Beta 1

Title Static Analysis of the Insider Problem
Author Gunnarsson, Dagur
Supervisor Probst, Christian (Computer Science and Engineering, Informatics and Mathematical Modelling, Technical University of Denmark, DTU, DK-2800 Kgs. Lyngby, Denmark)
Institution Technical University of Denmark, DTU, DK-2800 Kgs. Lyngby, Denmark
Thesis level Master's thesis
Year 2007
Abstract Every organization or company relies on data in one form or another both digital data and physical data. One of the main challenges companies and organizations face is securing data and other valuable assets. For some organizations security is more important than others, e.g., a banks most valuable asset is its data, transactions and other financial data. Defining security policies is a major task, enforcing security policies an even bigger one. Security policies should be defined to protect data from malicious attackers from the outside world as well as from people that have inside knowledge of the inner workings of the organization. Methods have been developed to secure the IT-infrastructure from the outside world, but there is not much focus on securing data from the inside. In this thesis we address the problem of analyzing insider threats or the insider problem by using static program analysis methods. We develop a framework for specifying real-world systems and develop methods for finding insider threats in these systems.
Series IMM-Thesis-2007-14
Original PDF imm5165.pdf (1.05 MB)
Admin Creation date: 2007-06-11    Update date: 2007-09-26    Source: dtu    ID: 200696    Original MXD