Detecting Potentially Compromised Credentials in a Large-Scale Production Single-Signon System

Abstract

We posit that potentially compromised credentials are detectable by analyzing the system artifacts of a large-scale production, single-signon system. With permission from the Defense Manpower Data Center, we analyze a year s worth of system artifacts produced by the Department of Defense Self-Service Logon system. Using industry standard tools and descriptive statistics we develop a repeatable process that identifies potentially compromised credentials. We look for characteristics that coincide with compromised credentials and evaluate our approach by obtaining the ground truth on several of the credentials we identify.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jun 01, 2014
Accession Number
ADA608007

Entities

People

  • Timothy Riley

Organizations

  • Naval Postgraduate School

Tags

Communities of Interest

  • Biomedical
  • Energy and Power Technologies
  • Human Systems

DTIC Thesaurus Topics

  • Authentication
  • Big Data
  • Computer Programming
  • Computer Science
  • Computers
  • Control Systems
  • Data Centers
  • Data Storage Systems
  • Data Visualization
  • Department Of Defense
  • Domain Specific Programming Languages
  • Electronic Mail
  • Information Science
  • Military Medicine
  • Network Protocols
  • Network Science
  • Traumatic Stress Disorder

Fields of Study

  • Computer science

Readers

  • Government and Public Administration Law.
  • Systems Analysis and Design