University of Leicester
Browse
Nurse_has2014_paper.pdf (179.37 kB)

A critical reflection on the threat from human insiders - Its nature, industry perceptions, and detection approaches

Download (179.37 kB)
journal contribution
posted on 2015-10-29, 13:01 authored by J. R. C. Nurse, P. A. Legg, O. Buckley, I. Agrafiotis, G. Wright, Monica Whitty, D. Upton, M. Goldsmith, S. Creese
Organisations today operate in a world fraught with threats, including "script kiddies", hackers, hacktivists and advanced persistent threats. Although these threats can be harmful to an enterprise, a potentially more devastating and anecdotally more likely threat is that of the malicious insider. These trusted individuals have access to valuable company systems and data, and are well placed to undermine security measures and to attack their employers. In this paper, we engage in a critical reflection on the insider threat in order to better understand the nature of attacks, associated human factors, perceptions of threats, and detection approaches. We differentiate our work from other contributions by moving away from a purely academic perspective, and instead focus on distilling industrial reports (i.e., those that capture practitioners' experiences and feedback) and case studies in order to truly appreciate how insider attacks occur in practice and how viable preventative solutions may be developed. © 2014 Springer International Publishing.

History

Citation

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), 2014, 8533 LNCS, pp. 270-281

Author affiliation

/Organisation/COLLEGE OF SOCIAL SCIENCES, ARTS AND HUMANITIES/Department of Media and Communication

Version

  • AM (Accepted Manuscript)

Published in

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

Publisher

Springer Verlag

issn

0302-9743

eissn

1611-3349

Copyright date

2014

Available date

2016-01-01

Publisher version

http://link.springer.com/chapter/10.1007/978-3-319-07620-1_24

Notes

The file associated with this record is under a 12-month embargo from publication in accordance with the publisher's self-archiving policy, available available on the SHERPA/RoMEO website.

Language

en

Usage metrics

    University of Leicester Publications

    Categories

    Exports

    RefWorks
    BibTeX
    Ref. manager
    Endnote
    DataCite
    NLM
    DC