Machine learning based Insider Threat Modelling and Detection

机译：基于机器学习的内幕威胁建模和检测

获取原文

获取外文期刊封面目录资料

页面导航

摘要
著录项
引文网络
相似文献
相关主题

摘要

Recently, malicious insider attacks represent one of the most damaging threats to companies and government agencies. This paper proposes a new framework in constructing a user-centered machine learning based insider threat detection system on multiple data granularity levels. System evaluations and analysis are performed not only on individual data instances but also on normal and malicious insiders, where insider scenario specific results and delay in detection are reported and discussed. Our results show that the machine learning based detection system can learn from limited ground truth and detect new malicious insiders with a high accuracy.

机译：最近，恶意内幕攻击代表了公司和政府机构最具破坏性威胁之一。本文提出了一种在构建基于用户学习的基于机器学习的内幕威胁检测系统的新框架，在多个数据粒度水平上。系统评估和分析不仅在各个数据实例上执行，而且还在正常和恶意内部人员上进行，其中报告并讨论了Insider场景的结果和延迟检测。我们的研究结果表明，基于机器学习的检测系统可以从有限的地面真理中学习，并以高精度检测新的恶意内部人。

著录项

来源
《IFIP/IEEE Symposium on Integrated Network and Service Management》|2019年|893p|共6页
会议地点
作者
Duc C. Le; A. Nur Zincir-Heywood;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类 TP393-53;
关键词
Machine learning algorithms; Machine learning; Feature extraction; Security; Logistics; Organizations; Data collection;

机译：机器学习算法;机器学习;特征提取;安全;物流;组织;数据收集;

相似文献

外文文献
中文文献
专利

1. Insider Threat Detection Using Supervised Machine Learning Algorithms on an Extremely Imbalanced Dataset [J] . International Journal of Cyber Warfare and Terrorism . 2020,第2期

机译：使用监督的机器学习算法对极端不平衡的数据集进行内部威胁检测
2. Analyzing Data Granularity Levels for Insider Threat Detection Using Machine Learning [J] . IEEE transactions on network and service management . 2020,第1期

机译：使用机器学习分析数据粒度级别以进行内部威胁检测
3. Intrusion threat detection from insider attack using learning behavior-based [J] . Deris Stiawan, Mohd. Yazid Idris, Md. Sah Hj Salam, International Journal of Physical Sciences . 2012,第4期

机译：使用基于学习行为的内部攻击进行入侵威胁检测
4. Machine learning based Insider Threat Modelling and Detection [C] . Duc C. Le, A. Nur Zincir-Heywood IFIP/IEEE Symposium on Integrated Network and Service Management . 2019

机译：基于机器学习的内部威胁建模和检测
5. Ransomware Detection on Windows Platform Using Machine Learning-Based Threat Detection Model of API Calls [D] . Basavaraju, Sai Krishna Teja. 2021

机译：使用基于机器学习的API呼叫的威胁检测模型对Windows平台上的赎金软件检测
6. Man and the machine rise to the spike‐wave. Commentary on An automated machine learning‐based detection algorithm for spike‐wave discharges (SWDs) in a mouse model of absence epilepsy. [O] . Kevin M. Kelly 2020

机译：男人和机器上升到尖峰波。缺乏癫痫鼠标模型中基于机器学习的基于机器学习的检测算法的评论。
7. Insider threat simulation and performance analysis of insider detection algorithms with role based models [O] . Nellikar Suraj 2010

机译：基于角色模型的内部人员检测算法内部威胁仿真与性能分析
8. Insider Threat Detection on the Windows Operating System using Virtual Machine Introspection. [R] . M. H. Crawford 2012

机译：使用虚拟机内省的Windows操作系统内部威胁检测。

Machine learning based Insider Threat Modelling and Detection

摘要

著录项

引文网络

相似文献

相关主题

期刊订阅