fighting identity theft
play

Fighting Identity Theft Big Data Analytics to the Rescue Seshika - PowerPoint PPT Presentation

Dec 23, 2023 •176 likes •441 views

Fighting Identity Theft Big Data Analytics to the Rescue Seshika Fernando WSO2 Me - Seshika Computer Science & Finance Streaming Analytics 100% Open Source Middleware Company Apache Way http://wso2.com/

  1. Fighting Identity Theft Big Data Analytics to the Rescue Seshika Fernando WSO2

  2. Me - Seshika ● Computer Science & Finance ● Streaming Analytics ● 100% Open Source Middleware Company ● Apache Way ● http://wso2.com/

  3. Quantified ● $2.5m per Enterprise ● #1 Consumer Complaint ● Every 2 seconds ● 51% Enterprises use Big Data Analytics Sources: Javelin Strategy & Research, PwC 2016 GSISS, FTC 2015 Report

  4. Service Provider Identity Providers User

  6. Authentication Analytics ● Blacklisted IP address Single IP, multiple users ● ● Single user, multiple IPs ● Login from new IP address ● Abnormal frequency of logins Abnormal login times ● ● Multiple login failures ● Multifactor authentication failures

  7. Authorization Analytics ● User/Role accessing a new resource Abnormal resource access frequency ● ● Access denied for multiple resources, for the same user ● Abnormal usage frequency of high privilege accounts ● High risk privilege escalation

  8. Complex Event Processing * Notify if there is a 10% increase in overall trading activity AND the average price of commodities has fallen 2% in the last 4 hours

  9. Blacklists define table BlacklistedIPTable (ipAddress string); from loginStream[ (ip == BlacklistedIPTable.ip) in BlacklistedIPTable ] select * insert into alertStream; Whitelists define table IPTable (ipAddress string); from loginStream[ not(ip == IPTable.ip) in IPTable ] select * insert into alertStream;

  10. Counting from loginFailureStream#window.time(1 hour) select username, count(timestamp) as loginFailCount group by username having loginFailCount > 30 insert into alertStream; 1 to many relationships from e1 = loginStream -> e2 = loginStream[(e1.ip == e2.ip) and (e1.username != e2.username)] <2:> within 1 day select e1.ip, e1.username, e2[0].username, e2[1].username insert into alertStream;

  11. Adaptive Analytics User Profiling (UEBA) ○ Time ○ IP/Geo-location ○ Frequency Typing Patterns ○ ○ Service Provider(s) ○ Identity Provider(s) Wonka usually logs in between 8am - 10am , from an IP address in Chicago , and logs into Redmine and Concur , using his Google Credentials

  12. Behavioural Rules Based on ● ○ Time Login Frequency ○ ○ Geo Location List of Service Providers ○ ○ List of IDPs from loginStream#window.time(1 hour) as str join loginCountTable as tbl on str.username == tbl.username select str.username, count(str.timestamp) as curLoginCount, tbl.maxLoginCount group by str.username having curLoginCount > maxLoginCount insert into alertStream;

  13. Scoring ● Use combination of rules ● Give weights to each rule Single number to represent suspicion through multiple indicators ● ● Use a threshold to identify anomalies Score = w1 * time + w2 * frequency + w3 * location + w4 * SPs + w5 * IDPs

  14. Clustering Features ● Time ● Geo Location ● IdP SP Type ●

  15. Markov Models Compare Update Classify Events Incoming Alerts Events Probability Matrix Sequences Probability Matrix

  16. Audit Trail Analytics

  17. Investigate Access historical data using Expressive Querying ● ● Easy Filtering ● Useful Visualizations to isolate incidents and unearth relationships

  18. Deployment Dashboard Events Alerts IAM Events Service Providers Persisted Storage

  19. Challenges

  20. Unusual behaviour?

  21. Big Data Challenge ● Millions of Events Highly Dimensional ● EventID Timestamp Auth Success Username Roles Service Provider IDP IP 1 1420092114000 True Norman Dev; Admin Expedia Google 100.3.2.88 2 1420092114200 True John Dev Concur Facebook 10.13.2.15 3 1420092115500 False Mary QA Ebay Facebook 20.3.2.132 ● Real-time Dashboards

  22. Fight against Time CEP 1s 1s 1s 1s 1s 1s 1s 1s 1m 1m 1m 1m 1h 1h 1d Spark

  23. Siddhi & Spark from AuthEventStream#window.TimeBatch(1 sec) Siddhi select sum(AuthCount), year, month, date, hour, min, sec insert into PerSecAuthCountStream from PerSecAuthCountStream#window.TimeBatch(1 min) select sum(AuthCount), year, month, date, hour, min insert into PerMinAuthCountTable insert into PerHourAuthCountTable select sum(AuthCount), year, month, date, hour from PerMinAuthCountTable group by year, month, date, hour insert into PerDayAuthCountTable select sum(AuthCount), year, month, date from PerHourAuthCountTable Spark group by year, month, date

  24. Battling Dimensionality By Identity Provider By Service Provider By User 1h 1h 1h 1h 1h 1h 1d 1d 1d

  25. Contact us !

Recommend

Identity Theft Identity Theft Identity theft occurs when your personal information is stolen

Identity Theft Identity Theft Identity theft occurs when your personal information is stolen

Identity Theft Identity Theft Identity theft occurs when your personal information is stolen and used without your knowledge to commit fraud or other crimes Identity theft can cost you time and money. Tips for Preventing Identity Theft

322 views • 10 slides
Identity Theft By: Brian Paulsen How common is identity theft? According to the US Department of

Identity Theft By: Brian Paulsen How common is identity theft? According to the US Department of

Identity Theft By: Brian Paulsen How common is identity theft? According to the US Department of Justice, 10% of people over the age of 16 reported being victims of identity theft in 2016 (Harrell). Who is most susceptible? Multiple reports

233 views • 21 slides
Training to Prevent Identity Theft Identity Theft is the fastest growing crime in America.

Training to Prevent Identity Theft Identity Theft is the fastest growing crime in America.

Training to Prevent Identity Theft Identity Theft is the fastest growing crime in America. The Social Security number is a major privacy concern for most people, because it links to information that is typically kept private. Exposing

326 views • 17 slides
What is Identity Theft? &quot;Someone obtaining your personal identifying information without

What is Identity Theft? &quot;Someone obtaining your personal identifying information without

Identity Fraud: Protecting Your Identity Between Work and Play Ryan Sothan, Outreach Coordinator Nebraska Department of Justice, Office of the Attorney General Consumer Protection and Anti-Trust Division What is Identity Theft?

314 views • 18 slides
Child Identity Theft: What to Know, What to Do Colleen Tressler FTC Division of Consumer &amp;

Child Identity Theft: What to Know, What to Do Colleen Tressler FTC Division of Consumer &amp;

Child Identity Theft: What to Know, What to Do Colleen Tressler FTC Division of Consumer &amp; Business Education ctressler@ftc.gov consumer.ftc.gov IdentityTheft.gov Definition of Identity Theft Identity theft is the misuse of

459 views • 20 slides
IDENTITY THEFT FINANCIAL EDUCATION SERIES Equal Housing Lender. Member FDIC and Associated

IDENTITY THEFT FINANCIAL EDUCATION SERIES Equal Housing Lender. Member FDIC and Associated

4/2/2018 IDENTITY THEFT FINANCIAL EDUCATION SERIES Equal Housing Lender. Member FDIC and Associated Banc-Corp AGENDA Tips to avoid identity theft What you should do if you become a victim of identity theft How to obtain free

381 views • 4 slides
Identity Theft 101 Wanda Downs, AAP Director, CU Development &amp; Marketing Identity Theft 101

Identity Theft 101 Wanda Downs, AAP Director, CU Development &amp; Marketing Identity Theft 101

Identity Theft 101 Wanda Downs, AAP Director, CU Development &amp; Marketing Identity Theft 101 Identity Theft 101 Wanda Downs First Carolina Corporate Credit Union, 2004 to present &gt; Director of CU Development &amp; Marketing AAP

440 views • 16 slides
What will you learn? During this presentation you will learn: How ID theft and account fraud

What will you learn? During this presentation you will learn: How ID theft and account fraud

What will you learn? During this presentation you will learn: How ID theft and account fraud happen The effects of ID theft and fraud How to avoid becoming a victim Identity Protection Identity Theft is Rampant Number of victims rose

764 views • 30 slides
Identity Theft Wiam Younes Training and Awareness Coordinator Information Security Office(ISO)

Identity Theft Wiam Younes Training and Awareness Coordinator Information Security Office(ISO)

Identity Theft Wiam Younes Training and Awareness Coordinator Information Security Office(ISO) www.cmu.edu/iso Computing Services www.cmu.edu/computing What is Identity Theft? Identity Theft is a crime in which an impostor obtains key

409 views • 24 slides
(1 in 4) Fraud (43%) (12.6 M) 2013 Identity Theft Report Javelin Strategy &amp; Research FTC

(1 in 4) Fraud (43%) (12.6 M) 2013 Identity Theft Report Javelin Strategy &amp; Research FTC

THE THE NEW NORM NEW NORM IDENTIT IDENTITY Y THE THEFT FT AND AND GO GOVERNMENT VERNMENT FRA FRAUD UD Identity Fraud Data Breach Government (1 in 4) Fraud (43%) (12.6 M) 2013 Identity Theft Report Javelin Strategy &amp;

527 views • 17 slides
IRS Criminal Investigation Detroit Field Office Identity Theft The FTC estimates that as many

IRS Criminal Investigation Detroit Field Office Identity Theft The FTC estimates that as many

IRS Criminal Investigation Detroit Field Office Identity Theft The FTC estimates that as many as 9 million Americans have their identities stolen each year. How Do They Get Your Information? Theft of valuables purses, wallets, cell

344 views • 15 slides
the bottom line your data protects protecting to remedy the harm caused by identity theft. ties

the bottom line your data protects protecting to remedy the harm caused by identity theft. ties

24 and lost sales. 7 to the indictment, the thieves security breach. 8 According tion with the T.J. Maxx data of 11 individuals in connec- announced the indictment D e p a r t m e n t r e c e n t l y identity theft, the Justice catch the

561 views • 6 slides
Fighting against theft, cloning and counterfeiting of integrated circuits Lilian Bossuet Associate

Fighting against theft, cloning and counterfeiting of integrated circuits Lilian Bossuet Associate

Fighting against theft, cloning and counterfeiting of integrated circuits Lilian Bossuet Associate Professor, head of the secure embedded system group University of Lyon, Jean Monnet University, Saint-Etienne Laboratoire Hubert Curien CNRS

878 views • 64 slides
Identity Theft Victim Shawn Savage IRS Sr. Stakeholder Liaison Seminar Objectives Increase

Identity Theft Victim Shawn Savage IRS Sr. Stakeholder Liaison Seminar Objectives Increase

Helping the Identity Theft Victim Shawn Savage IRS Sr. Stakeholder Liaison Seminar Objectives Increase awareness of how to help IDT victims Improve understanding of Taxpayer Protection Program, Identity Protection Specialized Unit and

799 views • 16 slides
Trends in Malware Enabled Identity Theft Matthew McGlashan - matthew@auscert.org.au Computer

Trends in Malware Enabled Identity Theft Matthew McGlashan - matthew@auscert.org.au Computer

Trends in Malware Enabled Identity Theft Matthew McGlashan - matthew@auscert.org.au Computer Security Analyst, AusCERT Outline About AusCERT What AusCERT is doing to combat ID theft The Threat: Trojan Horse software

535 views • 27 slides
Results from Help Us Protect the Carnegie Mellon Community from Identity Theft study A

Results from Help Us Protect the Carnegie Mellon Community from Identity Theft study A

Results from Help Us Protect the Carnegie Mellon Community from Identity Theft study A Real-Word Evaluation of Anti-Phishing Training Mary Ann Blair Lorrie Faith Cranor Ponnurangam Kumaraguru (PK) Joint work with Justin Cranshaw,

964 views • 74 slides
So Some facts About 43% of all reported identity thefts in the U.S. in 2013 were

So Some facts About 43% of all reported identity thefts in the U.S. in 2013 were

So Some facts About 43% of all reported identity thefts in the U.S. in 2013 were medical-related, according to a study released last month by Identity Theft Resource Center (ITRC). 1 in 3 people report a problem after their identity is

827 views • 26 slides
Protecting Your Identity, Data, and Assets 1 Its Not a Matter of If, but When 17.6

Protecting Your Identity, Data, and Assets 1 Its Not a Matter of If, but When 17.6

Protecting Your Identity, Data, and Assets 1 Its Not a Matter of If, but When 17.6 million 63% Identity fraud is a serious issue. people experienced of confirmed data Fraudsters have identity theft in 2014 breaches involved stolen

605 views • 29 slides
IDENTITY THEFT ISSUES, TAX PLANNING IN AN ELECTION YEAR AND OTHER IMPORTANT ISSUES RELEVANT TO

IDENTITY THEFT ISSUES, TAX PLANNING IN AN ELECTION YEAR AND OTHER IMPORTANT ISSUES RELEVANT TO

IDENTITY THEFT ISSUES, TAX PLANNING IN AN ELECTION YEAR AND OTHER IMPORTANT ISSUES RELEVANT TO BANKERS Presented by: Don Johnston, CPA , MST Partner, Grossman Yanak &amp; Ford LLP W.P.A.S.G.L. Small Business Lending Conference May 23, 2016

680 views • 48 slides
FIGHTING IDENTITY CRIME Professor John Farrar Bond University and the University of Auckland 1

FIGHTING IDENTITY CRIME Professor John Farrar Bond University and the University of Auckland 1

FIGHTING IDENTITY CRIME Professor John Farrar Bond University and the University of Auckland 1 Identity crime is on the increase. The cost is increasing. The cost includes a substantial cost relating to resources to combat identity crime.

538 views • 18 slides
Identity Theft in Cyber Space Dr R N Singh Member (Technical) Cyber Appellate Tribunal

Identity Theft in Cyber Space Dr R N Singh Member (Technical) Cyber Appellate Tribunal

Identity Theft in Cyber Space Dr R N Singh Member (Technical) Cyber Appellate Tribunal Department of Electronics and IT Ministry of Communications and IT New Delhi 3 rd Cyber Security India 2016 International Summit at Le-Meridien Connaught

582 views • 8 slides
Overview of Key Findings Between October 1 and 7, 2013, Hart Research Associates conducted a

Overview of Key Findings Between October 1 and 7, 2013, Hart Research Associates conducted a

Research Conducted By: Teen Identity Theft: Fraud, Security, and Steps Teens are Taking to Protect Themselves Online [ photo here The Online Generation Gap | November 2012 | Hart Research Associates | #fosi 0 Teen Identity Theft| November 2013

395 views • 17 slides
SECRETARY OF STATE AND REVENUE TAX AGENCY IDENTITY THEFT PILOT KICK OFF MEETING June 21, 2019

SECRETARY OF STATE AND REVENUE TAX AGENCY IDENTITY THEFT PILOT KICK OFF MEETING June 21, 2019

SECRETARY OF STATE AND REVENUE TAX AGENCY IDENTITY THEFT PILOT KICK OFF MEETING June 21, 2019 WEBINAR TECHNOLOGY PILOT PARTICIPANTS Name State Agency Kendra Carroll Georgia Department of Revenue Brad Roth Maryland Comptroller Rita

269 views • 14 slides
Identity Theft: Dispute Resolution October 22, 2015 Dustin DeVore, Esq. Hazel C. Wong, Esq.

Identity Theft: Dispute Resolution October 22, 2015 Dustin DeVore, Esq. Hazel C. Wong, Esq.

Identity Theft: Dispute Resolution October 22, 2015 Dustin DeVore, Esq. Hazel C. Wong, Esq. Kaufman &amp; Canoles, P.C. Kaufman &amp; Canoles, P.C. 4801 Courthouse Street Two James Center Suite 300 1021 E. Cary Street, Suite 1400

592 views • 36 slides

More recommend