Document Type
Article
Date
2004
Keywords
intelligence community, IC, security, social network analysis, role-based access monitoring, insiders' communications, risk assessor, Natural Language Processing Center, NLP
Language
English
Disciplines
Information and Library Science
Description/Abstract
Malicious insiders’ difficult-to-detect activities pose serious threats to the intelligence community (IC) when these activities go undetected. A novel approach that integrates the results of social network analysis, role-based access monitoring, and semantic analysis of insiders ’ communications as evidence for evaluation by a risk assessor is being tested on an IC simulation. A semantic analysis, by our proven Natural Language Processing (NLP) system, of the insider’s text-based communications produces conceptual representations that are clustered and compared on the expected vs. observed scope. The determined risk level produces an input to a risk analysis algorithm that is merged with outputs from the system’s social network analysis and role-based monitoring modules.
Recommended Citation
Symonenko, Svetlana; Liddy, Elizabeth D.; Yilmazel, Ozgur; Del Zoppo, Robert; Brown, Eric; and Downey, Matt, "Semantic analysis for monitoring insider threats" (2004). Center for Natural Language Processing. Paper 5.
http://surface.syr.edu/cnlp/5
Download
