Embedded Files
ChimeraLog Scenarios
To evaluate the effectiveness of the Chimera framework in simulating insider threats in realistic organizational settings, we construct a new dataset, ChimeraLog, by deploying Chimera in three typical data-sensitive enterprise scenarios:
Technology Company
Goal: Game Company - Construct a third-person shooter game from the beginning
Formation:
Financial Corporation
Goal: Quantitative Hedge Fund Corporation - design and register a market-neutral statistical arbitrage fund targeting UHNWIs (Ultra-High-Net-Worth Individuals) under SEC regulations from the beginning
Formation:
Medical Institution
Goal: Community Hospital - complete electronic health record (EHR) collection and seasonal influenza trend analysis from the beginning
Formation:
In each scenario, a cohort of 20 employee agents is simulated continuously for one month. We choose a month-long period to allow complex collaborative workflows that require more time than a few days, while keeping the overall simulation within practical time and cost constraints.
Nonetheless, Chimera remains fully configurable to support arbitrary durations. Across the three scenarios, the agents enact 15 real-world insider attacks, encompassing both benign and malicious behaviors
Internal Threat Scenarios
Attack examples and attack format, choice of attacks
Attacks considered in ChimeraLog. All the attacks are summarized from the 5W1H taxonomy with links to real-world cases
Page updated
Google Sites
Report abuse