Abstract
An approach is proposed to assist modelers in developing models of insider threat inference enterprises. A key challenge in inference enterprise modeling (IEM) is addressing complexities such as vast quantities of data and low probability of occurrence of an insider threat. These complexities make development of a modeling workflow a difficult and time-consuming task. The ontology-template-based modeling approach described in this paper is applied to specific examples of insider threat detection problems. This approach assists modelers so that they can quickly create new models for new inference enterprise scenarios, thus improving the efficiency of building inference enterprise models. Efficiency improvements provide opportunities to enhance the performance of insider threat inference enterprises. The paper describes theoretical concepts and presents an example of building an IEM workflow using the proposed approach.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Similar content being viewed by others
References
IARPA. (2015). Broad agency announcement: IARPA-BAA-15-09. Scientific advances to continuous insider threat detection (SCITE) Program.
Greitzer, F. L., Imran, M., Purl, J., Axelrad, E. T., Leong, Y. M., Becker, D. E., et al. (2016). Developing an ontology for individual and organizational sociotechnical indicators of insider threat risk. In STIDS (pp. 19–27).
Laskey, K., Huang, E., Zaidi, A., Brown, D., Buede, D., Yousefi, B., et al. (2018). Modeling inference enterprises using multiple interoperating models. Submitted in INCOSE IS.
Huang, E., Zaidi, A. K., & Laskey, K. B. (2017). Inference enterprise multi-modeling for insider threat detection systems. Fairfax, VA: George Mason University.
Mansoor, F., Zaidi, A. K., Wagenhals, L., & Levis, A. H. (2009). Meta-modeling the cultural behavior using timed influence nets. Fairfax, VA: George Mason University.
Object Management Group (Ed.). (2005). Unified modeling language: Superstructure, version 2.0, formal/05–07–04. Needham, MA: Author.
SPARQL Query Language for RDF. Retrieved from https://www.w3.org/TR/rdf-sparql-query/
MagicDraw. Retrieved from https://www.nomagic.com/products/magicdraw
Acknowledgments
Research reported here was supported under IARPA contract 2016 16031400006. The content is solely the responsibility of the authors and does not necessarily represent the official views of the US Government.
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2019 Springer Nature Switzerland AG
About this paper
Cite this paper
Lee, J.D., Zaidi, A.K., Laskey, K.B. (2019). Rapid Prototyping Insider Threat Inference Enterprise Model Workflows Using Ontology-Template Approach. In: Adams, S., Beling, P., Lambert, J., Scherer, W., Fleming, C. (eds) Systems Engineering in Context. Springer, Cham. https://doi.org/10.1007/978-3-030-00114-8_51
Download citation
DOI: https://doi.org/10.1007/978-3-030-00114-8_51
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-030-00113-1
Online ISBN: 978-3-030-00114-8
eBook Packages: Intelligent Technologies and RoboticsIntelligent Technologies and Robotics (R0)