Browse
We’re here to help

Find guidance on Author Services

Search
Browse
We’re here to help

Find guidance on Author Services

Home
All Journals
Journal of Computer Information Systems
List of Issues
Volume 64, Issue 1
Insider Intrusion Detection Techniques: ....

Search in:

Advanced search

Journal of Computer Information Systems Volume 64, 2024 - Issue 1

Submit an article Journal homepage

451

Views

CrossRef citations to date

Altmetric

Reviews

Insider Intrusion Detection Techniques: A State-of-the-Art Review

Nisha T. N.Symbiosis Centre for Information Technology (SCIT), A Constituent of the Symbiosis International (Deemed University) (SIU), Pune, IndiaCorrespondence[email protected]

https://orcid.org/0000-0002-3197-6271

Dhanya PramodSymbiosis Centre for Information Technology (SCIT), A Constituent of the Symbiosis International (Deemed University) (SIU), Pune, India

https://orcid.org/0000-0003-3451-9794

Pages 106-123 | Published online: 14 Feb 2023

Cite this article
https://doi.org/10.1080/08874417.2023.2175337
CrossMark

Sample our Engineering & Technology journals, sign in here to start your access, latest two full volumes FREE to you for 14 days

Full Article
Figures & data
References
Citations
Metrics
Reprints & Permissions
Read this article /doi/full/10.1080/08874417.2023.2175337?needAccess=true

ABSTRACT

This study is a systematic literature review on anomaly-based intrusion detection methods specially to detect insider attacks. The focus is to enumerate the techniques for modeling host-based and network-based anomaly detection. By leveraging the sequential characteristics of network data, we further discuss the concept of event-based intrusion detection. The research starts with a bibliometric analysis of the broader topic. The PRISMA methodology is implemented to analyze papers selected after the primary search. This study revolves around four research questions formed to serve the purpose defined. The study unveils the opportunity of event-based models in insider intrusion detection and identifies the possibility of a combined model to detect insiders as early as possible. The study recommends incorporating the strengths of anomaly-based, signature-based and knowledge-based models to detect the attacks proactively.

KEYWORDS:

Insider attacks
signature and anomaly-based detection
profiling-based detection
event-based intrusion detection
sequence of events

Disclosure statement

No potential conflict of interest was reported by the author(s).

Log in via your institution

Access through your institution

Log in to Taylor & Francis Online

Shibboleth

Log in to Taylor & Francis Online

Username Password

Forgot password?

Keep me logged in (not suitable for shared devices).

You will otherwise be logged out automatically, after a limited period, and will need to log in again.

Restore content access

Restore content access for purchases made as guest

Purchase options * Save for later Item saved, go to cart

PDF download + Online access

48 hours access to article PDF & online version
Article PDF can be downloaded
Article PDF can be printed

USD 61.00 Add to cart

PDF download + Online access - Online Checkout

Issue Purchase

30 days online access to complete issue
Article PDFs can be downloaded
Article PDFs can be printed

USD 145.00 Add to cart

Issue Purchase - Online Checkout

* Local tax will be added as applicable

Share icon
Back to Top

Related Research

People also read lists articles that other readers of this article have read.

Recommended articles lists articles that we recommend and is powered by our AI driven recommendation engine.

Cited by lists all citing articles based on Crossref citations.
Articles with the Crossref icon will open in a new tab.

People also read
Recommended articles
Cited by

To cite this article:

Reference style: APA Chicago Harvard

Citation copied to clipboard

Reference styles above use APA (6th edition), Chicago (16th edition) & Harvard (10th edition)

Download citation

Download a citation file in RIS format that can be imported by citation management software including EndNote, ProCite, RefWorks and Reference Manager.

Choose format: RIS BibTex RefWorks Direct Export

Choose options: Citation Citation & abstract Citation & references

Information for

Authors
R&D professionals
Editors
Librarians
Societies

Open access

Overview
Open journals
Open Select
Dove Medical Press
F1000Research

Opportunities

Reprints and e-prints
Advertising solutions
Accelerated publication
Corporate access solutions

Help and information

Help and contact
Newsroom
All journals
Books

Keep up to date

Sign me up

Taylor and Francis Group Facebook page

Taylor and Francis Group X Twitter page

Taylor and Francis Group Linkedin page

Taylor and Francis Group Youtube page

Taylor and Francis Group Weibo page

Registered in England & Wales No. 3099067
5 Howick Place | London | SW1P 1WG

Your download is now in progress and you may close this window

Did you know that with a free Taylor & Francis Online account you can gain access to the following benefits?

Choose new content alerts to be informed about new research of interest to you
Easy remote access to your institution's subscriptions on any device, from any location
Save your searches and schedule alerts to send you new results
Export your search results into a .csv file to support your research

Have an account?
Login now Don't have an account?
Register for free

Login or register to access this feature

Have an account?
Login now Don't have an account?
Register for free

Choose new content alerts to be informed about new research of interest to you
Easy remote access to your institution's subscriptions on any device, from any location
Save your searches and schedule alerts to send you new results
Export your search results into a .csv file to support your research