test suite. Due to the complexity of combining different insider attack technique with different organization’s audit data, the insider attack scenario modeling issue arises when adaptively generate test suite for insider threat detection. In this paper, we propose the insider attack frame hierarchy to describe stereotype features of insider attack scenario. The proposed frame-based approach has been combined with the RBAC technologies, and its instantiation property allow us generate the customized insider attack test suite with full test coverage. The evaluation results show that most of experts satisfy with our proposed system.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 49.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 64.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

References

  1. Kitts, B., et al.: Click fraud detection with bot signatures. In: 2013 IEEE International Conference on Intelligence and Security Informatics (2013)

    Google Scholar 

  2. Zhu, T.M., et al.: An insider threat detection method based on business process mining. Int. J. Bus. Data Commun. Netw. 13(2), 83–98 (2017)

    Article  Google Scholar 

  3. Yaseen, Q., et al.: An insider threat aware access control for cloud relational databases. Clust. Comput. J. Netw. Softw. Tools Appl. 20(3), 2669–2685 (2017)

    Google Scholar 

  4. Almehmadi, A., El-Khatib, K.: On the possibility of insider threat prevention using Intent-Based Access Control (IBAC). IEEE Syst. J. 11(2), 373–384 (2017)

    Article  Google Scholar 

  5. Bose, B., et al.: Detecting insider threats using RADISH: a system for real-time anomaly detection in heterogeneous data streams. IEEE Syst. J. 11(2), 471–482 (2017)

    Article  Google Scholar 

  6. Aleman-Meza, B., Burns, P., Eavenson, M., Palaniswami, D., Sheth, A.: An ontological approach to the document access problem of insider threat. In: Kantor, P., et al. (eds.) ISI 2005. LNCS, vol. 3495, pp. 486–491. Springer, Heidelberg (2005). https://doi.org/10.1007/11427995_47

    Chapter  Google Scholar 

  7. Zhang, N., et al.: Maintaining defender’s reputation in anomaly detection against insider attacks. IEEE Trans. Syst. Man Cybern. Part B-Cybern. 40(3), 597–611 (2010)

    Article  Google Scholar 

  8. Agrafiotis, I., et al.: Formalising policies for insider-threat detection: a tripwire grammar. J. Wirel. Mob. Netw. Ubiquitous Comput. Dependable Appl. (JoWUA) 8(1), 26–43 (2017)

    Google Scholar 

  9. Kammüller, F., et al.: Insider threats and auctions: formalization, mechanized proof, and code generation. J. Wirel. Mob. Netw. Ubiquitous Comput. Dependable Appl. (JoWUA) 8(1), 26–43 (2017)

    Google Scholar 

  10. Kammüller, F., et al.: Enhancing video surveillance with usage control and privacy-preserving solutions. J. Wirel. Mob. Netw. Ubiquitous Comput. Dependable Appl. (JoWUA) 7(4), 20–40 (2016)

    Google Scholar 

  11. Pandit, T., et al.: Attribute-based signcryption: signer privacy, strong unforgeability and IND-CCA security in adaptive-predicates model (extended version). J. Internet Serv. Inf. Secur. (JISIS) 6(3), 61–113 (2016)

    MathSciNet  Google Scholar 

  12. Guerar, M., et al.: ClickPattern: a pattern lock system resilient to smudge and side-channel attacks. J. Wirel. Mob. Netw. Ubiquitous Comput. Dependable Appl. (JoWUA) 8(2), 64–78 (2017)

    Google Scholar 

  13. Ishida, T., et al.: Implementation of an integrated disaster information cloud system for disaster control. J. Internet Serv. Inf. Secur. (JISIS) 7(4), 1–20 (2017)

    MathSciNet  Google Scholar 

Download references

Acknowledgement

This study is conducted under the “III Innovative and Prospective Technologies Project (1/1)” of the Institute for Information Industry which is subsidized by the Ministry of Economic Affairs of the Republic of China. This work was partially supported by National Science Council of the Republic of China under contracts 106-2511-S-468-002-MY3 and 106-2511-S-468-004-MY2.

Author information

Authors and Affiliations

  1. National Penghu University of Science and Technology, Magong, Penghu, Taiwan

    Tsung-Ju Lee

  2. Asia University, Taichung, Taiwan

    Shian-Shyong Tseng & Hsing-Chung Chen

  3. National Taipei University of Education, Taipei, Taiwan

    Sung-Chiang Lin

  4. National Taiwan University of Science and Technology, Taipei, Taiwan

    Chiun-How Kao

Authors
  1. Tsung-Ju Lee
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Shian-Shyong Tseng
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Hsing-Chung Chen
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Sung-Chiang Lin
    View author publications

    You can also search for this author in PubMed Google Scholar

  5. Chiun-How Kao
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Shian-Shyong Tseng .

Editor information

Editors and Affiliations

  1. Department of Information Security Engineering, Soonchunhyang University, Choongchungnam-do, Korea (Republic of)

    Ilsun You

  2. Asian University Taiwan, Taichung, Taiwan

    Hsing-Chung Chen

  3. Department of Information Security, Soonchunhyang University, Seoul, Korea (Republic of)

    Vishal Sharma

  4. SPIIRAS, St. Petersburg, Russia

    Igor Kotenko

Rights and permissions

Reprints and permissions

Copyright information

© 2019 Springer Nature Singapore Pte Ltd.

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Lee, TJ., Tseng, SS., Chen, HC., Lin, SC., Kao, CH. (2019). A Frame-Based Approach to Generating Insider Threat Test Suite on Cloud File-Sharing. In: You, I., Chen, HC., Sharma, V., Kotenko, I. (eds) Mobile Internet Security. MobiSec 2017. Communications in Computer and Information Science, vol 971. Springer, Singapore. https://doi.org/10.1007/978-981-13-3732-1_12

Download citation

  • DOI: https://doi.org/10.1007/978-981-13-3732-1_12

  • Published:

  • Publisher Name: Springer, Singapore

  • Print ISBN: 978-981-13-3731-4

  • Online ISBN: 978-981-13-3732-1

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation