Research Area: Machine Learning
Due to the subtle nature of the insider threat, government bodies and corporate organizations are forced to face the insider threat that is both malicious and accidental. In this paper, we provide a systematic understanding of the past literature that addresses the issues with insider threat detection. Our review consists of three items. First, we examine the different types of insider threats based on insider characteristics and insider activities. Second, we explore the sensors which make possible detecting insider threats in an automated way, and the public datasets available for research. Finally, the detection approaches used in related studies are examined from the perspective of technology, learning, input category, detection target, and interpretability. In particular, we have covered the state-of-the-art deep learning literature that was not covered in previous surveys.
Keywords:
Author(s) Name: Aram Kim, Junhyoung Oh, Ji-Woong Ryu, J. Lee, Kook-huei Kwon, Kyungho Lee
Journal name: Journal of Wireless Mobile Networks, Ubiquitous Computing, and Dependable Applications
Conferrence name:
Publisher name: semanticscholar
DOI: DOI:10.22667/JOWUA.2019.12.31.046
Volume Information:
