Skip to content

System dynamics approach to malicious insider cyber-threat modelling and analysis

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Original languageEnglish
Title of host publicationHuman Aspects of Information Security, Privacy and Trust - 5th International Conference, HAS 2017 Held as Part of HCI International 2017, Proceedings
Publisher or commissioning bodySpringer-Verlag Berlin
Pages309-321
Number of pages13
Volume10292 LNCS
ISBN (Print)9783319584591
DOIs
DatePublished - 2017
Event5th International Conference on Human Aspects of Information Security, Privacy and Trust, HAS 2017, held as part of 19th International Conference on Human-Computer Interaction, HCI 2017 - Vancouver, Canada
Duration: 9 Jul 201714 Jul 2017

Publication series

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume10292 LNCS
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349

Conference

Conference5th International Conference on Human Aspects of Information Security, Privacy and Trust, HAS 2017, held as part of 19th International Conference on Human-Computer Interaction, HCI 2017
CountryCanada
CityVancouver
Period9/07/1714/07/17

Abstract

Enforcing cybersecurity controls against malicious insiders touches upon complex issues like people, process and technology. In large and complex systems, addressing the problem of insider cyber threat involves diverse solutions like compliance, technical and procedural controls. This work applies system dynamics modelling to understand the interrelationships between three distinct indicators of a malicious insider, in order to determine the possibility of a security breach through developing trends and patterns. It combines observable behaviour of actors based on the well-established theory of planned behaviour; technical footprints from incident log information and social network profiling of personality traits, based on the ‘big five’ personality model. Finally, it demonstrates how system dynamics as a risk modelling approach can flag early signs of malicious insider threats by aggregating associative properties of different risk elements. Our initial findings suggest that key challenges to combating insider threats are uncertainty, irregular intervals between malicious activities and exclusion of different personality factors in the design of cyber-security protocols. Based on these insights we propose how this knowledge may help with mitigation controls in a secure environment.

    Research areas

  • Cyber security, Cyber-risk behavior, Malicious insider, Personality profiling, Risk modelling, System dynamics

Event

5th International Conference on Human Aspects of Information Security, Privacy and Trust, HAS 2017, held as part of 19th International Conference on Human-Computer Interaction, HCI 2017

Duration9 Jul 201714 Jul 2017
CityVancouver
CountryCanada

Event: Conference

Documents

View research connections

Related faculties, schools or groups