PAUP: a pre-awareness insider threat detection method based on user psychoanalysis

Weiyu Kong; Xiaoyong Li; Kaiguo Yuan; Yiyang Song

doi:10.1117/12.3033591

16 October 2024 PAUP: a pre-awareness insider threat detection method based on user psychoanalysis

Weiyu Kong, Xiaoyong Li, Kaiguo Yuan, Yiyang Song

Proceedings Volume 13291, Ninth International Symposium on Advances in Electrical, Electronics, and Computer Engineering (ISAEECE 2024); 132914P (2024) https://doi.org/10.1117/12.3033591
Event: Ninth International Symposium on Advances in Electrical, Electronics, and Computer Engineering (ISAEECE 2024), 2024, Changchun, China

Abstract

Internal personnel within an organization often have privileged access to critical systems and sensitive information. They are familiar with the internal network structure, business processes, and security measures, which can lead to insider threats that are more insidious, long-term, destructive and diverse, posing a serious threat to enterprises and organizations. However, existing models for detecting insider threats primarily focus on modeling user behavior information but seldom take into account the valuable information from the psychological personality of insider personnel for threat detection. To address this limitation and better analyze the impact of user attributes on insider threats, a new direction for insider threat user analysis is proposed. This involves analyzing and visualizing the relationship between users' personalities and the execution of insider threat behaviors, using data analysis. Additionally, a decision tree model is constructed to realize insider threat detection based on user psychology, using feature_importance, a relative importance metric of features generated in the decision tree decision-making process, to judge the importance of different personality traits for insider threat detection. To further enhance the detection process, an insider threat user clustering method based on Fuzzy C-Means clustering is realized, and the groups are divided according to the user's psychological assessment scores to realize the early perceived localization of risky users. These approaches provide new ideas for finding new research directions in the field of insider threat.

(2024) Published by SPIE. Downloading of the abstract is permitted for personal use only.

Citation Download Citation

Weiyu Kong, Xiaoyong Li, Kaiguo Yuan, and Yiyang Song "PAUP: a pre-awareness insider threat detection method based on user psychoanalysis", Proc. SPIE 13291, Ninth International Symposium on Advances in Electrical, Electronics, and Computer Engineering (ISAEECE 2024), 132914P (16 October 2024); https://doi.org/10.1117/12.3033591

ACCESS THE FULL ARTICLE

INSTITUTIONAL
Select your institution to access the SPIE Digital Library.

SELECT YOUR INSTITUTION

PERSONAL
Sign in with your SPIE account to access your personal subscriptions or to use specific features such as save to my library, sign up for alerts, save searches, etc.

PERSONAL SIGN IN

No SPIE Account? Create one

PURCHASE THIS CONTENT

SUBSCRIBE TO DIGITAL LIBRARY

50 downloads per 1-year subscription

Members: $195

Non-members: $335 ADD TO CART

25 downloads per 1 - year subscription

Members: $145

Non-members: $250 ADD TO CART

PURCHASE SINGLE ARTICLE

Includes PDF, HTML & Video, when available

Members: $17.00

Non-members: $21.00 ADD TO CART

PROCEEDINGS
6 PAGES

DOWNLOAD PAPER SAVE TO MY LIBRARY

GET CITATION

RIGHTS & PERMISSIONS

Get copyright permission Get copyright permission on Copyright Marketplace

KEYWORDS

Data analysis

Decision trees

Psychology

Fuzzy logic

Matrices

Modeling

Data modeling

Show All Keywords

Keywords/Phrases

Search In:

Publication Years