Past research on information security has focused on protecting valuable resources from attacks by outsiders. However, statistics show that many security and privacy breaches are due to insider attacks. Protection from insider threats is challenging because insiders may have access to many sensitive resources and high-privileged system accounts. Suitable approaches need to combine several security techniques, like fine-grained access control, stronger authentication protocols, integrated digital identity management, and intrusion detection, with techniques from areas like information integration, machine learning, and risk assessment. In this talk, after an introduction to the problem of insider threats, I will present recent work addressing the problem of anomaly detection and response policies for database management systems and then discuss open research issues, emphasizing the role of techniques from the area of information integration.
Reception to follow in 301 Coordinated Science Lab.
Elisa Bertino is a professor of Computer Science at Purdue University and serves as Research Director of the Center for Education and Research in Information Assurance and Security (CERIAS) and as interim director of CyberCenter. Previously she was a faculty member in the Department of Computer Science and Communication of the University of Milan, where she directed the DB&SEC laboratory. She has been a visiting researcher at the IBM Research Laboratory (now Almaden) in San Jose, at the Microelectronics and Computer Technology Corporation, at Rutgers University, and at Telcordia Technologies. Her main research interests include security, privacy, digital identity management systems, and database systems. She serves (or has served) on the editorial boards of several scientific journals, including IEEE Internet Computing, IEEE Security & Privacy, the ACM Transactions on Information and System Security, and the ACM Transactions on the Web.
Bertino is a Fellow of the IEEE and the ACM. She received the 2002 IEEE Computer Society Technical Achievement Award for "outstanding contributions to database systems and database security and advanced data management systems" and the 2005 IEEE Computer Society Tsutomu Kanai Award for "pioneering and innovative research contributions to secure distributed systems."