内幕

Q3 Agricultural and Biological Sciences

American Entomologist Pub Date : 2022-03-01 DOI:10.1093/ae/tmac013

Z. Szendrei

{"title":"内幕","authors":"Z. Szendrei","doi":"10.1093/ae/tmac013","DOIUrl":null,"url":null,"abstract":"Many groups are interested in the insider threat problem, but the model generally used by all of these groups is implicitly binary—one is either within a perimeter or not. There is another model, however, that employs a graduated approach to deﬁning insiders. This approach gives greater ﬂexibility for con-sidering many threats that are not traditionally captured by a model, such as the impact of social engineering attacks. This new deﬁnition enables more accurate and useful security policies to be implemented so that well-deﬁned insiders can be deterred, detected, and analyzed. We examine the ﬂexibility of this model in this paper through case studies, show-ing how the model captures both traditional insiders and social engineering attacks.","PeriodicalId":7426,"journal":{"name":"American Entomologist","volume":null,"pages":null},"PeriodicalIF":0.0000,"publicationDate":"2022-03-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Insider\",\"authors\":\"Z. Szendrei\",\"doi\":\"10.1093/ae/tmac013\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Many groups are interested in the insider threat problem, but the model generally used by all of these groups is implicitly binary—one is either within a perimeter or not. There is another model, however, that employs a graduated approach to deﬁning insiders. This approach gives greater ﬂexibility for con-sidering many threats that are not traditionally captured by a model, such as the impact of social engineering attacks. This new deﬁnition enables more accurate and useful security policies to be implemented so that well-deﬁned insiders can be deterred, detected, and analyzed. We examine the ﬂexibility of this model in this paper through case studies, show-ing how the model captures both traditional insiders and social engineering attacks.\",\"PeriodicalId\":7426,\"journal\":{\"name\":\"American Entomologist\",\"volume\":null,\"pages\":null},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2022-03-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"American Entomologist\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1093/ae/tmac013\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"Q3\",\"JCRName\":\"Agricultural and Biological Sciences\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"American Entomologist","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1093/ae/tmac013","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q3","JCRName":"Agricultural and Biological Sciences","Score":null,"Total":0}

引用次数: 0

摘要

许多团体都对内部威胁问题感兴趣，但所有这些团体通常使用的模型都是隐含的二元模型——一个团体要么在外围，要么不在外围。然而，还有另一种模式，采用分级的方法来界定内部人士。这种方法为考虑许多传统上模型无法捕捉到的威胁提供了更大的灵活性，例如社会工程攻击的影响。这一新定义使实施更准确、更有用的安全政策成为可能，从而可以阻止、检测和分析有明确定义的内部人员。在本文中，我们通过案例研究检验了该模型的灵活性，展示了该模型如何捕捉传统内部人和社会工程攻击。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Insider

Many groups are interested in the insider threat problem, but the model generally used by all of these groups is implicitly binary—one is either within a perimeter or not. There is another model, however, that employs a graduated approach to deﬁning insiders. This approach gives greater ﬂexibility for con-sidering many threats that are not traditionally captured by a model, such as the impact of social engineering attacks. This new deﬁnition enables more accurate and useful security policies to be implemented so that well-deﬁned insiders can be deterred, detected, and analyzed. We examine the ﬂexibility of this model in this paper through case studies, show-ing how the model captures both traditional insiders and social engineering attacks.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

American Entomologist Agricultural and Biological Sciences-Insect Science

CiteScore

0.50

自引率

0.00%

发文量

期刊介绍： American Entomologist shares relevant information and thought-provoking dialogue about the practice, value, and impact of insect science across a diverse entomological community. Since March 2001, issues that are two years old have been made freely available online in PDF format. All book reviews published since 2001 are also freely available online. American Entomologist''s precursor, Bulletin of the Entomological Society of America, published from 1955 to 1989. Bulletin content is available via the American Entomologist website.