Research Student Profile

Home People Profile...

Mr George Magklaras MPhil

Research Student

Brief biographical information

A generic architecture for intrusion specification and misuse detection in IT systems

The ever increasing computerization of business processes and mission critical applications, combined with the rising number of Internet technologies, has created new security threats for computer systems and networks. Numerous studies indicate that amongst the various types of security threats, the ones that originate from legitimate user actions can have serious consequences for the health of IT infrastructures. Although incidents of external origin are also dangerous, the insider IT misuse problem is difficult to address for a number of different reasons. This thesis is concerned with the systematic study of the nature of Insider IT misuse problems, as well as the development of experimental insider IT misuse prediction techniques. The systematic study of legitimate user misuse actions is necessary due to the composite and variable nature of Insider IT misuse. The thesis contains the results of a small scale survey that highlighted many important aspects of insider misuse actions. The results formed the basis for a suitable Insider Misuse Threat Prediction Factor Taxonomy, the end product of the systematic examination of the insider IT misuse phenomenon. The taxonomy was then used to construct a systems architecture that facilitates legitimate user threat prediction. Although the proposed experimental architecture is far from the quality of a production-level utility, it constitutes a novel Insider Threat Prediction Model, which at the time of writing is unique in terms of its comprehensive design. It is considered that the predictive techniques could be taken forward in future research, in order to enhance the capability of existing Intrusion Detection Systems and aid IT professionals to mitigate Insider threats effectively. Various aspects of the proposed threat prediction model, the Insider IT misuse survey, as well as the proposed Threat Prediction Taxonomy have been published in conference proceedings and journals.

Mr George Magklaras

Director of studies: Dr Steven M Furnell
Other supervisors: Prof. Emmanuel Ifeachor

Journal papers

Towards an Insider Threat Prediction Specification Language
Magklaras GB, Furnell SM, Brooke PJ
Information Management & Computer Security, vol. 14, no. 4, pp361-381, 2006
More details

A Preliminary Model of End User Sophistication for Insider Threat Prediction in IT Systems
Magklaras GB, Furnell SM
Computers & Security, vol. 24, no. 5, pp371-380, 2005
More details

Insider Threat Prediction Tool: Evaluating the probability of IT misuse
Magklaras GB, Furnell SM
Computers & Security, vol. 21, no. 1, pp62-73, 2002
More details | Download PDF

3 Journal papers

Conference papers

The Insider Threat Prediction and Specification Language
Magklaras GB, Furnell SM
Proceedings of the Ninth International Network Conference (INC2012), Port Elizabeth, South Africa, July, ISBN: 978-1-84102-315-1, pp51-61, 2012
Can be ordered on-line.
More details | Download PDF

LUARM – An Audit Engine for Insider Misuse Detection
Magklaras GB, Furnell SM, Papadaki M
Proceedings of the Sixth International Workshop on Digital Forensics & Incident Analysis (WDFIA 2011), London, UK, ISBN: 978-1-84102-285-7, pp133-148, 2011
Can be ordered on-line.
More details | Download PDF

Insider Misuse Threat Survey: Investigating IT misuse from legitimate users
Magklaras GB, Furnell SM
Proceedings of the 5th Australian Information Warfare & Security Conference, Perth Western Australia, 25-26 November, CDROM, pp42-51, 2004
More details

Security Vulnerabilities and System Intrusions ? The need for Automatic Response Frameworks
Papadaki M, Magklaras GB, Furnell SM, Alayed A
Proceedings of the IFIP 8th Annual Working Conference on Information Security Management & Small Systems Security, Las Vegas, 27-28 September, 2001
More details | Download PDF

A Generic Taxonomy for Intrusion Specification and Response
Furnell SM, Magklaras GB, Papadaki M, Haskell-Dowland PS (Dowland PS)
Proceedings of Euromedia 2001, Valencia, Spain, 18-20 April, 2001
More details | Download PDF

5 Conference papers

Contributions to edited books

Insider Threat Specification as a Threat Mitigation Technique
Magklaras GB, Furnell SM
in "Insider Threats in Cyber Security", Probst, Christian W.; Hunker, Jeffrey; Gollmann, Dieter (Eds.), Springer, ISBN 978-1-4419-7132-6, 244pp, 2010
More details | External link available

1 Contributions to edited books


Advanced Authentication and Intrusion Detection Technologies
Haskell-Dowland PS (Dowland PS), Furnell SM, Magklaras GB, Papadaki M, Reynolds PL, Rodwell PM, Singh H
Poster presentation at Britain's Younger Engineers in 2000, House of Commons, London, 4 December, 2000
More details | Download PDF

1 Posters

10 publication(s) - all categories.