Martin Graham
Developing Visualisations to Enhance an Insider Threat Product: A Case Study
Graham, Martin; Kukla, Robert; Mandrychenko, Oleksii; Hart, Darren; Kennedy, Jessie
Authors
Dr Robert Kukla R.Kukla@napier.ac.uk
Senior Research Fellow
Oleksii Mandrychenko
Darren Hart
Prof Jessie Kennedy J.Kennedy@napier.ac.uk
Emeritus Professor
Abstract
This paper describes the process of developing data visualisations to enhance a commercial software platform for combating insider threat, whose existing UI, while perfectly functional, was limited in its ability to allow analysts to easily spot the patterns and outliers that visualisation naturally reveals. We describe the design and development process, proceeding from initial tasks/requirements gathering, understanding the platform's data formats, the rationale behind the visualisations' design, and then refining the prototype through gathering feedback from representative domain experts who are also current users of the software. Through a number of example scenarios, we show that the visualisation can support the identified tasks and aid analysts in discovering and understanding potentially risky insider activity within a large user base.
Citation
Graham, M., Kukla, R., Mandrychenko, O., Hart, D., & Kennedy, J. (2021, October). Developing Visualisations to Enhance an Insider Threat Product: A Case Study. Presented at 2021 IEEE Symposium on Visualization for Cyber Security (VizSec), New Orleans, USA
| Presentation Conference Type | Conference Paper (published) |
|---|---|
| Conference Name | 2021 IEEE Symposium on Visualization for Cyber Security (VizSec) |
| Start Date | Oct 24, 2021 |
| End Date | Oct 28, 2021 |
| Acceptance Date | Jul 28, 2021 |
| Online Publication Date | Dec 7, 2021 |
| Publication Date | 2021 |
| Deposit Date | Aug 18, 2021 |
| Publicly Available Date | Dec 7, 2021 |
| Publisher | Institute of Electrical and Electronics Engineers |
| Pages | 47-57 |
| Series ISSN | 2639-4332 |
| Book Title | 2021 IEEE Symposium on Visualization for Cyber Security (VizSec) |
| DOI | https://doi.org/10.1109/VizSec53666.2021.00011 |
| Keywords | insider threat, cybersecurity, visualisation |
| Public URL | http://researchrepository.napier.ac.uk/Output/2794188 |
Files
Developing Visualisations To Enhance An Insider Threat Product: A Case Study (accepted version)
(890 Kb)
PDF
You might also like
Improving access to transportation documents: the roles of repositories, thesauri, metadata and automated keyword generation.
(2008)
Presentation / Conference Contribution
A new data, document and geospatial repository: knowledge base and project support for a major international railway project.
(2008)
Presentation / Conference Contribution
The ReOrient knowledge base.
(2007)
Other
RKB: A Knowledge base to support research documentation, data, GIS, spatial data and communications for a major rail freight project.
(2007)
Presentation / Conference Contribution
Downloadable Citations
About Edinburgh Napier Research Repository
Administrator e-mail: repository@napier.ac.uk
This application uses the following open-source libraries:
SheetJS Community Edition
Apache License Version 2.0 (http://www.apache.org/licenses/)
PDF.js
Apache License Version 2.0 (http://www.apache.org/licenses/)
Font Awesome
SIL OFL 1.1 (http://scripts.sil.org/OFL)
MIT License (http://opensource.org/licenses/mit-license.html)
CC BY 3.0 ( http://creativecommons.org/licenses/by/3.0/)
Powered by Worktribe © 2025
Advanced Search