Insider Threats Meet Access Control: Insider Threats Detected Using Intent-Based Access Control (IBAC) cover art

Insider Threats Meet Access Control: Insider Threats Detected Using Intent-Based Access Control (IBAC)

Preview

Try Premium Plus free
1 credit a month to buy any audiobook in our entire collection.
Access to thousands of additional audiobooks and Originals from the Plus Catalogue.
Member-only deals & discounts.
Auto-renews at $16.45/mo after 30 days. Cancel anytime.

Insider Threats Meet Access Control: Insider Threats Detected Using Intent-Based Access Control (IBAC)

By: Abdulaziz M Almehmadi PhD
Narrated by: Jonathan Frazier
Try Premium Plus free

$16.45 per month after 30 days. Cancel anytime.

Buy Now for $16.99

Buy Now for $16.99

Confirm Purchase
Pay using voucher balance (if applicable) then card ending in
By confirming your purchase, you agree to Audible's Conditions Of Use and Privacy Notice and authorise Audible to charge your designated credit card or another available credit card on file.
Cancel

About this listen

Existing access control mechanisms are based on the concepts of identity enrollment and recognition and assume that recognized identity is synonymous with ethical actions. However, statistics over the years show that the most severe security breaches have been the results of trusted, authorized, and identified users who turned into malicious insiders. Therefore, demand exists for designing prevention mechanisms. A non-identity-based authentication measure that is based on the intent of the access request might serve that demand.

In this book, we test the possibility of detecting intention of access using involuntary electroencephalogram (EEG) reactions to visual stimuli. This method takes advantage of the robustness of the Concealed Information Test to detect intentions. Next, we test the possibility of detecting motivation of access, as motivation level corresponds directly to the likelihood of intent execution level. Subsequently, we propose and design Intent-based Access Control (IBAC), a non-identity-based access control system that assesses the risk associated with the detected intentions and motivation levels.

We then study the potential of IBAC in denying access to authorized individuals who have malicious plans to commit maleficent acts. Based on the access risk and the accepted threshold established by the asset owners, the system decides whether to grant or deny access requests.We assessed the intent detection component of the IBAC system using experiments on 30 participants and achieved accuracy of 100 percent using Nearest Neighbor and SVM classifiers. Further, we assessed the motivation detection component of the IBAC system. Results show different levels of motivation between hesitation-based vs. motivation-based intentions. Finally, the potential of IBAC in preventing insider threats by calculating the risk of access using intentions and motivation levels as per the experiments shows access risk that is different between unmotivated and motivated groups.

©2016, 2018 Abdulaziz Almehmadi (P)2019 Abdulaziz Almehmadi
Computer Science Motivation Computer Security

What listeners say about Insider Threats Meet Access Control: Insider Threats Detected Using Intent-Based Access Control (IBAC)

Average Customer Ratings

Reviews - Please select the tabs below to change the source of reviews.

In the spirit of reconciliation, Audible acknowledges the Traditional Custodians of country throughout Australia and their connections to land, sea and community. We pay our respect to their elders past and present and extend that respect to all Aboriginal and Torres Strait Islander peoples today.