Advanced Risk Measurement Approach to Insider Threats in Cyberspace

Inhyun Cho; Kyungho Lee

doi:10.1080/10798587.2015.1121617

Advanced Risk Measurement Approach to Insider Threats in Cyberspace

Inhyun Cho, Kyungho Lee

School of Cybersecurity

Research output: Contribution to journal › Article › peer-review

1 Citation (Scopus)

Abstract

Inside jobs have been a source of critical threats in cyberspace. To manage such insider threats, a proper measurement approach is required for effective risk-based decision-making. The measurement approach should include insider-related information (e.g. the significance of jobs, the position level, the required authority for data, and the type of employment) in order to better measure and analyze insider risks. In this paper, we suggest an approach that takes into account the insider-related information in calculating data leakage risk of insiders in the banking sector. We implement this approach by utilizing real-world data to calculate insider risks. We present an effective risk measurement approach, which we believe can enhance decision-making process for risk management for insider threats.

Original language	English
Pages (from-to)	405-413
Number of pages	9
Journal	Intelligent Automation and Soft Computing
Volume	22
Issue number	3
DOIs	https://doi.org/10.1080/10798587.2015.1121617
Publication status	Published - 2016 Jul 2

Keywords

Insider threat
banking Sector
cyberspace
data leakage
risk measurement

ASJC Scopus subject areas

Software
Theoretical Computer Science
Computational Theory and Mathematics
Artificial Intelligence

Access to Document

10.1080/10798587.2015.1121617

Cite this

@article{d9a04c3a80714381870bfef94ea7fac8,

title = "Advanced Risk Measurement Approach to Insider Threats in Cyberspace",

abstract = "Inside jobs have been a source of critical threats in cyberspace. To manage such insider threats, a proper measurement approach is required for effective risk-based decision-making. The measurement approach should include insider-related information (e.g. the significance of jobs, the position level, the required authority for data, and the type of employment) in order to better measure and analyze insider risks. In this paper, we suggest an approach that takes into account the insider-related information in calculating data leakage risk of insiders in the banking sector. We implement this approach by utilizing real-world data to calculate insider risks. We present an effective risk measurement approach, which we believe can enhance decision-making process for risk management for insider threats.",

keywords = "Insider threat, banking Sector, cyberspace, data leakage, risk measurement",

author = "Inhyun Cho and Kyungho Lee",

note = "Publisher Copyright: {\textcopyright} 2016 TSI{\textregistered} Press.",

year = "2016",

month = jul,

day = "2",

doi = "10.1080/10798587.2015.1121617",

language = "English",

volume = "22",

pages = "405--413",

journal = "Intelligent Automation and Soft Computing",

issn = "1079-8587",

publisher = "AutoSoft Press",

number = "3",

}

TY - JOUR

T1 - Advanced Risk Measurement Approach to Insider Threats in Cyberspace

AU - Cho, Inhyun

AU - Lee, Kyungho

PY - 2016/7/2

Y1 - 2016/7/2

N2 - Inside jobs have been a source of critical threats in cyberspace. To manage such insider threats, a proper measurement approach is required for effective risk-based decision-making. The measurement approach should include insider-related information (e.g. the significance of jobs, the position level, the required authority for data, and the type of employment) in order to better measure and analyze insider risks. In this paper, we suggest an approach that takes into account the insider-related information in calculating data leakage risk of insiders in the banking sector. We implement this approach by utilizing real-world data to calculate insider risks. We present an effective risk measurement approach, which we believe can enhance decision-making process for risk management for insider threats.

AB - Inside jobs have been a source of critical threats in cyberspace. To manage such insider threats, a proper measurement approach is required for effective risk-based decision-making. The measurement approach should include insider-related information (e.g. the significance of jobs, the position level, the required authority for data, and the type of employment) in order to better measure and analyze insider risks. In this paper, we suggest an approach that takes into account the insider-related information in calculating data leakage risk of insiders in the banking sector. We implement this approach by utilizing real-world data to calculate insider risks. We present an effective risk measurement approach, which we believe can enhance decision-making process for risk management for insider threats.

KW - Insider threat

KW - banking Sector

KW - cyberspace

KW - data leakage

KW - risk measurement

UR - http://www.scopus.com/inward/record.url?scp=84953286434&partnerID=8YFLogxK

U2 - 10.1080/10798587.2015.1121617

DO - 10.1080/10798587.2015.1121617

M3 - Article

AN - SCOPUS:84953286434

SN - 1079-8587

VL - 22

SP - 405

EP - 413

JO - Intelligent Automation and Soft Computing

JF - Intelligent Automation and Soft Computing

IS - 3

ER -

Advanced Risk Measurement Approach to Insider Threats in Cyberspace

Abstract

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this