Biometrically linking document leakage to the individuals responsible

Abdulrahman Alruban*, Nathan Clarke, Fudong Li, Steven Furnell

*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceedingConference contribution

117 Downloads (Pure)

Abstract

Insider threats are a significant security issue. The last decade has witnessed countless instances of data loss and exposure in which data has become publicly available and easily accessible. Losing or disclosing sensitive data or confidential information may cause substantial financial and reputational damage to a company. Whilst more recent research has specifically focused on the insider misuse problem, it has tended to focus on the information itself – either through its protection or approaches to detect leakage. In contrast, this paper presents a proactive approach to the attribution of misuse via information leakage using biometrics and a locality-sensitive hashing scheme. The hash digest of the object (e.g. a document) is mapped with the given biometric information of the person who interacted with it and generates a digital imprint file that represents the correlation between the two parties. The proposed approach does not directly store or preserve any explicit biometric information nor document copy in a repository. It is only the established correlation (imprint) is kept for the purpose of reconstructing the mapped information once an incident occurred. Comprehensive experiments for the proposed approach have shown that it is highly possible to establish this correlation even when the original version has undergone significant file modification. In many scenarios, such as changing the file format r removing parts of the document, including words and sentences, it was possible to extract and reconstruct the correlated biometric information out of a modified document (e.g. 100 words were deleted) with an average success rate of 89.31%.

Original languageEnglish
Title of host publicationTrust, Privacy and Security in Digital Business - 15th International Conference, TrustBus 2018, Proceedings
EditorsSteven Furnell, Haralambos Mouratidis, Günther Pernul
PublisherSpringer Verlag
Pages135-149
Number of pages15
ISBN (Electronic)978-3-319-98385-1
ISBN (Print)9783319983844
DOIs
Publication statusPublished - 5 Sep 2018
Event15th International Conference on Trust, Privacy, and Security in Digital Business - Regensburg, Germany
Duration: 5 Sep 20186 Sep 2018

Publication series

NameLecture Notes in Computer Science
Volume11033
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349

Conference

Conference15th International Conference on Trust, Privacy, and Security in Digital Business
Abbreviated titleTrustBus 2018
Country/TerritoryGermany
CityRegensburg
Period5/09/186/09/18

Keywords

  • Biometrics
  • Data leakage
  • Digital forensics
  • Insider misuse

Fingerprint

Dive into the research topics of 'Biometrically linking document leakage to the individuals responsible'. Together they form a unique fingerprint.

Cite this