search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Insider Threat Attributes and Mitigation Strategies

Technical Note
By
In this report, George Silowash maps common attributes of insider threat cases to characteristics important for detecting, preventing, or mitigating the threat.
Publisher

Software Engineering Institute

CMU/SEI Report Number
CMU/SEI-2013-TN-018
DOI (Digital Object Identifier)
10.1184/R1/6574451.v1
Subjects

Abstract

Malicious insiders pose a threat to the confidentiality, integrity, and availability of an organization's information. Many organizations look for hardware and software solutions that address insider threats but are unsure of what characteristics to look for in a product. This technical note presents seven common attributes of insider threat cases, excluding espionage, drawn from the CERT® Division's database. The note maps the seven attributes to characteristics insider threat products should possess in order to detect, prevent, or mitigate the threat. None of these attributes alone can identify a malicious insider. Rather, each attribute is one of many data points that an organization should consider when implementing an insider threat program. 

SHARE
Download PDF
Cite This Technical Note

Silowash, G. (2013, July 1). Insider Threat Attributes and Mitigation Strategies. (Technical Note CMU/SEI-2013-TN-018). Retrieved April 19, 2024, from https://doi.org/10.1184/R1/6574451.v1.

@techreport{silowash_2013,
author={Silowash, George},
title={Insider Threat Attributes and Mitigation Strategies},
month={Jul},
year={2013},
number={CMU/SEI-2013-TN-018},
howpublished={Carnegie Mellon University, Software Engineering Institute's Digital Library},
url={https://doi.org/10.1184/R1/6574451.v1},
note={Accessed: 2024-Apr-19}
}

Silowash, George. "Insider Threat Attributes and Mitigation Strategies." (CMU/SEI-2013-TN-018). Carnegie Mellon University, Software Engineering Institute's Digital Library. Software Engineering Institute, July 1, 2013. https://doi.org/10.1184/R1/6574451.v1.

G. Silowash, "Insider Threat Attributes and Mitigation Strategies," Carnegie Mellon University, Software Engineering Institute's Digital Library. Software Engineering Institute, Technical Note CMU/SEI-2013-TN-018, 1-Jul-2013 [Online]. Available: https://doi.org/10.1184/R1/6574451.v1. [Accessed: 19-Apr-2024].

Silowash, George. "Insider Threat Attributes and Mitigation Strategies." (Technical Note CMU/SEI-2013-TN-018). Carnegie Mellon University, Software Engineering Institute's Digital Library, Software Engineering Institute, 1 Jul. 2013. https://doi.org/10.1184/R1/6574451.v1. Accessed 19 Apr. 2024.

Silowash, George. Insider Threat Attributes and Mitigation Strategies. CMU/SEI-2013-TN-018. Software Engineering Institute. 2013. https://doi.org/10.1184/R1/6574451.v1

Ask a question about this Technical Note