Skip to main content

Towards Reducing the Data Exfiltration Surface for the Insider Threat...

by Bob G Schlicher, Lawrence P Macintyre, Robert K Abercrombie
Publication Type
Conference Paper
Publication Date
Page Numbers
2749 to 2758
Conference Name
49th Annual Hawaii International Conference on System Sciences (HICSS-49)
Conference Location
Kauai, Hawaii, United States of America
Conference Sponsor
IEEE Computer Society, Univ. of Hawaii,at Manoa, Pacific Research Inst. for Info Systems & Mang't.
Conference Date

Unauthorized data exfiltrations from both insiders and outsiders are costly and damaging. Network
communication resources can be used for transporting data illicitly out of the enterprise or cloud. Combined with built-in malware copying utilities, we define this as comprising the Data Exfiltration Surface (DXS). For securing valuable data, it is desirable to reduce the DXS and maintain controls on the egress points. Our approach is to host the data in a protected enclave that includes novel software Data Diode (SDD) installed on a secured, border gateway. The SDD allows copying data into the enclave systems but denies data from being copied out. Simultaneously, it permits remote access with remote desktop and console applications. Our tests demonstrate that we are able to
effectively reduce the DXS and we are able to protect data from being exfiltrated through the use of the SDD.