Title :
Insider Threat Identification System Model Based on Rough Set Dimensionality Reduction
Author :
Zhang, Tao ; Zhao, Peng
Author_Institution :
First Aeronaut. Coll. Of Air Force, Xidian Univ., Xinyang, China
Abstract :
Insider threat makes great damage to the security of information system, traditional security methods are extremely difficult to work. Insider attack identification plays an important role in insider threat detection. Monitoring user´s abnormal behavior is an effective method to detect impersonation, this method is applied to insider threat identification, to built user´s behavior attribute information database based on weights changeable feedback tree augmented Bayes network, but data is massive, using the dimensionality reduction based on rough set, to establish the process information model of user´s behavior attribute. Using the minimum risk Bayes decision can effectively identify the real identity of the user when user´s behavior departs from the characteristic model.
Keywords :
Bayes methods; information systems; rough set theory; security of data; trees (mathematics); Bayes network; attribute information database; feedback tree; impersonation detection; information system security; insider threat detection; insider threat identification system model; minimum risk Bayes decision; rough set dimensionality reduction; user behavior; Accuracy; Classification algorithms; Information systems; Probability; Security; Set theory; Training; demensionality reduction; identification; insider threat; rough set;
Conference_Titel :
Software Engineering (WCSE), 2010 Second World Congress on
Conference_Location :
Wuhan
Print_ISBN :
978-1-4244-9287-9
DOI :
10.1109/WCSE.2010.106
