Dr Naghmeh Moradpoor Sheykhkanloo N.Moradpoor@napier.ac.uk
Lecturer
Insider threat detection using principal component analysis and self-organising map
Moradpoor, Naghmeh; Brown, Martyn; Russell, Gordon
Authors
Martyn Brown
Dr Gordon Russell G.Russell@napier.ac.uk
Associate Professor
Abstract
An insider threat can take on many aspects. Some employees abuse their positions of trust by disrupting normal operations, while others export valuable or confidential data which can damage the employer's marketing position and reputation. In addition, some just lose their credentials which are then abused in their name. In this paper, we use Principal Component Analysis (PCA) in conjunction with Self-Organising Map (SOM) for insider threat detection within an organisation. The results show that using PCA before SOM increases the clustering accuracy. CCS CONCEPTS • Security and privacy → Intrusion/anomaly detection and malware mitigation → Intrusion detection systems
| Presentation Conference Type | Conference Paper (Published) |
|---|---|
| Conference Name | Proceedings of the 10th International Conference on Security of Information and Networks - SIN '17 |
| Start Date | Oct 13, 2017 |
| End Date | Oct 15, 2017 |
| Acceptance Date | Aug 21, 2017 |
| Online Publication Date | Oct 13, 2017 |
| Publication Date | Oct 13, 2017 |
| Deposit Date | Sep 3, 2017 |
| Publicly Available Date | Dec 14, 2017 |
| Publisher | Association for Computing Machinery (ACM) |
| Book Title | 10th International Conference on Security of Information and Networks (SIN 2017) |
| ISBN | 9781450353038 |
| DOI | https://doi.org/10.1145/3136825.3136859 |
| Keywords | Insider Threat; Unsupervised Machine Learning; Self-Organising Map; Principal Component Analysis |
| Public URL | http://researchrepository.napier.ac.uk/Output/982950 |
Files
Insider Threat Detection Using Principal Component Analysis and Self-Organising Map
(496 Kb)
PDF
Copyright Statement
© Naghmeh Moradpoor | ACM 2017. This is the author's version of the work. It is posted here for your personal use. Not for redistribution. The definitive Version of Record was published in Proceedings of 10th International Conference on Security of Information and Networks (SIN 2017), ISBN 978-1-4503-5303-8/17/10 http://dx.doi.org/10.1145/3136825.3136859
You might also like
Detection of Ransomware
(2024)
Patent
Enhancing Mac OS Malware Detection through Machine Learning and Mach-O File Analysis
(2024)
Presentation / Conference Contribution
An Auditable Framework for Evidence Sharing and Management using Smart Lockers and Distributed Technologies: Law Enforcement Use Case
(2024)
Presentation / Conference Contribution
Real-time anomaly intrusion detection for a clean water supply system, utilising machine learning with novel energy-based features
(2020)
Presentation / Conference Contribution
Downloadable Citations
About Edinburgh Napier Research Repository
Administrator e-mail: repository@napier.ac.uk
This application uses the following open-source libraries:
SheetJS Community Edition
Apache License Version 2.0 (http://www.apache.org/licenses/)
PDF.js
Apache License Version 2.0 (http://www.apache.org/licenses/)
Font Awesome
SIL OFL 1.1 (http://scripts.sil.org/OFL)
MIT License (http://opensource.org/licenses/mit-license.html)
CC BY 3.0 ( http://creativecommons.org/licenses/by/3.0/)
Powered by Worktribe © 2024
Advanced Search