Computer Engineering and Applications ›› 2010, Vol. 46 ›› Issue (32): 74-77.DOI: 10.3778/j.issn.1002-8331.2010.32.020

• 网络、通信、安全 • Previous Articles     Next Articles

Monitoring solution aiming at inside users’ behavior

LIN Ji-yan,WU Zhen-qiang,GU Dan-dan   

  1. School of Computer Science,Shaanxi Normal University,Xi’an 710062,China
  • Received:2009-07-21 Revised:2009-11-10 Online:2010-11-11 Published:2010-11-11
  • Contact: LIN Ji-yan

内部用户行为监管方案

林基艳,吴振强,顾丹丹   

  1. 陕西师范大学 计算机科学学院,西安 710062

  • 通讯作者: 林基艳

Abstract: In information security field,insider threat has been recognized as a greatly serious issue.Therefore,the monitor aiming at users who have been the legal inside users must be carried out in order to avoid open authorization and insider attack.In this paper,a dynamic users’ intention-based access model is brought forward which rests on the intention that the users submit to control and monitor the inside users’ behavior.Besides Analytic Hierarchy Process(AHP) is used to evaluate the users’ behavior based on the evidence of the monitoring and control the inside users’ behavior according to the evaluation.In the end,simulation has been taken to prove that the solution can improve the accuracy and overcome the disadvantage that analysis can’t be done to the insider users.

Key words: insider threat, behavior monitoring, dynamic intention-based access control, Analytic Hierarchy Process(AHP)

摘要: 信息安全领域,内部威胁已被认为是一个非常严重的安全问题。因此要建立可信的操作系统环境,必须对登录的内部合法用户的行为进行监管,防止内部威胁的发生。提出了基于用户意图的动态访问控制模型,即依据用户提交的访问意图对内部用户进行访问控制和行为监控,并利用层次分析法AHP对监控得到的用户行为证据进行定量分析评估,然后根据评估结果对内部用户行为进行控制;最后利用Matlab对监管方案进行仿真,实验结果表明该方案可以有效地提高感知内部威胁行为的准确率,克服了难以对内部用户行为进行定量分析的缺点。

关键词: 内部威胁, 行为监管, 基于用户意图的动态访问控制, 层次分析法

CLC Number: