Monitoring solution aiming at inside users’ behavior

doi:10.3778/j.issn.1002-8331.2010.32.020

Computer Engineering and Applications ›› 2010, Vol. 46 ›› Issue (32): 74-77.DOI: 10.3778/j.issn.1002-8331.2010.32.020

• 网络、通信、安全 • Previous Articles Next Articles

Monitoring solution aiming at inside users’ behavior

LIN Ji-yan，WU Zhen-qiang，GU Dan-dan

School of Computer Science，Shaanxi Normal University，Xi’an 710062，China

Received:2009-07-21 Revised:2009-11-10 Online:2010-11-11 Published:2010-11-11
Contact: LIN Ji-yan

内部用户行为监管方案

林基艳，吴振强，顾丹丹

陕西师范大学计算机科学学院，西安 710062

通讯作者: 林基艳

Abstract

Abstract: In information security field，insider threat has been recognized as a greatly serious issue.Therefore，the monitor aiming at users who have been the legal inside users must be carried out in order to avoid open authorization and insider attack.In this paper，a dynamic users’ intention-based access model is brought forward which rests on the intention that the users submit to control and monitor the inside users’ behavior.Besides Analytic Hierarchy Process（AHP） is used to evaluate the users’ behavior based on the evidence of the monitoring and control the inside users’ behavior according to the evaluation.In the end，simulation has been taken to prove that the solution can improve the accuracy and overcome the disadvantage that analysis can’t be done to the insider users.

Key words: insider threat, behavior monitoring, dynamic intention-based access control, Analytic Hierarchy Process（AHP）

摘要： 信息安全领域，内部威胁已被认为是一个非常严重的安全问题。因此要建立可信的操作系统环境，必须对登录的内部合法用户的行为进行监管，防止内部威胁的发生。提出了基于用户意图的动态访问控制模型，即依据用户提交的访问意图对内部用户进行访问控制和行为监控，并利用层次分析法AHP对监控得到的用户行为证据进行定量分析评估，然后根据评估结果对内部用户行为进行控制；最后利用Matlab对监管方案进行仿真，实验结果表明该方案可以有效地提高感知内部威胁行为的准确率，克服了难以对内部用户行为进行定量分析的缺点。

关键词: 内部威胁, 行为监管, 基于用户意图的动态访问控制, 层次分析法

CLC Number:

TP309

LIN Ji-yan，WU Zhen-qiang，GU Dan-dan. Monitoring solution aiming at inside users’ behavior[J]. Computer Engineering and Applications, 2010, 46(32): 74-77.

林基艳，吴振强，顾丹丹. 内部用户行为监管方案[J]. 计算机工程与应用, 2010, 46(32): 74-77.

[1]	TIAN Qihua1, HUANG Chao1, YU Haidong2, DU Yixian1, ZHOU Xiangman1. Approach for determining weight of resource allocation in coupled task set based on AHP [J]. Computer Engineering and Applications, 2018, 54(21): 25-30.
[2]	XU Qinglin1, XIONG Mengqi1, LIU Yangfan2. Passenger subdivision model based on behaviors of airline passengers [J]. Computer Engineering and Applications, 2017, 53(24): 69-74.
[3]	ZHANG Jiachen, LIU Hao. Quantitative evaluation model for mobile video quality of experience [J]. Computer Engineering and Applications, 2017, 53(12): 133-139.
[4]	LIU Di1，2, ZHU Ligu1，2, ZHANG Lei1，2, FENG Dongyu1，2. Research of load-balancing model based on SSAWF mechanism [J]. Computer Engineering and Applications, 2017, 53(10): 90-95.
[5]	LUO Mei1, JIANG Jianhong2. Research of AHP evaluation method based on heuristic algorithm [J]. Computer Engineering and Applications, 2016, 52(22): 64-67.
[6]	WANG Shuyan, ZHANG Xinggen, SUN Jiaze. Research on evaluation model of mobile phones for elderly usability based on cloud model [J]. Computer Engineering and Applications, 2016, 52(19): 245-251.
[7]	ZHANG Jiandong, YANG Jin, LIU Caiming, LI Bin. Improved AHP algorithm applied in load balancing of Web clustered system [J]. Computer Engineering and Applications, 2015, 51(7): 93-97.
[8]	CHEN Dejun1, GAO Xiaojun1, WANG Yifei2. Load balancing study in cloud storage based on AHP [J]. Computer Engineering and Applications, 2015, 51(7): 56-60.
[9]	TAN Zhengmin1, PENG Qiyuan1, CHEN Si2, GAN Mi1. Multi-objective optimization model of loading reinforcement plan of railway long heavy goods [J]. Computer Engineering and Applications, 2015, 51(19): 24-27.
[10]	TAN Qian1, JIANG Yi1, LIN Fan2. Load prediction of Swift cloud storage based on AHP-RBF [J]. Computer Engineering and Applications, 2014, 50(8): 35-39.
[11]	DU Yuanwei, HAN Chen. Improved DS/AHP method based on three-point internal number [J]. Computer Engineering and Applications, 2014, 50(3): 211-214.
[12]	HUANG Lu, DUAN Zhongxing. Research of fuzzy comprehensive evaluation method for urban metro station luminous environment [J]. Computer Engineering and Applications, 2014, 50(16): 221-225.
[13]	GAO Jing, YU Junqi. Research on sustainability assessment of large-scale public building based on AHP-Fuzzy [J]. Computer Engineering and Applications, 2014, 50(13): 252-256.
[14]	YAN Lijun1，2, WU Caipeng1, SUN Yujie1, ZHANG Xiaofang1, SHEN Qingming1, 2. Group based product scheme evaluation model based on fuzzy AHP and evidential reasoning theory [J]. Computer Engineering and Applications, 2013, 49(18): 232-236.
[15]	DU Miao. Transformation from AHP to FAHP and their applications [J]. Computer Engineering and Applications, 2012, 48(9): 114-119.

Monitoring solution aiming at inside users’ behavior

内部用户行为监管方案

PDF

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 15

Recommended Articles

Metrics