BIFROST: A STATISTICAL ANALYSIS FRAMEWORK FOR DETECTING INSIDER THREAT ACTIVITIES ON CYBER SYSTEMS
| dc.contributor.advisor | Shaffer, Alan B. | |
| dc.contributor.advisor | Singh, Gurminder | |
| dc.contributor.author | Findley, Scott E. | |
| dc.contributor.department | Computer Science (CS) | |
| dc.date.accessioned | 2019-08-08T23:50:15Z | |
| dc.date.available | 2019-08-08T23:50:15Z | |
| dc.date.issued | 2019-06 | |
| dc.description.abstract | The purpose of this research is to investigate, design and implement a statistical analysis-based insider threat detection product deployable to resource-disadvantaged systems and provide organizations with a method for baselining the network profiles and host activities unique to their operational environments. Our system design seeks to alert the system and its operators to invest greater monitoring resources against hosts who exhibit threat characteristics of insider activity and prevent such activities from inflicting harm on the system and/or causing an information-loss event for the organization. This system provides an initial starting point for future work, implementing one means of detecting insider threat activities; this implementation results in best- and worst-case detection rates of ~74% and ~68.2%, respectively, against our test data. We believe our framework provides a reasonable starting point for future work and improvement. | en_US |
| dc.description.distributionstatement | Approved for public release; distribution is unlimited. | |
| dc.description.service | Lieutenant, United States Navy | en_US |
| dc.description.uri | http://archive.org/details/bifrostastatisti1094562840 | |
| dc.identifier.thesisid | 31980 | |
| dc.identifier.uri | https://hdl.handle.net/10945/62840 | |
| dc.publisher | Monterey, CA; Naval Postgraduate School | en_US |
| dc.rights | This publication is a work of the U.S. Government as defined in Title 17, United States Code, Section 101. Copyright protection is not available for this work in the United States. | en_US |
| dc.subject.author | insider threat | en_US |
| dc.subject.author | baseline development | en_US |
| dc.subject.author | cyber-security | en_US |
| dc.subject.author | information security | en_US |
| dc.title | BIFROST: A STATISTICAL ANALYSIS FRAMEWORK FOR DETECTING INSIDER THREAT ACTIVITIES ON CYBER SYSTEMS | en_US |
| dc.type | Thesis | en_US |
| dspace.entity.type | Publication | |
| etd.thesisdegree.discipline | Computer Science | en_US |
| etd.thesisdegree.grantor | Naval Postgraduate School | en_US |
| etd.thesisdegree.level | Masters | en_US |
| etd.thesisdegree.name | Master of Science in Computer Science | en_US |
Files
Original bundle
1 - 1 of 1