Insider threat detection using supervised machine learning algorithms Insider threat detection using supervised machine learning algorithms

Insider threats refer to abnormal actions taken by individuals with privileged access, compromising system data’s confidentiality, integrity, and availability. They pose significant cybersecurity risks, leading to substantial losses for several organizations. Detecting insider threats is crucial due...

Celý popis

Uložené v:
Podrobná bibliografia
Vydané v:Telecommunication systems Ročník 87; číslo 4; s. 899 - 915
Hlavní autori: Manoharan, Phavithra, Yin, Jiao, Wang, Hua, Zhang, Yanchun, Ye, Wenjie
Médium: Journal Article
Jazyk:English
Vydavateľské údaje: New York Springer US 01.12.2024
Springer Nature B.V
Predmet:
Algorithms
Artificial Intelligence
Availability
Business and Management
Computer Communication Networks
Cybersecurity
Datasets
IT in Business
Machine learning
Original Paper
Performance evaluation
Probability Theory and Stochastic Processes
Supervised learning
Threat evaluation
Insider threat
Imbalanced dataset
Cybersecurity
Supervised learning
ISSN:1018-4864, 1572-9451
On-line prístup:Získať plný text
Tagy: Pridať tag
Žiadne tagy, Buďte prvý, kto otaguje tento záznam!
Popis
Shrnutí:Insider threats refer to abnormal actions taken by individuals with privileged access, compromising system data’s confidentiality, integrity, and availability. They pose significant cybersecurity risks, leading to substantial losses for several organizations. Detecting insider threats is crucial due to the imbalance in their datasets. Moreover, the performance of existing works has been evaluated on various datasets and problem settings, making it challenging to compare the effectiveness of different algorithms and offer recommendations to decision-makers. Furthermore, no existing work investigates the impact of changing hyperparameters. This paper aims to objectively assess the performance of various supervised machine learning algorithms for detecting insider threats under the same setting. We precisely evaluate the performance of various supervised machine learning algorithms on a balanced dataset using the same feature extraction method. Additionally, we explore the impact of hyperparameter tuning on performance within the balanced dataset. Finally, we investigate the performance of different algorithms in the context of imbalanced datasets under various conditions. We conduct all the experiments in the publicly available CERT r4.2 dataset. The results show that supervised learning with a balanced dataset in RF obtains the best accuracy and F1-score of 95.9% compared with existing works, such as, DNN, LSTM Autoencoder and User Behavior Analysis.
Bibliografia:ObjectType-Article-1
SourceType-Scholarly Journals-1
ObjectType-Feature-2
content type line 14
ISSN:1018-4864
1572-9451
DOI:10.1007/s11235-023-01085-3