Dynamic document reclassification for preventing insider abuse

A. Garg; S. Pramanik; V. Sankaranarayanan; S. Upadhyaya

Dynamic document reclassification for preventing insider abuse

A. Garg
, S. Pramanik
, V. Sankaranarayanan
, S. Upadhyaya

Department of Computer Science and Engineering

University at Buffalo

SUNY Buffalo

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

1 Scopus citations

Abstract

Digital documents in an organization are usually classified into static secrecy levels such as top-secret, secret, confidential and unclassified. Factors such as changes in the user hierarchy and addition of new projects generally require a change in a document's importance. Enforcing such changes in relative importance (RI) of documents will protect the privileged documents from insider abuse. In this paper we propose a new framework for monitoring and dynamically changing the RI of documents over time. The proposed scheme utilizes a reasoning technique which takes into consideration the organization-specific data and the document usage data to make an informed decision on the RI of documents. Various inputs to the reasoning framework are standardized using XML schemas to provide interoperability. We have performed simulations with synthetic document usage data and report the results as proof of concept.

Original language	English
Title of host publication	Proceedings fron the Fifth Annual IEEE System, Man and Cybernetics Information Assurance Workshop, SMC
Pages	218-225
Number of pages	8
State	Published - 2004
Event	Proceedings fron the Fifth Annual IEEE System, Man and Cybernetics Information Assurance Workshop, SMC - West Point, NY, United States Duration: Jun 10 2004 → Jun 11 2004

Publication series

Name	Proceedings fron the Fifth Annual IEEE System, Man and Cybernetics Information Assurance Workshop, SMC

Conference

Conference	Proceedings fron the Fifth Annual IEEE System, Man and Cybernetics Information Assurance Workshop, SMC
Country/Territory	United States
City	West Point, NY
Period	06/10/04 → 06/11/04

Keywords

Digital Rights Management
Dynamic document categorization
Insider threat
Intrusion prevention
Policy management

Cite this

Garg, A., Pramanik, S., Sankaranarayanan, V., & Upadhyaya, S. (2004). Dynamic document reclassification for preventing insider abuse. In Proceedings fron the Fifth Annual IEEE System, Man and Cybernetics Information Assurance Workshop, SMC (pp. 218-225). Article 466 (Proceedings fron the Fifth Annual IEEE System, Man and Cybernetics Information Assurance Workshop, SMC).

@inproceedings{9ec55984d41f4c5c94a1658dd8607c79,

title = "Dynamic document reclassification for preventing insider abuse",

abstract = "Digital documents in an organization are usually classified into static secrecy levels such as top-secret, secret, confidential and unclassified. Factors such as changes in the user hierarchy and addition of new projects generally require a change in a document's importance. Enforcing such changes in relative importance (RI) of documents will protect the privileged documents from insider abuse. In this paper we propose a new framework for monitoring and dynamically changing the RI of documents over time. The proposed scheme utilizes a reasoning technique which takes into consideration the organization-specific data and the document usage data to make an informed decision on the RI of documents. Various inputs to the reasoning framework are standardized using XML schemas to provide interoperability. We have performed simulations with synthetic document usage data and report the results as proof of concept.",

keywords = "Digital Rights Management, Dynamic document categorization, Insider threat, Intrusion prevention, Policy management",

author = "A. Garg and S. Pramanik and V. Sankaranarayanan and S. Upadhyaya",

year = "2004",

language = "English",

isbn = "0780385721",

series = "Proceedings fron the Fifth Annual IEEE System, Man and Cybernetics Information Assurance Workshop, SMC",

pages = "218--225",

booktitle = "Proceedings fron the Fifth Annual IEEE System, Man and Cybernetics Information Assurance Workshop, SMC",

note = "Proceedings fron the Fifth Annual IEEE System, Man and Cybernetics Information Assurance Workshop, SMC ; Conference date: 10-06-2004 Through 11-06-2004",

}

Garg, A, Pramanik, S, Sankaranarayanan, V & Upadhyaya, S 2004, Dynamic document reclassification for preventing insider abuse. in Proceedings fron the Fifth Annual IEEE System, Man and Cybernetics Information Assurance Workshop, SMC., 466, Proceedings fron the Fifth Annual IEEE System, Man and Cybernetics Information Assurance Workshop, SMC, pp. 218-225, Proceedings fron the Fifth Annual IEEE System, Man and Cybernetics Information Assurance Workshop, SMC, West Point, NY, United States, 06/10/04.

Dynamic document reclassification for preventing insider abuse. / Garg, A.; Pramanik, S.; Sankaranarayanan, V. et al.
Proceedings fron the Fifth Annual IEEE System, Man and Cybernetics Information Assurance Workshop, SMC. 2004. p. 218-225 466 (Proceedings fron the Fifth Annual IEEE System, Man and Cybernetics Information Assurance Workshop, SMC).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Dynamic document reclassification for preventing insider abuse

AU - Garg, A.

AU - Pramanik, S.

AU - Sankaranarayanan, V.

AU - Upadhyaya, S.

PY - 2004

Y1 - 2004

N2 - Digital documents in an organization are usually classified into static secrecy levels such as top-secret, secret, confidential and unclassified. Factors such as changes in the user hierarchy and addition of new projects generally require a change in a document's importance. Enforcing such changes in relative importance (RI) of documents will protect the privileged documents from insider abuse. In this paper we propose a new framework for monitoring and dynamically changing the RI of documents over time. The proposed scheme utilizes a reasoning technique which takes into consideration the organization-specific data and the document usage data to make an informed decision on the RI of documents. Various inputs to the reasoning framework are standardized using XML schemas to provide interoperability. We have performed simulations with synthetic document usage data and report the results as proof of concept.

AB - Digital documents in an organization are usually classified into static secrecy levels such as top-secret, secret, confidential and unclassified. Factors such as changes in the user hierarchy and addition of new projects generally require a change in a document's importance. Enforcing such changes in relative importance (RI) of documents will protect the privileged documents from insider abuse. In this paper we propose a new framework for monitoring and dynamically changing the RI of documents over time. The proposed scheme utilizes a reasoning technique which takes into consideration the organization-specific data and the document usage data to make an informed decision on the RI of documents. Various inputs to the reasoning framework are standardized using XML schemas to provide interoperability. We have performed simulations with synthetic document usage data and report the results as proof of concept.

KW - Digital Rights Management

KW - Dynamic document categorization

KW - Insider threat

KW - Intrusion prevention

KW - Policy management

UR - https://www.scopus.com/pages/publications/15944410583

M3 - Conference contribution

SN - 0780385721

SN - 9780780385726

T3 - Proceedings fron the Fifth Annual IEEE System, Man and Cybernetics Information Assurance Workshop, SMC

SP - 218

EP - 225

BT - Proceedings fron the Fifth Annual IEEE System, Man and Cybernetics Information Assurance Workshop, SMC

T2 - Proceedings fron the Fifth Annual IEEE System, Man and Cybernetics Information Assurance Workshop, SMC

Y2 - 10 June 2004 through 11 June 2004

ER -

Dynamic document reclassification for preventing insider abuse

Abstract

Publication series

Conference

Keywords

Other files and links

Fingerprint

Cite this