Publicação
Detecção inteligente de fugas de informação por analise comportamental
| Resumo: | The information that a company possesses is one of its most valuable assets. This information is nowadays digitally managed, which is the reason for the exponential increase in security breaches, where information is defiled or even stolen. Seeking to solve this problem, Watchful Software developed a product, RightsWATCH, that allows for an organization to protect and watch over its information. By monitoring what happens to information, RightsWATCH provides, in case of an incident, the means to undertake a very complete post-mortem analysis. Nevertheless, by the time this analysis is complete, it might have been hours (or days) since the incident occurred. To make matters worse, nowadays most threats actually come from the inside of the company. That being said, this dissertation defines as its main objective the need to understand if it is possible to detect data leaks in an intelligent way, through a real time analysis of the user’s behaviour while he handles the classified information. This possibility was indeed confirmed through an investigation comprising experiences with real world use cases and a variety of data preparation and data analysis techniques. |
|---|---|
| Autores principais: | Costeira, Ricardo Manuel Andrade |
| Assunto: | Engenharia e Tecnologia::Engenharia Eletrotécnica, Eletrónica e Informática |
| Ano: | 2016 |
| País: | Portugal |
| Tipo de documento: | dissertação de mestrado |
| Tipo de acesso: | acesso aberto |
| Instituição associada: | Universidade do Minho |
| Idioma: | inglês |
| Origem: | RepositóriUM - Universidade do Minho |
| Resumo: | The information that a company possesses is one of its most valuable assets. This information is nowadays digitally managed, which is the reason for the exponential increase in security breaches, where information is defiled or even stolen. Seeking to solve this problem, Watchful Software developed a product, RightsWATCH, that allows for an organization to protect and watch over its information. By monitoring what happens to information, RightsWATCH provides, in case of an incident, the means to undertake a very complete post-mortem analysis. Nevertheless, by the time this analysis is complete, it might have been hours (or days) since the incident occurred. To make matters worse, nowadays most threats actually come from the inside of the company. That being said, this dissertation defines as its main objective the need to understand if it is possible to detect data leaks in an intelligent way, through a real time analysis of the user’s behaviour while he handles the classified information. This possibility was indeed confirmed through an investigation comprising experiences with real world use cases and a variety of data preparation and data analysis techniques. |
|---|