Research on Mitigating the Insider Threat to Information Systems: 2 (Conference proceedings / Rand Corporation)

This is the second in a series of conference reports on the topic of R&D initiatives to mitigate and thwart the insider threat to critical U.S. defense and infrastructure information systems. This workshop's main focus areas were long-term research challenges and goals toward mitigating the insider threat; developing insider threat models; and developing near-term solutions using commercial off-the-shelf and government off-the-shelf products. The long-term research recommendations stressed the need to develop underlying system architecture designed explicitly with security and survivability in mind. The report also contains a number of recommendations regarding the purposes and design of models of insider behavior, and near-term recommendations for helping to prevent, discover, and mitigate the threat of insider misuse of information systems.