Volume 6 Number 3(Jul. 2017)
Home > Archive > 2017 > Volume 6 Number 3(Jul. 2017) >
IJCCE 2017 Vol.6(3): 212-220 ISSN: 2010-3743
DOI: 10.17706/IJCCE.2017.6.3.212-220

Abnormal Behavior Analysis in Office Automation System within Organizations

Yilin Wang, Yun Zhou, Cheng Zhu, Xianqiang Zhu, Weiming Zhang
Abstract—Insider threat is a serious and increasing concern for many organizations. The group of individuals who operate within the organization have access to highly confidential and sensitive information, however, if they choose to act against the organization, with their privileged access authority and their extensive knowledge, they are well positioned to cause serious damage. Compared with vast amounts of normal daily operations, malicious behaviors are indeed small probability events, and are easily ignored. Thus, there is a desperate need to explore an effective approach to detect such suspicious behaviors. In order to solve this problem, we propose a two-stage algorithm to detect anomaly through analyzing user behavior based on activity log data collected in a real office automation system. In the first stage, we compare users’ behavioral activities with activities of his/her belonging role, and in the second stage, we compare individual behavioral activities with his/her activities in a window period. By adopting several effective features to describe users’ regular behavioral patterns, the analyst is capable of refining underlying abnormal users and abnormal periods to better support the network security administration.

Index Terms—Cyber security, behavior analysis, anomaly detection.

The authors are with Science and Technology on Information Systems Engineering Laboratory, National University of Defense Technology, Changsha, China.

Cite:Yilin Wang, Yun Zhou, Cheng Zhu, Xianqiang Zhu, Weiming Zhang, "Abnormal Behavior Analysis in Office Automation System within Organizations," International Journal of Computer and Communication Engineering vol. 6, no. 3, pp. 212-220, 2017.

General Information

ISSN: 2010-3743
Frequency: Quarterly
Editor-in-Chief: Dr. Maode Ma
Abstracting/ Indexing: EI (INSPEC, IET), Google Scholar, Crossref, Engineering & Technology Digital Library, ProQuest, and Electronic Journals Library
E-mail: ijcce@iap.org
  • Nov 07, 2017 News!

    IJCCE Vol. 5, No. 5 has been indexed by EI (Inspec) Inspec, created by the Institution of Engineering and Tech.!   [Click]

  • Mar 31, 2016 News!

    IJCCE Vol. 4, No. 5 has been indexed by EI (Inspec) Inspec, created by the Institution of Engineering and Tech.!   [Click]

  • Jun 28, 2017 News!

    IJCCE Vol. 5, No. 4 has been indexed by EI (Inspec) Inspec, created by the Institution of Engineering and Tech.!   [Click]

  • Jun 28, 2017 News!

    IJCCE Vol. 5, No. 3 has been indexed by EI (Inspec) Inspec, created by the Institution of Engineering and Tech.!   [Click]

  • Jun 28, 2017 News!

    IJCCE Vol. 5, No. 2 has been indexed by EI (Inspec) Inspec, created by the Institution of Engineering and Tech.!   [Click]

  • Read more>>