Malicious Insider Threat Types – An Empirical Analysis-Reference-Cited by-同舟云学术

Malicious Insider Threat Types – An Empirical Analysis

Published:2023-12-12 Issue: Volume: Page:
ISSN:
Container-title:36th Bled eConference – Digital Economy and Society: The Balancing Act for Digital Innovation in Times of Instability: June 25 – 28, 2023, Bled, Slovenia, Conference Proceedings
language:
Short-container-title:

Author:

Hofmeier Manfred,Haunschild Isabelle,Lechner Ulrike^ORCID

Abstract

Malicious insider threats represent a particular challenge not only for defense, but also for research, as it is estimated there is a high number of unreported cases. Current taxonomies and typologies usually focus on specific aspects, such as goal or motivation, and tend to have tight boundaries. A number of malicious insider threat attack scenarios were identified in our research through qualitative interviews, enhanced with a game-based creative approach. The resulting data was used to develop a malicious insider threat typology in an empirical bottom-up approach. We developed an analysis scheme from existing taxonomies and typologies and used it in an empirical analysis of malicious insider roles and attack scenarios. We were able to identify eleven archetypes of malicious insider threats considering multiple facettes. This paper describes the analysis and the identified types.

Publisher

University of Maribor Press

Reference20 articles.

1. Bundesamt für Sicherheit in der Informationstechnik (2018). Industrial Control System Security - Innentäter. https://www.bsi.bund.de/SharedDocs/Downloads/Webs/ACS/DE/BSI- CS/BSI- CS_061.html.

2. Bundeskriminalamt (2020). Monitoringbericht Innentäter in Unternehmen 2: Aktuelle inländische Forschungsbeiträge, wesentliche Ergebnisse und Handlungsempfehlungen. Technical Report.

3. Cappelli, D., Moore, A., Trzeciak, R. (2012). The CERT Guide to Insider Threats: How to Prevent, Detect, and Respond to Information Technology Crimes (Theft, Sabotage, Fraud). Addison Weseley.

4. Cole, E., Ring, S. (2005). Insider Threat: Protecting the Enterprise From Sabotage, Spying, and Theft. Syngress.

5. ENISA (2020). ENISA Threat Landscape 2020 - Insider Threat. Technical Report. ENISA.