ACM Portal
  Subscribe (Full Service)    Register (Limited Service, Free)    Login
  Search:   The ACM Digital Library   The Guide
  
ACM Home Page
Please provide us with feedback. Feedback
Defining the insider threat
Full text PdfPdf (1.09 MB)
Source
CSIIRW; Vol. 288 archive
Proceedings of the 4th annual workshop on Cyber security and information intelligence research: developing strategies to meet the cyber security and information intelligence challenges ahead table of contents
Oak Ridge, Tennessee
SESSION: Track: intrusion detection/insider threat table of contents
Article No. 15  
Year of Publication: 2008
ISBN:978-1-60558-098-2
Authors
Matt Bishop  UC Davis, Davis, CA
Carrie Gates  CA Labs, Islandia, NY
Publisher
ACM  New York, NY, USA
Bibliometrics
Downloads (6 Weeks): 20,   Downloads (12 Months): 148,   Citation Count: 3
Additional Information:

appendices and supplements   abstract   references   cited by   index terms   collaborative colleagues  

Tools and Actions: Review this Article  
DOI Bookmark: Use this link to bookmark this Article: http://doi.acm.org/10.1145/1413140.1413158
What is a DOI?

APPENDICES and SUPPLEMENTS
PdfRelated slides.
Slide presentation for "Defining the insider threat"


ABSTRACT

Many diverse groups have studied the insider threat problem, including government organizations such as the Secret Service, federally-funded research organizations such as RAND and CERT, and university researchers. In addition, many industry participants are interested in the problem, such as those in the financial sector. However, despite this interest, no consistent definition of an insider has emerged.


REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

1
Matt Bishop, Position: "insider" is relative, Proceedings of the 2005 workshop on New security paradigms, September 20-23, 2005, Lake Arrowhead, California  [doi>10.1145/1146269.1146288]
 
2
R. Brackney and R. Anderson. Understanding the insider threat: Proceedings of a march 2004 workshop. Technical report, RAND Corporation, Santa Monica, CA, March 2004.
 
3
J. Patzakis. New incident response best practices: Patch and proceed is no longer acceptable incident response. Technical report, Guidance Software, Pasadena, CA, September 2003.

CITED BY  3
Justin Myers , Michael R. Grimaila , Robert F. Mills, Towards insider threat detection using web server logs, Proceedings of the 5th Annual Workshop on Cyber Security and Information Intelligence Research: Cyber Security and Information Intelligence Challenges and Strategies, April 13-15, 2009, Oak Ridge, Tennessee
Kyungsoo Im , John D. McGregor, Debugging support for security properties of software architectures, Proceedings of the 5th Annual Workshop on Cyber Security and Information Intelligence Research: Cyber Security and Information Intelligence Challenges and Strategies, April 13-15, 2009, Oak Ridge, Tennessee
Zhengyi Le , Matt Bishop , Fillia Makedon, Strong mobile device protection from loss and capture, Proceedings of the 2nd International Conference on PErvsive Technologies Related to Assistive Environments, p.1-7, June 09-13, 2009, Corfu, Greece

INDEX TERMS

Primary Classification:
  K. Computing Milieux
  K.6 MANAGEMENT OF COMPUTING AND INFORMATION SYSTEMS
      K.6.5 Security and Protection (D.4.6, K.4.2)


General Terms:
Security

Collaborative Colleagues:
Matt Bishop: colleagues
Carrie Gates: colleagues

The ACM Portal is published by the Association for Computing Machinery. Copyright © 2009 ACM, Inc.
Terms of Usage   Privacy Policy   Code of Ethics   Contact Us

Useful downloads: Adobe Acrobat    QuickTime    Windows Media Player    Real Player