{"title":"考虑隐私侵犯的内部信息泄露检测系统设计","authors":"Jinhyung Kim, Hyung-Jong Kim","doi":"10.1109/ICTC.2010.5674800","DOIUrl":null,"url":null,"abstract":"Nowadays, companies are monitoring their employee's behavior using the DLP (Data Loss Prevention) solution to protect their information assets from internal attackers. During the monitoring the behaviors of employees, it is inevitable disclosing the private information to recognize the violation of internal regulation about handling of companies critical information. Actually there is trade-off relationship between privacy protection and data loss protection in company's information management. The trade-off relationship implies that there may be privacy violation if we are trying to prevent the internal information leakage strictly. In this paper, we are suggesting a data loss prevention method considering the privacy violation level. Especially, we are considering a method of quantifying the degree of privacy violation based on the data units which are exposed when the employee's data handling is monitored. At the same time, we are suggesting a method of quantifying the degree of importance of data units which are monitored.","PeriodicalId":149198,"journal":{"name":"2010 International Conference on Information and Communication Technology Convergence (ICTC)","volume":"32 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2010-12-23","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"13","resultStr":"{\"title\":\"Design of internal information leakage detection system considering the privacy violation\",\"authors\":\"Jinhyung Kim, Hyung-Jong Kim\",\"doi\":\"10.1109/ICTC.2010.5674800\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Nowadays, companies are monitoring their employee's behavior using the DLP (Data Loss Prevention) solution to protect their information assets from internal attackers. During the monitoring the behaviors of employees, it is inevitable disclosing the private information to recognize the violation of internal regulation about handling of companies critical information. Actually there is trade-off relationship between privacy protection and data loss protection in company's information management. The trade-off relationship implies that there may be privacy violation if we are trying to prevent the internal information leakage strictly. In this paper, we are suggesting a data loss prevention method considering the privacy violation level. Especially, we are considering a method of quantifying the degree of privacy violation based on the data units which are exposed when the employee's data handling is monitored. At the same time, we are suggesting a method of quantifying the degree of importance of data units which are monitored.\",\"PeriodicalId\":149198,\"journal\":{\"name\":\"2010 International Conference on Information and Communication Technology Convergence (ICTC)\",\"volume\":\"32 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2010-12-23\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"13\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2010 International Conference on Information and Communication Technology Convergence (ICTC)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICTC.2010.5674800\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2010 International Conference on Information and Communication Technology Convergence (ICTC)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICTC.2010.5674800","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Design of internal information leakage detection system considering the privacy violation
Nowadays, companies are monitoring their employee's behavior using the DLP (Data Loss Prevention) solution to protect their information assets from internal attackers. During the monitoring the behaviors of employees, it is inevitable disclosing the private information to recognize the violation of internal regulation about handling of companies critical information. Actually there is trade-off relationship between privacy protection and data loss protection in company's information management. The trade-off relationship implies that there may be privacy violation if we are trying to prevent the internal information leakage strictly. In this paper, we are suggesting a data loss prevention method considering the privacy violation level. Especially, we are considering a method of quantifying the degree of privacy violation based on the data units which are exposed when the employee's data handling is monitored. At the same time, we are suggesting a method of quantifying the degree of importance of data units which are monitored.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
