poster

POSTER: WinOver Enterprise Dark Data

Authors:

Sachin LodhaAuthors Info & Claims

CCS '15: Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security

Pages 1674 - 1676

https://doi.org/10.1145/2810103.2810131

Published: 12 October 2015 Publication History

Get Access

Abstract

Any persistent untagged, untapped and unclassified data can be termed as dark data. It has two common traits: first, it is not possible to determine its worth, and second, in most of the scenarios it is inadequately protected. Previous work and existing solutions are restricted to cater single node system. Moreover, they perform specialized processing of selected content, for example, logs. Further, there is total negligence of stakeholders and minimal focus on the data getting generated within the enterprise. From the perspective of an enterprise it is important to understand the distribution, nature and worth of dark data, as it helps in choosing right security controls, insurance or steps needed to pre-process a system before discarding it. In this paper we demonstrate a distributed system, called File WinOver, for File Lifecycle Management (FLM). The solution operates in a distributed environment where it identifies the dormant and active files on a system, filters them as per requirement and computes their fingerprint. Moreover, the content fingerprinting is utilized to detect closed user groups. After which, it classifies the content based on configured policies, and maps them with the stakeholders. This mapping is further used for valuating the risk exposure of the file. Thus, our system helps in identifying dark data and assigns quantitative risk value.

References

[1]

Types of data breaches in 2014. https://www.privacyrights.org/data-breach/new. {Online; accessed 10-July-2015}.

Google Scholar

[2]

loggly - log management tool. https://www.loggly.com/.

Google Scholar

[3]

Young et al. Detecting unknown insider threat scenarios. In Security and Privacy Workshops (SPW), 2014 IEEE, pages 277--288. IEEE, 2014.

Digital Library

Google Scholar

[4]

Gates et al. Detecting insider information theft using features from file access logs. In Computer Security-ESORICS 2014, pages 383--400. Springer, 2014.

Digital Library

Google Scholar

[5]

Chen et al. Detection of anomalous insiders in collaborative environments via relational analysis of access logs. In Proceedings of the first ACM conference on Data and application security and privacy, pages 63--74. ACM, 2011.

Digital Library

Google Scholar

[6]

Beaver et al. An approach to the automated determination of host information value. In Computational Intelligence in Cyber Security (CICS), 2011 IEEE Symposium on, pages 92--99. IEEE, 2011.

Crossref

Google Scholar

[7]

Park et al. Estimating asset sensitivity by profiling users. In Computer Security--ESORICS 2013, pages 94--110. Springer, 2013.

Crossref

Google Scholar

[8]

Park et al. System for automatic estimation of data sensitivity with applications to access control and other applications. In Proceedings of the 16th ACM symposium on Access control models and technologies, pages 145--146. ACM, 2011.

Digital Library

Google Scholar

[9]

OWASP Risk Rating Methodology. https://www.owasp.org/index.php/OWASP_Risk_Rating_Methodology/.

Google Scholar

Cited By

View all

Shukla MTupsamudre HLodha S(2022)Enterprise SecurityResearch Anthology on Business Aspects of Cybersecurity10.4018/978-1-6684-3698-1.ch021(441-470)Online publication date: 2022
https://doi.org/10.4018/978-1-6684-3698-1.ch021
Liu YWang YGao LGuo CXie YXiao Z(2021)Deep Hash-based Relevance-aware Data Quality Assessment for Image Dark DataACM/IMS Transactions on Data Science10.1145/34200382:2(1-26)Online publication date: 8-Apr-2021
https://dl.acm.org/doi/10.1145/3420038
Shukla MTupsamudre HLodha S(2020)Enterprise SecurityAdvanced Digital Architectures for Model-Driven Adaptive Enterprises10.4018/978-1-7998-0108-5.ch008(158-187)Online publication date: 2020
https://doi.org/10.4018/978-1-7998-0108-5.ch008
Show More Cited By

Index Terms

POSTER: WinOver Enterprise Dark Data

Recommendations

Poster: rethinking raid for SSD based HPC systems
SC '11 Companion: Proceedings of the 2011 companion on High Performance Computing Networking, Storage and Analysis Companion

The emerging Solid State Drives (SSDs) have changed the landscape of storage systems and have the potential to be widely deployed in computing systems including HPC systems. However, the cost and the capacity of SSDs have often been cited as the primary ...
A near-online approach to archive systems
LGDI '05: Proceedings of the 2005 IEEE International Symposium on Mass Storage Systems and Technology

In the face of growing data archiving needs, a better approach than tape based storage is needed. We describe how a MAID based storage and data system can be designed specifically to ideally meet the many requirements of archival data. These include the ...
Towards performance evaluation of cloud service providers for cloud data security

We have ciritcally evaluated cloud service providers business processes on cloud data security.We have also evaluated cloud computing adoption framework (CCAF).We have developed cloud data security models based on Business Process Modelling Notations (...

Comments

Please enable JavaScript to view thecomments powered by Disqus.

Information & Contributors

Information

Published In

CCS '15: Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security

October 2015

1750 pages

ISBN:9781450338325

DOI:10.1145/2810103

General Chair:
Indrajit Ray
Colorado State University, USA
,
Program Chairs:
Ninghui Li
Purdue University, USA
,
Christopher Kruegel
University of California, Santa Barbara, USA

Permission to make digital or hard copies of part or all of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for third-party components of this work must be honored. For all other uses, contact the Owner/Author.

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 12 October 2015

Check for updates

Author Tags

Qualifiers

Poster

Conference

CCS'15

Sponsor:

SIGSAC

CCS'15: The 22nd ACM Conference on Computer and Communications Security

October 12 - 16, 2015

Colorado, Denver, USA

Acceptance Rates

CCS '15 Paper Acceptance Rate 128 of 660 submissions, 19%;

Overall Acceptance Rate 1,261 of 6,999 submissions, 18%

Upcoming Conference

CCS '25

Sponsor:
sigsac

ACM SIGSAC Conference on Computer and Communications Security

October 13 - 17, 2025

Taipei , Taiwan

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

6
Total Citations
View Citations
343
Total Downloads

Downloads (Last 12 months)14
Downloads (Last 6 weeks)1

Reflects downloads up to 25 Nov 2024

Other Metrics

View Author Metrics

Citations

Cited By

View all

Shukla MTupsamudre HLodha S(2022)Enterprise SecurityResearch Anthology on Business Aspects of Cybersecurity10.4018/978-1-6684-3698-1.ch021(441-470)Online publication date: 2022
https://doi.org/10.4018/978-1-6684-3698-1.ch021
Liu YWang YGao LGuo CXie YXiao Z(2021)Deep Hash-based Relevance-aware Data Quality Assessment for Image Dark DataACM/IMS Transactions on Data Science10.1145/34200382:2(1-26)Online publication date: 8-Apr-2021
https://dl.acm.org/doi/10.1145/3420038
Shukla MTupsamudre HLodha S(2020)Enterprise SecurityAdvanced Digital Architectures for Model-Driven Adaptive Enterprises10.4018/978-1-7998-0108-5.ch008(158-187)Online publication date: 2020
https://doi.org/10.4018/978-1-7998-0108-5.ch008
Zhou KWang YLiu YYang YLiu YLi GGao LXiao Z(2020)A framework for image dark data assessmentWorld Wide Web10.1007/s11280-020-00779-xOnline publication date: 29-Feb-2020
https://doi.org/10.1007/s11280-020-00779-x
Liu YWang YZhou KYang YLiu YSong JXiao Z(2019)A Framework for Image Dark Data AssessmentWeb and Big Data10.1007/978-3-030-26072-9_1(3-18)Online publication date: 18-Jul-2019
https://doi.org/10.1007/978-3-030-26072-9_1
Shukla MMondal SLodha SWeippl EKatzenbeisser SKruegel CMyers AHalevi S(2016)POSTERProceedings of the 2016 ACM SIGSAC Conference on Computer and Communications Security10.1145/2976749.2989051(1784-1786)Online publication date: 24-Oct-2016
https://dl.acm.org/doi/10.1145/2976749.2989051

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Cited By

Index Terms

Recommendations

Poster: rethinking raid for SSD based HPC systems

A near-online approach to archive systems

Towards performance evaluation of cloud service providers for cloud data security