2012 IEEE Symposium on Security and Privacy Workshops (2013)
San Francisco, CA, USA USA
May 23, 2013 to May 24, 2013
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/SPW.2013.35
This paper introduces a Bayesian network model for the motivation and psychology of the malicious insider. First, an initial model was developed based on results in the research literature, highlighting critical variables for the prediction of degree of interest in a potentially malicious insider. Second, a survey was conducted to measure these predictive variables in a common sample of normal participants. Third, a structural equation model was constructed based on the original model, updated based on a split-half sample of the empirical survey data and validated against the other half of the dataset. Fourth, the Bayesian network was adjusted in light of the results of the empirical analysis. Fifth, the updated model was used to develop an upper bound on the quality of model predictions of its own simulated data. When empirical data regarding psychological predictors were input to the model, predictions of counterproductive behavior approached the upper bound of model predictiveness.
Insider Threat Detection; Psychological Profiling; Bayesian Network Model
Elise T. Axelrad, Paul J. Sticha, Oliver Brdiczka, Jianqiang Shen, "A Bayesian Network Model for Predicting Insider Threats", 2012 IEEE Symposium on Security and Privacy Workshops, vol. 00, no. , pp. 82-89, 2013, doi:10.1109/SPW.2013.35