{"id":"https://openalex.org/W4402811955","doi":"https://doi.org/10.1109/csr61664.2024.10679492","title":"The Danger Within: Insider Threat Modeling Using Business Process Models","display_name":"The Danger Within: Insider Threat Modeling Using Business Process Models","publication_year":2024,"publication_date":"2024-09-02","ids":{"openalex":"https://openalex.org/W4402811955","doi":"https://doi.org/10.1109/csr61664.2024.10679492"},"language":"en","primary_location":{"id":"doi:10.1109/csr61664.2024.10679492","is_oa":false,"landing_page_url":"https://doi.org/10.1109/csr61664.2024.10679492","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2024 IEEE International Conference on Cyber Security and Resilience (CSR)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5071602128","display_name":"Jan von der Assen","orcid":"https://orcid.org/0000-0002-0591-8887"},"institutions":[{"id":"https://openalex.org/I202697423","display_name":"University of Zurich","ror":"https://ror.org/02crff812","country_code":"CH","type":"education","lineage":["https://openalex.org/I202697423"]}],"countries":["CH"],"is_corresponding":true,"raw_author_name":"Jan von der Assen","raw_affiliation_strings":["University of Zurich UZH,Communication Systems Group,Department of Informatics,Z&#x00FC;rich,Switzerland,CH-8050"],"affiliations":[{"raw_affiliation_string":"University of Zurich UZH,Communication Systems Group,Department of Informatics,Z&#x00FC;rich,Switzerland,CH-8050","institution_ids":["https://openalex.org/I202697423"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5099038659","display_name":"Jasmin Hochuli","orcid":null},"institutions":[{"id":"https://openalex.org/I202697423","display_name":"University of Zurich","ror":"https://ror.org/02crff812","country_code":"CH","type":"education","lineage":["https://openalex.org/I202697423"]}],"countries":["CH"],"is_corresponding":false,"raw_author_name":"Jasmin Hochuli","raw_affiliation_strings":["University of Zurich UZH,Communication Systems Group,Department of Informatics,Z&#x00FC;rich,Switzerland,CH-8050"],"affiliations":[{"raw_affiliation_string":"University of Zurich UZH,Communication Systems Group,Department of Informatics,Z&#x00FC;rich,Switzerland,CH-8050","institution_ids":["https://openalex.org/I202697423"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5099038660","display_name":"Thomas Gr\u00fcbl","orcid":null},"institutions":[{"id":"https://openalex.org/I202697423","display_name":"University of Zurich","ror":"https://ror.org/02crff812","country_code":"CH","type":"education","lineage":["https://openalex.org/I202697423"]}],"countries":["CH"],"is_corresponding":false,"raw_author_name":"Thomas Gr\u00fcbl","raw_affiliation_strings":["University of Zurich UZH,Communication Systems Group,Department of Informatics,Z&#x00FC;rich,Switzerland,CH-8050"],"affiliations":[{"raw_affiliation_string":"University of Zurich UZH,Communication Systems Group,Department of Informatics,Z&#x00FC;rich,Switzerland,CH-8050","institution_ids":["https://openalex.org/I202697423"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5033030418","display_name":"Burkhard Stiller","orcid":"https://orcid.org/0000-0002-7461-7463"},"institutions":[{"id":"https://openalex.org/I202697423","display_name":"University of Zurich","ror":"https://ror.org/02crff812","country_code":"CH","type":"education","lineage":["https://openalex.org/I202697423"]}],"countries":["CH"],"is_corresponding":false,"raw_author_name":"Burkhard Stiller","raw_affiliation_strings":["University of Zurich UZH,Communication Systems Group,Department of Informatics,Z&#x00FC;rich,Switzerland,CH-8050"],"affiliations":[{"raw_affiliation_string":"University of Zurich UZH,Communication Systems Group,Department of Informatics,Z&#x00FC;rich,Switzerland,CH-8050","institution_ids":["https://openalex.org/I202697423"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5071602128"],"corresponding_institution_ids":["https://openalex.org/I202697423"],"apc_list":null,"apc_paid":null,"fwci":1.1118,"has_fulltext":false,"cited_by_count":2,"citation_normalized_percentile":{"value":0.83593728,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":95,"max":96},"biblio":{"volume":null,"issue":null,"first_page":"186","last_page":"192"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10703","display_name":"Business Process Modeling and Analysis","score":0.9854999780654907,"subfield":{"id":"https://openalex.org/subfields/1404","display_name":"Management Information Systems"},"field":{"id":"https://openalex.org/fields/14","display_name":"Business, Management and Accounting"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},"topics":[{"id":"https://openalex.org/T10703","display_name":"Business Process Modeling and Analysis","score":0.9854999780654907,"subfield":{"id":"https://openalex.org/subfields/1404","display_name":"Management Information Systems"},"field":{"id":"https://openalex.org/fields/14","display_name":"Business, Management and Accounting"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},{"id":"https://openalex.org/T11891","display_name":"Big Data and Business Intelligence","score":0.96670001745224,"subfield":{"id":"https://openalex.org/subfields/1404","display_name":"Management Information Systems"},"field":{"id":"https://openalex.org/fields/14","display_name":"Business, Management and Accounting"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9645000100135803,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/insider-threat","display_name":"Insider threat","score":0.8475921154022217},{"id":"https://openalex.org/keywords/process","display_name":"Process (computing)","score":0.6253335475921631},{"id":"https://openalex.org/keywords/insider","display_name":"Insider","score":0.5611020922660828},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.5333806276321411},{"id":"https://openalex.org/keywords/business-process","display_name":"Business process","score":0.5013096332550049},{"id":"https://openalex.org/keywords/process-modeling","display_name":"Process modeling","score":0.47890010476112366},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.47740140557289124},{"id":"https://openalex.org/keywords/business-process-modeling","display_name":"Business process modeling","score":0.4384458661079407},{"id":"https://openalex.org/keywords/process-management","display_name":"Process management","score":0.32363957166671753},{"id":"https://openalex.org/keywords/business","display_name":"Business","score":0.30531045794487},{"id":"https://openalex.org/keywords/work-in-process","display_name":"Work in process","score":0.22720250487327576},{"id":"https://openalex.org/keywords/political-science","display_name":"Political science","score":0.08369964361190796}],"concepts":[{"id":"https://openalex.org/C2776633304","wikidata":"https://www.wikidata.org/wiki/Q6038026","display_name":"Insider threat","level":3,"score":0.8475921154022217},{"id":"https://openalex.org/C98045186","wikidata":"https://www.wikidata.org/wiki/Q205663","display_name":"Process (computing)","level":2,"score":0.6253335475921631},{"id":"https://openalex.org/C2778971194","wikidata":"https://www.wikidata.org/wiki/Q1664551","display_name":"Insider","level":2,"score":0.5611020922660828},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.5333806276321411},{"id":"https://openalex.org/C85345410","wikidata":"https://www.wikidata.org/wiki/Q851587","display_name":"Business process","level":3,"score":0.5013096332550049},{"id":"https://openalex.org/C76956256","wikidata":"https://www.wikidata.org/wiki/Q27610560","display_name":"Process modeling","level":3,"score":0.47890010476112366},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.47740140557289124},{"id":"https://openalex.org/C207505557","wikidata":"https://www.wikidata.org/wiki/Q4374012","display_name":"Business process modeling","level":4,"score":0.4384458661079407},{"id":"https://openalex.org/C195094911","wikidata":"https://www.wikidata.org/wiki/Q14167904","display_name":"Process management","level":1,"score":0.32363957166671753},{"id":"https://openalex.org/C144133560","wikidata":"https://www.wikidata.org/wiki/Q4830453","display_name":"Business","level":0,"score":0.30531045794487},{"id":"https://openalex.org/C174998907","wikidata":"https://www.wikidata.org/wiki/Q357662","display_name":"Work in process","level":2,"score":0.22720250487327576},{"id":"https://openalex.org/C17744445","wikidata":"https://www.wikidata.org/wiki/Q36442","display_name":"Political science","level":0,"score":0.08369964361190796},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0},{"id":"https://openalex.org/C199539241","wikidata":"https://www.wikidata.org/wiki/Q7748","display_name":"Law","level":1,"score":0.0},{"id":"https://openalex.org/C162853370","wikidata":"https://www.wikidata.org/wiki/Q39809","display_name":"Marketing","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/csr61664.2024.10679492","is_oa":false,"landing_page_url":"https://doi.org/10.1109/csr61664.2024.10679492","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2024 IEEE International Conference on Cyber Security and Resilience (CSR)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":20,"referenced_works":["https://openalex.org/W1588953585","https://openalex.org/W1875962355","https://openalex.org/W1986566755","https://openalex.org/W1997410019","https://openalex.org/W2116331423","https://openalex.org/W2128455855","https://openalex.org/W2161754059","https://openalex.org/W2340534867","https://openalex.org/W2902387927","https://openalex.org/W2976115099","https://openalex.org/W3006180699","https://openalex.org/W3044628965","https://openalex.org/W3170838950","https://openalex.org/W3214698148","https://openalex.org/W4206238515","https://openalex.org/W4212793940","https://openalex.org/W4239145605","https://openalex.org/W4292002667","https://openalex.org/W4380049848","https://openalex.org/W4389263872"],"related_works":["https://openalex.org/W1778671501","https://openalex.org/W2066228984","https://openalex.org/W29490832","https://openalex.org/W2588429740","https://openalex.org/W1488157296","https://openalex.org/W2293459815","https://openalex.org/W2999942143","https://openalex.org/W194173266","https://openalex.org/W4247239877","https://openalex.org/W4361865022"],"abstract_inverted_index":{"Threat":[0],"modeling":[1,64],"has":[2],"been":[3],"successfully":[4],"applied":[5],"to":[6,42,75,122],"model":[7,43],"technical":[8],"threats":[9,45,126],"within":[10],"information":[11],"systems.":[12],"However,":[13],"a":[14,55,62,91,106],"lack":[15],"of":[16,35,95],"methods":[17],"focusing":[18],"on":[19,47],"non-technical":[20],"assets":[21],"and":[22,30,61,71,82,101],"their":[23],"representation":[24],"can":[25,119],"be":[26,120],"observed":[27],"in":[28,127],"theory":[29],"practice.":[31],"Following":[32],"the":[33,79,88],"voices":[34],"industry":[36],"practitioners,":[37],"this":[38,52],"paper":[39],"explored":[40],"how":[41,77],"insider":[44,57,125],"based":[46],"business":[48,99],"process":[49,100],"models.":[50],"Hence,":[51],"study":[53,89,94],"developed":[54],"novel":[56],"threat":[58,63],"knowledge":[59,81],"base":[60],"application":[65],"that":[66,113],"leverages":[67],"Business":[68],"Process":[69],"Modeling":[70],"Notation":[72],"(BPMN).":[73],"Finally,":[74],"understand":[76],"well":[78],"theoretic":[80],"its":[83],"prototype":[84],"translate":[85],"into":[86],"practice,":[87],"conducted":[90],"real-world":[92],"case":[93],"an":[96,102,128],"IT":[97],"provider's":[98],"experimental":[103],"deployment":[104],"for":[105],"real":[107],"voting":[108],"process.":[109],"The":[110],"results":[111],"indicate":[112],"even":[114],"without":[115],"annotation,":[116],"BPMN":[117],"diagrams":[118],"leveraged":[121],"automatically":[123],"identify":[124],"organization.":[129]},"counts_by_year":[{"year":2025,"cited_by_count":2}],"updated_date":"2025-12-27T23:08:20.325037","created_date":"2025-10-10T00:00:00"}