SOFIT: Sociotechnical and Organizational Factors for Insider Threat
Human behavioral factors have been insufficiently represented in structured models (e.g., ontology frameworks) of insider threat risk. This paper describes the design and development of a structured model that emphasizes individual and organizational sociotechnical factors while incorporating technical indicators from previous work. We compare this model with previous research and describe a use case to demonstrate how the model can be applied as an ontology. We also summarize results of an expert knowledge elicitation study to reveal relationships among indicators and to examine several quantitative models for assessing threat of cases comprising multiple indicators.
Code
未发现
Tasks
model comparison, use case demonstration, threat assessment
Datasets
未发现
Problems
insufficient representation of human behavioral factors in insider threat risk models
Methods
structured model design, expert knowledge elicitation, quantitative models assessment
Results from the Paper
demonstration of model application as ontology, revealed relationships among indicators, examination of quantitative models