Enhancing directory virtualization to detect insider activity

Claycomb, William R.; Shin, Dongwan; Ahn, Gail-Joon

doi:10.1002/sec.362

Cited by 5 publications

(1 citation statement)

References 22 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Their proposed approach gathers cross‐domain identity information, removes unnecessary accounts, and filters account data and access rights in order to prevent insiders from obtaining unauthorized information. Claycomb et al , proposed a framework for directory virtualization in order to detect insider attacks against directory services.…”

Section: Background and Related Workmentioning

confidence: 99%

Mitigating insider threat in cloud relational databases

Yaseen

Althebyan

Panda

et al. 2016

Security Comm. Networks

View full text Add to dashboard Cite

Cloud security has become one of the emergent issues because of the immense growth of cloud services. A major concern in cloud security is the insider threat because of the harm that it poses. Therefore, defending cloud systems against insider attacks has become a key demand. This work deals with insider threat in cloud relational database systems. It reveals the flaws in cloud computing that insiders may use to launch attacks and discusses how load balancing across availability zones may increase insider threat. To mitigate this kind of threat, the paper proposes four models, which are peer‐to‐peer model, centralized model, Mobile‐Knowledgebases model, and Guided Mobile‐Knowledgebases model, and it discusses their advantages as well as their limitations. Moreover, the paper provides experiments and analysis that compare among the proposed models, demonstrate their effectiveness, and show the conditions under which they work with highest performance. Copyright © 2016 John Wiley & Sons, Ltd.

show abstract

Section: Background and Related Workmentioning

confidence: 99%