Title: | An Event Based Detection of Internal Threat to Information System |
Author: | Li, Zheng1; Liu Kun(刘堃)2,3
|
Conference Name: | 5th International Conference on Harmony Search, Soft Computing and Applications, ICHSA 2019
|
Conference Date: | 2019-7-20 ~ 2019-7-22
|
Issued Date: | 2019-09-21
|
Conference Place: | Kunming, China
|
DOI: | 10.1007/978-3-030-31967-0_5
|
Keyword: | Internal threat
; Event detection
; Rule engine
; Complex event
|
Corresponding Author: | Liu, Kun
|
Related URLs: | 查看原文
|
Publisher: | Springer Nature Switzerland AG
|
Publish Place: | Cham, Switzerland
|
Indexed Type: | EI
|
ISSN: | 21945357
|
ISBN: | 9783030319663
|
English Abstract: |
Internal threat is an important issue for the information systems of an organization. To deal with this problem, organizations often formulate regulations and rules to regulate the behavior of employees and prevent them from causing production risks. However, how to effectively detect violations of the rules in the production process is challenging. In this paper, we propose an event based internal threat detection method. Firstly, we establish a detection model for regulation violation by representing rules and regulations as complex events and design a rule engine to detect if these complex events occur and discover the violations of rules. Then the logs generated during product are used for activating the rule reasoning. Finally, the rule violation will be reported to the supervisor for further investigation. The experiment on the real production processes shows the method is effective and efficient to detect internal threats and can be used at major production sites. |
Language: | 英语
|
Citation statistics: |
|
Content Type: | 会议论文
|
URI: | http://ir.iscas.ac.cn/handle/311060/19327
|
Appears in Collections: | 人机交互技术与智能信息处理实验室_会议论文
|
File Name/ File Size |
Content Type |
Version |
Access |
License |
|
10.1007@978-3-030-31967-5.pdf(165KB) | 会议论文 | -- | 限制开放 | | 联系获取全文 |
|
description.institution: | 1.School of Managerment, Hefei University of Technology, Hefei; 230009, China 2.University of Chinese Academy of Sciences, Beijing; 100049, China 3.Institute of Software, Chinese Academy of Sciences, Beijing; 100190, China
|
Recommended Citation: |
Li, Zheng,Liu, Kun. An Event Based Detection of Internal Threat to Information System[C]. 见:5th International Conference on Harmony Search, Soft Computing and Applications, ICHSA 2019. Kunming, China. 2019-7-20 ~ 2019-7-22.https://link.springer.com/chapter/10.1007/978-3-030-31967-0_5.
|
|
|