PRO+ Premium Content/Information Security magazine

Thank you for joining!
Access your Pro+ Content below.
December 2017, Vol. 19, No. 10

User behavior analytics leads the security analytics charge

Security analytics may hold promise. The reality is a ways off. One area ahead of the curve, however, is tracking inside-user behavior. User behavior analytics (UBA) relies on statistical modeling, machine learning and data science to identify patterns of behavior and compare them against other human or machine activities. These technologies develop normal versus abnormal behavior profiles by collecting information on users' activities across IP addresses, accounts and devices. Unlike signature-based threat technologies, user behavior analytics creates a baseline for each individual user and then uses categorical, numerical and contextual information to identify anomalies and flag risky behavior. User and entity behavior analytics, or UEBA, also looks at machine activities -- individuals, devices, assets and applications. User behavior analytics is not new. The failure to thwart insider threats (compromised credentials and data), innovations from startups and a growing need to store and sift through massive amounts of enterprise...

Features in this issue

Columns in this issue