Litcius/Paper detail

Insider threat mitigation: Systematic literature review

Usman Inayat, Mashaim Farzan, Sajid Mahmood, Muhammad Fahad Zia, Shahid Hussain, Fabiano Pallonetto

2024Ain Shams Engineering Journal36 citationsDOIOpen Access PDF

Abstract

The increasing prevalence of cybercrime necessitates the implementation of robust security measures. The majority of these attacks are initiated by authorized users who possess knowledge of the system vulnerabilities. Thus, insider attack prevention (ITP) strategies need to be explored to ensure the security of organizations. This review comprehensively examines the existing literature on ITP methods, focusing on recent developments and their implementation in various corporations. This review categorizes and classifies different types of insider attacks and their corresponding prevention and detection techniques. This paper also introduces a multi-tiered activity monitoring model that integrates network, system, and physical security measures to provide comprehensive defense against insider threats. This review also provides a detailed taxonomy that classifies insider threats based on insider type, access level, and targeted security objectives. Finally, future directions for ITP are explored, highlighting the open issues and challenges that need to be addressed.

Topics & Concepts

InsiderInsider threatSystematic reviewBusinessPolitical scienceEnvironmental planningComputer securityEngineering ethicsEngineeringComputer scienceEnvironmental scienceLawMEDLINEInformation and Cyber SecurityAdvanced Malware Detection TechniquesNetwork Security and Intrusion Detection
Insider threat mitigation: Systematic literature review | Litcius