Abstract
Insider threats represent a significant risk to organizational security, characterized by their covert nature and the complexity of detecting malicious activities within legitimate user behavior. Traditional detection systems often struggle with imbalanced datasets, where the prevalence of insider threats is minimal compared to normal behavior, leading to a high rate of false positives and undetected threats. This research evaluates the effectiveness of various machine learning (ML) algorithms in identifying insider threats, with a particular focus on the implementation of Synthetic Minority Over-sampling Technique (SMOTE) to address the challenge of data imbalance. By combining SMOTE with advanced ML techniques, this study aims to enhance the accuracy and robustness of insider threat detection systems. The algorithm with the best result is Random Forest which achieved 100% accuracy, recall which is 93% and F-score of 96%. The results of this study will inform the design of more resilient security measures, better equipped to detect and respond to insider threats in a wide range of organizational contexts.
Original language | English |
---|---|
Title of host publication | 5th International Symposium on Intelligent Computing Systems - ISICS 2024 |
Publisher | Springer |
Number of pages | 16 |
Publication status | Accepted/In press - 6 Nov 2024 |
Event | International Symposium on Intelligent Computing Systems - Sharjah, United Arab Emirates Duration: 6 Nov 2024 → 7 Nov 2024 |
Conference
Conference | International Symposium on Intelligent Computing Systems |
---|---|
Abbreviated title | ISICS 2024 |
Country/Territory | United Arab Emirates |
City | Sharjah |
Period | 6/11/24 → 7/11/24 |