Z. Abidin, Z. Abas, N. A. Zakaria, N. A. Hashim, E. Mardaid, R. Ahmad, A. P. Puvanasvaran
{"title":"内部威胁检测风险评估概念模型","authors":"Z. Abidin, Z. Abas, N. A. Zakaria, N. A. Hashim, E. Mardaid, R. Ahmad, A. P. Puvanasvaran","doi":"10.1109/ICECIE47765.2019.8974723","DOIUrl":null,"url":null,"abstract":"This study proposes a conceptual model of risk assessment for insider threats detection in Cyber-Physical system (CPs). The objectives of this research are two folds: a) finding the gap of study and b) produce a conceptual model of risk assessment for insider threats. This study has been conducted since an increasing number of cyber-attacks cases reported in CPs. In fact, the attack occurs unintentionally or intentionally from inside and outside of the organization due to the growth of new devices, sensors and mobile phones that connected to the network. However, to charge that the attack is coming from inside is more difficult since lack of evidence and involved cyber laws. Therefore, to detect insider threats demand new approach for better decision making. Current methods used for detecting insider threats are OCTAVE, FRAP, CRAMM, NIST, Monte Carlo and Markov Chain. Based on our findings, Monte Carlo and Markov Chain is a simulation-based method and applicable for organizations in terms of effective cost and system maintenance. The impact of the new model brings a better solution for assessing insider threats in organizations.","PeriodicalId":154051,"journal":{"name":"2019 1st International Conference on Electrical, Control and Instrumentation Engineering (ICECIE)","volume":"4 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2019-11-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Conceptual Model of Risk Assessment for Insider Threats Detection\",\"authors\":\"Z. Abidin, Z. Abas, N. A. Zakaria, N. A. Hashim, E. Mardaid, R. Ahmad, A. P. Puvanasvaran\",\"doi\":\"10.1109/ICECIE47765.2019.8974723\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"This study proposes a conceptual model of risk assessment for insider threats detection in Cyber-Physical system (CPs). The objectives of this research are two folds: a) finding the gap of study and b) produce a conceptual model of risk assessment for insider threats. This study has been conducted since an increasing number of cyber-attacks cases reported in CPs. In fact, the attack occurs unintentionally or intentionally from inside and outside of the organization due to the growth of new devices, sensors and mobile phones that connected to the network. However, to charge that the attack is coming from inside is more difficult since lack of evidence and involved cyber laws. Therefore, to detect insider threats demand new approach for better decision making. Current methods used for detecting insider threats are OCTAVE, FRAP, CRAMM, NIST, Monte Carlo and Markov Chain. Based on our findings, Monte Carlo and Markov Chain is a simulation-based method and applicable for organizations in terms of effective cost and system maintenance. The impact of the new model brings a better solution for assessing insider threats in organizations.\",\"PeriodicalId\":154051,\"journal\":{\"name\":\"2019 1st International Conference on Electrical, Control and Instrumentation Engineering (ICECIE)\",\"volume\":\"4 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2019-11-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2019 1st International Conference on Electrical, Control and Instrumentation Engineering (ICECIE)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICECIE47765.2019.8974723\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2019 1st International Conference on Electrical, Control and Instrumentation Engineering (ICECIE)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICECIE47765.2019.8974723","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Conceptual Model of Risk Assessment for Insider Threats Detection
This study proposes a conceptual model of risk assessment for insider threats detection in Cyber-Physical system (CPs). The objectives of this research are two folds: a) finding the gap of study and b) produce a conceptual model of risk assessment for insider threats. This study has been conducted since an increasing number of cyber-attacks cases reported in CPs. In fact, the attack occurs unintentionally or intentionally from inside and outside of the organization due to the growth of new devices, sensors and mobile phones that connected to the network. However, to charge that the attack is coming from inside is more difficult since lack of evidence and involved cyber laws. Therefore, to detect insider threats demand new approach for better decision making. Current methods used for detecting insider threats are OCTAVE, FRAP, CRAMM, NIST, Monte Carlo and Markov Chain. Based on our findings, Monte Carlo and Markov Chain is a simulation-based method and applicable for organizations in terms of effective cost and system maintenance. The impact of the new model brings a better solution for assessing insider threats in organizations.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
