Mitigating the Insider Threat Using High-Dimensional Search and Modeling

Abstract

In this project a system was built aimed at mitigating insider attacks centered around a high-dimensional search engine for correlating the large number of monitoring streams necessary for detecting insider attacks. Further accomplishments in this project include an insider attack modeling and analysis tool called MAPIT, developed by SUNY Buffalo, and a novel sketch-based anomaly detection sensor developed by Rutgers University, which can be used for detecting anomalies in IP source/destination addresses, as well as for defining small-space user profiles, e.g., file accesses.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Apr 01, 2006
Accession Number
ADA450159

Entities

People

  • Eric van den Berg
  • Muthu Muthukrishnan
  • Phi H. Ngo
  • Rajago Palan
  • Shambhu Uphadyaya

Tags

Communities of Interest

  • Materials and Manufacturing Processes
  • Sensors

DTIC Thesaurus Topics

  • Air Force Research Laboratories
  • Anomaly Detection
  • Change Detection
  • Computer Network Security
  • Cybersecurity
  • Detection
  • Detectors
  • Dimensionality Reduction
  • Graphical User Interface
  • Insider Threats
  • Intrusion Detection
  • Intrusion Detection Systems
  • Intrusion Detectors
  • Operating Systems
  • Security
  • Sensor Networks
  • Word Processors

Fields of Study

  • Computer science

Readers

  • Database Systems and Applications
  • Marine Mammal Biology
  • Research Science/Academic Research

Technology Areas

  • Space
  • Space - Space Objects