Year
2021
File Attachment
a373.pdf1.09 MB
Abstract
The Next Generation of Technical and Protective Measures for Insider Threat Mitigation: Preparing for Extremist AttacksAbstract. Insiders are commonly considered as the greatest threats to a nuclear security regime. Insiders pose a significant threat to nuclear/radiological security because of their privileges, authorities, and knowledge. Typically, insiders have access rights to and awareness of critical information; materials storage, usage, transport, and deposition; facilities layout, operations, and embedded systems (e.g., alarms, surveillance cameras); business operations (including transport plans); and personnel (job credentials and privileges, work schedules and assignments). Such rights give insiders an advantage to bypass and avoid dedicated security systems. Over the past 10 years, the use of emerging technologies (e.g., social media, biometrics, sensors, unmanned systems, cyber devices) have likely helped to further disguise, conceal, and advance insiders’ adversarial activities. This research proposes to examine insider case studies from 2010 to 2020 to better understand how insider tactics are becoming more sophisticated with the evolution of technologies. In addition, this research will examine relevant administrative and preventive measures as first line of defense while giving greater attention to relevant technical and protective measures as a second line of defense to counter evolving or emerging insider tactics. The motivation for these countermeasures is the need for more advanced detection, delay, and deterrence methods to enhance response, recovery, and resilience to even extremist adversarial attacks that involve insiders.