• DocumentCode
    622756
  • Title

    Differentiating User Authentication Graphs

  • Author

    Kent, Alexander D. ; Liebrock, Lorie M.

  • fYear
    2013
  • fDate
    23-24 May 2013
  • Firstpage
    72
  • Lastpage
    75
  • Abstract
    Authentication using centralized methods is a primary trust mechanism within most large-scale, enterprise computer networks. This paper proposes using graphs to represent user authentication activity within the network. Using this mechanism over a real enterprise network dataset, we find that non-privileged users and users with system administration privileges have distinguishable graph attributes in terms of size and complexity. In addition, we find that user authentication graphs provide intuitive insights into network user behavior. We believe that understanding these differences in even greater detail will lead to improved user behavior profiling and the elusive detection of authentication credential misuse.
  • Keywords
    authorisation; business communication; computer network security; graph theory; trusted computing; authentication credential misuse detection; centralized methods; enterprise computer networks; graph attributes; large-scale computer networks; network user behavior; nonprivileged users; real enterprise network dataset; system administration privileged users; trust mechanism; user authentication activity; user authentication graph differentiation; Authentication; Computers; Operating systems; Servers; Sociology; Statistics;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Security and Privacy Workshops (SPW), 2013 IEEE
  • Conference_Location
    San Francisco, CA
  • Print_ISBN
    978-1-4799-0458-7
  • Type

    conf

  • DOI
    10.1109/SPW.2013.38
  • Filename
    6565232
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=622756