Segregation-of-duties Conflicts in the Insider Threat Landscape-An Overview and Case Study
- DOI
- 10.2991/ermm-15.2015.96How to use a DOI?
- Keywords
- Insider threats, Segregation-of-duties, SoD, Misuse of privileges
- Abstract
Many insider attacks originate from misuse of privileges granted by organizations to their internal employees, contractors or third-party service providers. A fundamental means of ensuring that conflicts of privilege cannot occur is to segregate role allocations in order to ensure that no individual can perform a task from beginning to end. In this paper, we provide background on insider attacks in connection with conflicts in Segregation of Duties, and present the current strategies for preventing and detecting such conflicts. To illustrate how a conflict can occur and what can result, we present an in-depth case study demonstrating a conflict in Segregation of Dutiesin an organization, along with the consequent fraud, and we discuss how it might have been prevented.
- Copyright
- © 2015, the Authors. Published by Atlantis Press.
- Open Access
- This is an open access article distributed under the CC BY-NC license (http://creativecommons.org/licenses/by-nc/4.0/).
Cite this article
TY - CONF AU - Sherwin Ballesteros AU - Lei Pan AU - Lynn Batten AU - Gang Li PY - 2015/04 DA - 2015/04 TI - Segregation-of-duties Conflicts in the Insider Threat Landscape-An Overview and Case Study BT - Proceedings of the 2015 International Conference on Education Reform and Modern Management PB - Atlantis Press SP - 367 EP - 370 SN - 2352-5398 UR - https://doi.org/10.2991/ermm-15.2015.96 DO - 10.2991/ermm-15.2015.96 ID - Ballesteros2015/04 ER -