Find me: A User Friendly Key Logger Tool for Insider Threat Identification

J. Dhiviya Rose¹ , Vishal Kumar² , Amit Singh Khinchee³ , Tushar Rathee⁴ , Keerthivardhan A.⁵

Section:Research Paper, Product Type: Journal-Paper
Vol.9 , Issue.6 , pp.115-120, Dec-2021

Online published on Dec 31, 2021

Copyright © J. Dhiviya Rose, Vishal Kumar, Amit Singh Khinchee, Tushar Rathee, Keerthivardhan A. . This is an open access article distributed under the Creative Commons Attribution License, which permits unrestricted use, distribution, and reproduction in any medium, provided the original work is properly cited.
 

View this paper at   Google Scholar | DPI Digital Library

XML View     PDF Download

How to Cite this Paper

Abstract :
Insider Threat Detection has become one of the lime lights that are a widely accepted issue that reflects a growing concern in security communities. Insider Threats are listed as the malicious activities performed by authorized users in any organization resulting in various damages like intellectual property loss and breach of security details. The increasing insider threads have made the organizations turn their focus to various ‘malicious insiders’: the own people who work not in favor of the organization`s growth. Moreover, an insider, additionally viewed as a worker of an organization, turns into a threat when the aim or activity, intention can influence the organization contrarily. The insider threat has been a famous issue in associations that have brought about the deficiency of trust, secret information, and data. Although many insider attacks have more privilege and legitimate access to information in comparison to external attacks which can cause much damage to the organization, the internal threats can cause extensive damage. This project aims to offer a tool that helps in Insider Threat Detection by detecting similar data of the database using java. The Keylogger detects the abnormal behavior of the user using correlating the data movement as a keylogger installed in all systems organizations for monitoring the keystrokes activities of the employee system. After matching the Keystrokes with sensitive keywords, the system generates an alert log to warn relevant IT cells of the organization when the user accesses extraordinary, confidential data after comparing its system database.

Key-Words / Index Term :
Insider Attack; Malicious insiders; Authorized users; Keylogger; Insider Threat Detection

References :
[1] D. R. Tobergte and S. Curtis, “Insider attack and cyber security,” J. Chem. Inf. Model., vol. 53, no. 9, pp. 1689–1699, 2013.
[2] I. A. Gheyas and A. E. Abdallah, “Detection and prediction of insider threats to cyber security: a systematic literature review and meta-analysis,” Big Data Anal., vol. 1, no. 1, 2016, doi: 10.1186/s41044-016-0006-0.
[3] S. Johannessen Berdal, “A Holistic Approach to Insider Threat Detection,” p. 117, 2018.
[4] D. A. Whetten, “What Constitutes a Theoretical Contribution?,” Acad. Manag. Rev., vol. 14, no. 4, pp. 490–495, 1989, doi: 10.5465/amr.1989.4308371.
[5] D. E. Krutz, A. Meneely, and S. A. Malachowsky, “An insider threat activity in a software security course,” Proc. - Front. Educ. Conf. FIE, vol. 2015, no. October, 2015, doi: 10.1109/FIE.2015.7344087.
[6] P. M. Patel and P. V. K. Shah, “Analysis and Implementation of Decipherments ofKeyLogger,” vol. 5, no. 1, p. 53, 2015, [Online]. Available: http://www.worldwidejournals.com/indian-journal-of-applied-research-(IJAR)/special_file.php?val=January_2015_1422602239__44.pdf.
[7] M. K. Shah, D. Kataria, S. B. Raj, and G. Priya, “Real Time Working of Keylogger Malware Analysis,” vol. 9, no. 10, pp. 569–573, 2020.
[8] H. Agrawal and R. R. Singh, “An Ensemble Approach for Detecting Phishing Attacks,” International Journal of Computer Sciences and Engineering, vol. 9, no. 7, 2021.
[9] S. Shinde and U. H. Wanaskar, “Keylogging?: A Malicious Attack,” vol. 5, no. 6, pp. 285–289, 2016, doi: 10.17148/IJARCCE.2016.5661.
[10] C. Wood and R. Raj, “Keyloggers in Cybersecurity Education.,” Proc. 2010 Int. Conf. Secur. Manag. SAM 2010, July 12-15, 2010, Las Vegas Nevada, USA, 2 Vol., pp. 293–299, 2010, [Online]. Available: http://www.researchgate.net/publication/221199474_Keyloggers_in_Cybersecurity_Education.
[11] C. Taufik, “GO / NO-GO DECISION-MAKING METHOD ON BUSINESS DE- VELOPMENT OF SOFTWARE DEVELOPMENT IN INDONESIA Introduction Statistics conducted in the United States mention the percentage of companies that can survive several years from the time of its establishment .,” vol. 6, no. 2, pp. 71–90, 2018.
[12] S. Sagiroglu and G. Canbek, “Keyloggers: Increasing threats to computer security and privacy,” IEEE Technol. Soc. Mag., vol. 28, no. 3, pp. 10–17, 2009, doi: 10.1109/MTS.2009.934159.
[13] Insider Threats Global Report, “2020 Cost of Insider Threats,” Available online https//www.observeit.com/costof- Insid., p. 31, 2020, [Online]. Available: https://www.observeit.com/wp-content/uploads/2020/04/2020-Global-Cost-of-Insider-Threats-Ponemon-Report_UTD.pdf.
[14] K. Venkateswara Rao, “Experimental Analysis With Behavior Reliance Insider Threat Detection Model,” J. Mech. Contin. Math. Sci., vol. 15, no. 5, pp. 227–237, 2020, doi: 10.26782/jmcms.2020.05.00021.
[15] I. Agrafiotis, A. Erola, J. Happa, M. Goldsmith, and S. Creese, “Validating an Insider Threat Detection System: A Real Scenario Perspective,” Proc. - 2016 IEEE Symp. Secur. Priv. Work. SPW 2016, pp. 286–295, 2016, doi: 10.1109/SPW.2016.36.
[16] M. G. Ali, F. M. Ba-alwi, and G. H. Al-gaphari, “Survey on an Intrusion Detection Systems Within Cloud Environment,” International Journal of Computer Sciences and Engineering, vol. 9, no. 4, 2021.